Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/09LZRATAjXs3WRV2aQnDyMcz0k4.roa
File: 09LZRATAjXs3WRV2aQnDyMcz0k4.roa (raw, json)
Hash identifier: e555aWpyREZqpAlzhkYApoo7OAe1LEMTZ876a+lkz3E=
Subject key identifier: D3:D2:D9:44:04:C0:8D:7B:37:59:15:76:69:09:C3:C8:C7:33:D2:4E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 083B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/09LZRATAjXs3WRV2aQnDyMcz0k4.roa
Signing time: Tue 29 Sep 2020 09:58:29 +0000
ROA not before: Tue 29 Sep 2020 09:58:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 210.62.248.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2107 (0x83b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D3D2D94404C08D7B375915766909C3C8C733D24E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:38:a8:8b:14:83:34:8c:a0:f2:c0:4a:01:ea:
a4:74:36:e2:22:be:e4:c7:a5:c9:3a:e3:cc:1d:95:
7a:8c:9e:14:11:fe:dd:a8:5a:48:62:9a:b9:5a:16:
43:ca:6c:b8:3c:e3:b4:42:a9:b7:d5:68:d3:b1:2d:
b3:4c:05:e2:41:bf:2f:5a:78:4f:46:1e:ef:c4:43:
b7:b0:2f:25:bd:c5:35:27:51:a6:6d:6f:0d:60:72:
b6:b8:e6:47:8f:1f:16:31:b2:21:ad:c7:b9:53:e1:
63:47:8e:f4:3e:01:c7:51:31:45:ed:5f:fe:1d:71:
51:0a:0d:61:07:20:db:c4:ff:02:de:8f:7d:50:69:
fc:47:11:bc:1c:c2:39:36:0e:df:66:97:43:57:29:
3e:31:ea:f0:13:93:9d:d7:88:94:26:c1:98:ae:22:
57:91:51:29:34:90:69:d6:3d:f1:43:11:b3:32:8f:
62:2b:49:39:fa:39:24:dd:2f:40:a7:69:b7:eb:e5:
d7:8c:5b:c2:96:d9:7a:2d:4f:43:ba:c6:5c:5c:81:
32:ff:95:f3:6e:dd:06:a5:a9:5d:8b:21:70:b1:d0:
39:10:b6:36:75:55:3b:62:e2:46:91:5d:f4:3f:1b:
5c:be:30:53:0c:49:4e:de:75:89:48:58:fa:36:9b:
70:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:D2:D9:44:04:C0:8D:7B:37:59:15:76:69:09:C3:C8:C7:33:D2:4E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/09LZRATAjXs3WRV2aQnDyMcz0k4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.248.0/21
Signature Algorithm: sha256WithRSAEncryption
bc:1a:38:d7:ad:e2:04:54:25:92:9d:af:a6:5f:78:e3:3c:bf:
69:c3:9b:85:0a:a2:75:86:fd:10:d3:a9:65:97:b7:9d:70:00:
59:b3:c3:5d:39:f6:43:31:e2:6d:2a:89:83:14:45:ed:24:50:
dc:48:13:b2:7e:3b:be:8d:55:d0:63:3b:60:e1:f9:80:42:5d:
4f:e5:53:e6:d6:bb:ae:b5:ae:2c:f2:d5:66:d7:ee:d1:6b:3b:
e9:85:3f:52:e4:be:a3:8e:d1:a9:a3:80:59:d0:4a:d2:84:12:
fc:22:3f:cc:ce:d7:4b:cc:58:e2:7e:23:56:cc:98:16:34:19:
61:2e:c1:b1:fd:1b:ce:f9:6e:b4:a5:5f:1a:64:9c:16:ca:e4:
94:0c:08:61:ce:75:8d:a3:4a:29:b7:67:d3:19:d4:59:dd:20:
58:58:5f:c3:77:a3:24:f4:2d:5d:67:f1:4c:59:df:93:15:a9:
97:e3:f2:e0:dd:5a:52:22:79:9f:14:d0:a1:34:ea:79:c2:35:
bd:af:6f:cd:d9:14:79:cb:72:39:ad:05:df:17:ee:42:a2:93:
8f:4c:32:2b:90:e0:c4:b4:f8:38:87:a3:17:25:f1:2d:3d:fd:
bf:ef:8e:af:0a:0d:a6:3e:f0:18:3d:03:be:b4:71:98:02:98:
de:61:9c:d0
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCDswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMDA5Mjkw
OTU4MjlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEQzRDJEOTQ0MDRDMDhE
N0IzNzU5MTU3NjY5MDlDM0M4QzczM0QyNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7OKiLFIM0jKDywEoB6qR0NuIivuTHpck648wdlXqMnhQR/t2o
WkhimrlaFkPKbLg847RCqbfVaNOxLbNMBeJBvy9aeE9GHu/EQ7ewLyW9xTUnUaZt
bw1gcra45kePHxYxsiGtx7lT4WNHjvQ+AcdRMUXtX/4dcVEKDWEHINvE/wLej31Q
afxHEbwcwjk2Dt9ml0NXKT4x6vATk53XiJQmwZiuIleRUSk0kGnWPfFDEbMyj2Ir
STn6OSTdL0Cnabfr5deMW8KW2XotT0O6xlxcgTL/lfNu3QalqV2LIXCx0DkQtjZ1
VTti4kaRXfQ/G1y+MFMMSU7edYlIWPo2m3AXAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU09LZRATAjXs3WRV2aQnDyMcz0k4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8wOUxaUkFUQWpYczNXUlYyYVFu
RHlNY3owazQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD0j74
MA0GCSqGSIb3DQEBCwUAA4IBAQC8GjjXreIEVCWSna+mX3jjPL9pw5uFCqJ1hv0Q
06lll7edcABZs8NdOfZDMeJtKomDFEXtJFDcSBOyfju+jVXQYztg4fmAQl1P5VPm
1ruuta4s8tVm1+7RazvphT9S5L6jjtGpo4BZ0ErShBL8Ij/MztdLzFjifiNWzJgW
NBlhLsGx/RvO+W60pV8aZJwWyuSUDAhhznWNo0opt2fTGdRZ3SBYWF/Dd6Mk9C1d
Z/FMWd+TFamX4/Lg3VpSInmfFNChNOp5wjW9r2/N2RR5y3I5rQXfF+5CopOPTDIr
kODEtPg4h6MXJfEtPf2/746vCg2mPvAYPQO+tHGYApjeYZzQ
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-fra.rpki-client.org