Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0cxNtDh3XoDaHb4MLp7ZWNhQIQY.roa
File: 0cxNtDh3XoDaHb4MLp7ZWNhQIQY.roa (raw, json)
Hash identifier: 9tgw+5fMd4zU2zNAKlpvunZaNnZ1nNBrO0iIbMbq5Uc=
Subject key identifier: D1:CC:4D:B4:38:77:5E:80:DA:1D:BE:0C:2E:9E:D9:58:D8:50:21:06
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0cxNtDh3XoDaHb4MLp7ZWNhQIQY.roa
Signing time: Thu 15 Sep 2022 02:48:21 +0000
ROA not before: Thu 15 Sep 2022 02:48:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10126
IP address blocks: 114.30.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D1CC4DB438775E80DA1DBE0C2E9ED958D8502106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ae:d1:9c:6c:be:27:27:62:a8:fb:ed:24:bd:
94:7c:98:42:f7:16:de:ad:5a:a9:ad:dd:84:28:e9:
04:4e:27:6f:15:81:15:4f:78:23:ec:8c:e5:56:6f:
1c:01:a1:e3:ac:da:17:5c:ef:2b:40:82:61:a6:38:
1e:f3:2a:3f:7b:11:fe:0b:94:d8:1c:83:66:ed:6c:
c2:b1:20:5d:d9:e7:23:a6:ec:15:73:83:7e:6d:27:
a7:28:7a:33:e7:88:51:71:89:33:9e:db:73:c0:92:
06:76:da:31:f7:c7:11:66:b2:b7:73:b3:69:05:ee:
4b:61:07:a7:79:ec:ee:15:c4:62:07:79:dc:f0:09:
54:dd:33:cc:db:e3:3a:53:ab:6a:e3:85:3c:f4:65:
56:c0:20:0c:fe:d0:a3:13:fb:b0:d2:1b:64:82:b0:
de:64:4a:5c:32:f8:ac:fd:1b:01:df:a8:14:c7:4f:
1a:2b:a3:a2:c4:86:ee:d4:4d:23:dc:fd:f1:ec:b7:
1e:10:f4:f2:75:7f:df:ee:4e:2a:4c:3b:68:fc:19:
83:f9:7e:77:19:13:72:9c:42:db:e9:3e:39:95:10:
a8:91:8f:bf:2c:c6:fe:d8:2c:0f:57:5e:64:46:fa:
50:b5:b1:55:aa:22:d9:99:2c:2e:db:eb:0a:64:46:
98:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:CC:4D:B4:38:77:5E:80:DA:1D:BE:0C:2E:9E:D9:58:D8:50:21:06
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0cxNtDh3XoDaHb4MLp7ZWNhQIQY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.30.32.0/20
Signature Algorithm: sha256WithRSAEncryption
93:f9:08:d1:8d:ac:55:87:e5:75:32:a4:22:3e:74:f8:e4:cc:
b3:c5:11:48:97:4e:53:b4:35:7b:47:01:8c:7b:3d:24:be:6c:
7b:65:bc:33:f1:51:62:a6:6f:1a:cd:64:fd:ae:b5:1b:16:c5:
f7:13:ed:02:ab:2f:0d:4b:aa:82:9e:9d:86:eb:a4:1f:a3:57:
b6:88:42:c9:2b:9d:b7:6d:56:0c:28:e8:18:09:47:08:27:86:
0a:3c:5d:ae:62:70:34:03:f1:3e:8e:eb:be:9b:26:a5:a4:69:
c1:86:e8:ad:92:28:95:07:5e:ed:ef:01:80:54:f2:f7:6f:50:
8e:6c:d1:8d:d8:f3:8e:17:58:17:3f:30:96:7e:47:a2:04:1e:
10:97:9e:3d:85:69:ea:89:a6:40:58:b4:f6:92:17:1b:ec:a9:
6c:15:d6:d3:1b:f4:49:60:23:dc:d6:cc:3a:a6:8e:37:02:53:
96:77:7e:d2:79:5d:65:97:b2:29:11:b2:df:df:25:f9:ca:76:
65:1b:aa:2d:e0:d9:72:1c:37:c3:70:f3:d6:28:54:fd:69:36:
2d:ae:41:2a:81:61:bd:63:cf:83:83:05:0a:f5:59:92:37:be:
e3:3f:d2:fd:a6:9f:a8:09:5e:9e:57:ec:c5:c6:85:bb:71:57:
bd:f3:ed:3d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MjFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQxQ0M0REI0Mzg3NzVF
ODBEQTFEQkUwQzJFOUVEOTU4RDg1MDIxMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCvrtGcbL4nJ2Ko++0kvZR8mEL3Ft6tWqmt3YQo6QROJ28VgRVP
eCPsjOVWbxwBoeOs2hdc7ytAgmGmOB7zKj97Ef4LlNgcg2btbMKxIF3Z5yOm7BVz
g35tJ6coejPniFFxiTOe23PAkgZ22jH3xxFmsrdzs2kF7kthB6d57O4VxGIHedzw
CVTdM8zb4zpTq2rjhTz0ZVbAIAz+0KMT+7DSG2SCsN5kSlwy+Kz9GwHfqBTHTxor
o6LEhu7UTSPc/fHstx4Q9PJ1f9/uTipMO2j8GYP5fncZE3KcQtvpPjmVEKiRj78s
xv7YLA9XXmRG+lC1sVWqItmZLC7b6wpkRpiTAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU0cxNtDh3XoDaHb4MLp7ZWNhQIQYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8wY3hOdERoM1hvRGFIYjRNTHA3
WldOaFFJUVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEch4g
MA0GCSqGSIb3DQEBCwUAA4IBAQCT+QjRjaxVh+V1MqQiPnT45MyzxRFIl05TtDV7
RwGMez0kvmx7Zbwz8VFipm8azWT9rrUbFsX3E+0Cqy8NS6qCnp2G66Qfo1e2iELJ
K523bVYMKOgYCUcIJ4YKPF2uYnA0A/E+juu+myalpGnBhuitkiiVB17t7wGAVPL3
b1CObNGN2POOF1gXPzCWfkeiBB4Ql549hWnqiaZAWLT2khcb7KlsFdbTG/RJYCPc
1sw6po43AlOWd37SeV1ll7IpEbLf3yX5ynZlG6ot4NlyHDfDcPPWKFT9aTYtrkEq
gWG9Y8+DgwUK9VmSN77jP9L9pp+oCV6eV+zFxoW7cVe98+09
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org