Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/yES93q7Ta6hDcpyCtQg1WLNlWC0.roa
File: yES93q7Ta6hDcpyCtQg1WLNlWC0.roa (raw, json)
Hash identifier: twl/4njRxTKCXB2s3Js3ll5Xcm2oWvKzlEnawTdNeos=
Subject key identifier: C8:44:BD:DE:AE:D3:6B:A8:43:72:9C:82:B5:08:35:58:B3:65:58:2D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AD9
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yES93q7Ta6hDcpyCtQg1WLNlWC0.roa
Signing time: Sun 07 Feb 2021 11:39:22 +0000
ROA not before: Sun 07 Feb 2021 11:39:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 61.220.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2777 (0xad9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:39:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C844BDDEAED36BA843729C82B5083558B365582D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b0:ae:7c:29:1c:ed:3a:74:0e:63:26:e6:83:
35:80:d8:49:bd:1f:d3:b2:1a:f9:33:88:90:ef:df:
5e:ed:7a:9f:ab:d8:10:41:f7:a5:f3:0e:a4:ff:2e:
e5:54:01:88:d7:09:ce:87:59:db:82:0d:26:13:70:
7e:dd:c8:1d:21:c8:2a:90:3c:87:84:c9:1f:83:12:
29:51:34:e5:e8:8e:13:b5:0d:3f:01:93:e5:95:3b:
97:f6:5a:6a:ba:00:be:6e:59:fe:ed:5d:53:de:d8:
aa:2c:2f:2a:62:4b:7f:83:75:e0:d6:d1:6f:97:97:
41:24:5a:46:ff:53:cb:3c:31:75:4b:93:fd:ca:33:
29:bb:03:44:5c:12:6a:c9:f9:66:39:38:b1:00:b8:
2d:9e:77:7a:32:dc:dd:37:a1:bf:18:14:bf:bb:26:
42:72:ab:2e:64:b4:89:71:89:4a:44:3e:11:48:12:
16:42:64:1d:de:95:3b:ac:12:04:64:5a:0e:c4:da:
c9:3e:d0:93:f0:aa:39:15:5c:e6:d1:b8:6a:2b:99:
29:7f:75:e8:87:15:0e:71:cc:11:6d:1f:8b:d9:a5:
fe:5c:46:ca:27:c7:83:03:0d:0e:c7:e4:28:61:31:
cb:0e:69:97:d8:e4:a4:95:4a:fa:10:f7:e3:36:16:
ec:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:44:BD:DE:AE:D3:6B:A8:43:72:9C:82:B5:08:35:58:B3:65:58:2D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yES93q7Ta6hDcpyCtQg1WLNlWC0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.220.0.0/14
Signature Algorithm: sha256WithRSAEncryption
a4:91:37:35:35:ac:63:b3:55:fb:2c:c0:28:01:57:cf:39:e1:
d9:f1:aa:7f:b4:1d:0c:e5:95:5b:26:ca:6d:ce:41:47:98:0c:
72:54:e9:a3:c0:88:1d:57:d3:f9:e7:8b:9f:fe:5e:ae:7a:d1:
a5:03:ab:17:47:eb:92:d5:63:d1:fc:65:57:3c:27:a0:fd:44:
06:3e:ad:3d:42:44:74:c9:96:a5:7d:67:05:d4:64:b7:a2:30:
32:b2:e8:b2:ba:44:2c:57:75:8d:57:e9:88:2a:c3:96:dc:7b:
10:6c:eb:b2:2b:79:74:74:1a:e2:f0:30:fb:3c:06:00:6a:59:
b0:27:ff:0d:13:94:65:89:5a:8b:59:eb:89:ee:dd:08:5a:0c:
2a:89:5c:dd:46:9c:40:4a:6f:51:c2:0e:1b:08:4f:d0:8a:01:
e5:d5:39:04:5e:4f:21:a4:ce:49:17:cf:05:25:21:58:31:a1:
fc:07:78:ee:51:99:47:f2:01:6c:a0:a4:58:16:3a:39:e6:66:
d0:79:98:7d:ca:db:11:04:69:08:f6:84:cf:5d:f2:58:ae:0f:
8b:23:ec:ce:ca:ad:09:06:ba:7a:f9:cd:96:01:f5:64:5e:2f:
6a:e8:64:bf:d1:9d:53:3e:71:88:c3:fd:d9:1c:57:4c:9d:a6:
e6:e6:87:de
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCtkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTAyMDcx
MTM5MjJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEM4NDRCRERFQUVEMzZC
QTg0MzcyOUM4MkI1MDgzNTU4QjM2NTU4MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDsK58KRztOnQOYybmgzWA2Em9H9OyGvkziJDv317tep+r2BBB
96XzDqT/LuVUAYjXCc6HWduCDSYTcH7dyB0hyCqQPIeEyR+DEilRNOXojhO1DT8B
k+WVO5f2Wmq6AL5uWf7tXVPe2KosLypiS3+DdeDW0W+Xl0EkWkb/U8s8MXVLk/3K
Mym7A0RcEmrJ+WY5OLEAuC2ed3oy3N03ob8YFL+7JkJyqy5ktIlxiUpEPhFIEhZC
ZB3elTusEgRkWg7E2sk+0JPwqjkVXObRuGormSl/deiHFQ5xzBFtH4vZpf5cRson
x4MDDQ7H5ChhMcsOaZfY5KSVSvoQ9+M2FuzBAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUyES93q7Ta6hDcpyCtQg1WLNlWC0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC95RVM5M3E3VGE2aERjcHlDdFFn
MVdMTmxXQzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCPdww
DQYJKoZIhvcNAQELBQADggEBAKSRNzU1rGOzVfsswCgBV8854dnxqn+0HQzllVsm
ym3OQUeYDHJU6aPAiB1X0/nni5/+Xq560aUDqxdH65LVY9H8ZVc8J6D9RAY+rT1C
RHTJlqV9ZwXUZLeiMDKy6LK6RCxXdY1X6Ygqw5bcexBs67IreXR0GuLwMPs8BgBq
WbAn/w0TlGWJWotZ64nu3QhaDCqJXN1GnEBKb1HCDhsIT9CKAeXVOQReTyGkzkkX
zwUlIVgxofwHeO5RmUfyAWygpFgWOjnmZtB5mH3K2xEEaQj2hM9d8liuD4sj7M7K
rQkGunr5zZYB9WReL2roZL/RnVM+cYjD/dkcV0ydpubmh94=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org