Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tca_1UIHocjgB0DWQZpYQPGyWNU.roa
File: tca_1UIHocjgB0DWQZpYQPGyWNU.roa (raw, json)
Hash identifier: rYUme99cjKGhLAzWWE9XdGsP2jGEO9yCSOGPo1pnez4=
Subject key identifier: B5:C6:BF:D5:42:07:A1:C8:E0:07:40:D6:41:9A:58:40:F1:B2:58:D5
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0877
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tca_1UIHocjgB0DWQZpYQPGyWNU.roa
Signing time: Tue 29 Sep 2020 09:58:46 +0000
ROA not before: Tue 29 Sep 2020 09:58:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 125.224.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2167 (0x877)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B5C6BFD54207A1C8E00740D6419A5840F1B258D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:2e:5b:f3:9f:3c:da:63:d9:d7:3b:f7:3a:0e:
5e:b9:1f:37:b8:0b:7b:ab:a5:15:4b:c7:a5:2a:c1:
96:b7:b8:2b:2f:e6:d7:28:1a:23:63:d7:f7:1c:c0:
fc:18:23:e0:64:5f:40:c9:da:30:93:da:84:48:fa:
1b:87:83:d1:d9:ef:c9:7d:d8:46:1c:cd:bc:98:ed:
db:0b:a4:4e:3e:7d:dd:33:ee:5b:e9:32:a7:8a:68:
a3:47:43:83:7f:0a:90:52:37:b7:ab:ee:69:94:a0:
19:aa:b3:fb:5c:2a:53:37:32:5d:82:07:fc:6f:24:
2f:4d:5f:2a:ec:68:a1:8f:dc:6f:3d:83:06:79:f5:
2e:5a:3f:3d:d2:e5:9c:17:29:a3:cb:d1:6f:65:1a:
fe:f4:18:68:c8:bc:d3:13:81:43:01:3e:22:ae:84:
50:8c:72:29:17:07:02:1a:03:4e:4c:f4:a4:71:fe:
0a:b1:85:7e:6b:3c:c1:69:11:ac:fc:c7:21:7f:8a:
11:f2:e5:e5:4d:43:22:86:66:93:f4:c3:ac:22:37:
5a:0e:21:37:a3:62:b1:06:c8:46:10:c6:eb:cf:c0:
3a:1f:03:17:a5:b4:ba:dd:25:bd:13:99:7f:7d:11:
78:75:9e:ab:a5:f5:83:4b:20:d5:f0:50:b6:c1:5d:
ed:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C6:BF:D5:42:07:A1:C8:E0:07:40:D6:41:9A:58:40:F1:B2:58:D5
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tca_1UIHocjgB0DWQZpYQPGyWNU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
125.224.0.0/13
Signature Algorithm: sha256WithRSAEncryption
b8:91:d2:e9:23:80:f8:18:78:6f:28:e1:57:80:49:b1:67:ad:
c7:32:f2:bd:3d:a2:bb:ba:98:95:d3:20:c6:93:67:a6:32:fe:
88:d9:b5:d4:9d:d5:7a:c4:3d:4e:31:be:bd:99:24:2f:22:ca:
8c:e2:f9:57:d2:81:5d:cf:22:97:dd:82:bc:b5:6d:06:e8:e3:
57:41:55:32:cd:29:ac:2c:aa:5c:a3:27:64:b1:55:1b:71:2b:
66:50:30:06:97:ea:10:85:d2:4f:74:0e:04:ad:fe:98:f5:bd:
dc:c4:24:93:7d:b2:f1:61:d3:64:c8:94:6c:b3:45:bd:bf:02:
5a:47:d6:75:34:7c:0f:2a:a9:7f:f3:36:7a:5a:b5:98:da:3c:
a6:8d:f0:85:8d:5f:5e:12:55:31:96:a4:cf:54:dd:48:64:f0:
6b:98:7a:9e:02:7c:7f:cf:22:45:6d:f1:ee:68:9f:71:e6:7d:
93:a2:69:64:ed:ac:a0:84:18:85:e3:60:53:1d:a7:9e:2d:f5:
9e:d6:4d:b5:c1:30:f8:9d:52:7e:80:63:d7:d0:e0:88:f3:29:
df:98:c1:f8:2e:29:28:78:79:3c:45:e5:ec:47:ad:bc:1a:7c:
f2:a7:70:b5:8a:27:f4:92:9d:aa:d8:55:fa:1a:38:1f:24:bf:
1e:80:85:1e
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCHcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMDA5Mjkw
OTU4NDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEI1QzZCRkQ1NDIwN0Ex
QzhFMDA3NDBENjQxOUE1ODQwRjFCMjU4RDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDiLlvznzzaY9nXO/c6Dl65Hze4C3urpRVLx6UqwZa3uCsv5tco
GiNj1/ccwPwYI+BkX0DJ2jCT2oRI+huHg9HZ78l92EYczbyY7dsLpE4+fd0z7lvp
MqeKaKNHQ4N/CpBSN7er7mmUoBmqs/tcKlM3Ml2CB/xvJC9NXyrsaKGP3G89gwZ5
9S5aPz3S5ZwXKaPL0W9lGv70GGjIvNMTgUMBPiKuhFCMcikXBwIaA05M9KRx/gqx
hX5rPMFpEaz8xyF/ihHy5eVNQyKGZpP0w6wiN1oOITejYrEGyEYQxuvPwDofAxel
tLrdJb0TmX99EXh1nqul9YNLINXwULbBXe0DAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUtca/1UIHocjgB0DWQZpYQPGyWNUwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC90Y2FfMVVJSG9jamdCMERXUVpw
WVFQR3lXTlUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMDfeAw
DQYJKoZIhvcNAQELBQADggEBALiR0ukjgPgYeG8o4VeASbFnrccy8r09oru6mJXT
IMaTZ6Yy/ojZtdSd1XrEPU4xvr2ZJC8iyozi+VfSgV3PIpfdgry1bQbo41dBVTLN
KawsqlyjJ2SxVRtxK2ZQMAaX6hCF0k90DgSt/pj1vdzEJJN9svFh02TIlGyzRb2/
AlpH1nU0fA8qqX/zNnpatZjaPKaN8IWNX14SVTGWpM9U3Uhk8GuYep4CfH/PIkVt
8e5on3HmfZOiaWTtrKCEGIXjYFMdp54t9Z7WTbXBMPidUn6AY9fQ4IjzKd+Ywfgu
KSh4eTxF5exHrbwafPKncLWKJ/SSnarYVfoaOB8kvx6AhR4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org