Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0rMCGdD3MGp1fJKritARC9HINr4.roa
File: 0rMCGdD3MGp1fJKritARC9HINr4.roa (raw, json)
Hash identifier: YPtGI1oqGwCv24bOlE/p+7hKP//GdZvDcB/pCR088Q8=
Subject key identifier: D2:B3:02:19:D0:F7:30:6A:75:7C:92:AB:8A:D0:11:0B:D1:C8:36:BE
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A82
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0rMCGdD3MGp1fJKritARC9HINr4.roa
Signing time: Sun 07 Feb 2021 11:38:03 +0000
ROA not before: Sun 07 Feb 2021 11:38:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 125.224.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2690 (0xa82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D2B30219D0F7306A757C92AB8AD0110BD1C836BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:95:03:63:ea:1c:33:e5:9f:05:50:74:4c:8d:
f8:5e:c9:03:b3:c8:01:cc:2a:54:15:4d:56:86:21:
21:af:2f:55:8b:26:05:ef:c8:96:18:2d:41:91:d4:
32:79:8e:a0:a4:b8:55:76:b9:54:c1:e0:b5:bc:f7:
e4:88:f6:53:0e:eb:d1:75:a2:c9:30:a9:24:42:0a:
d7:a1:d0:ca:bb:ff:6d:4a:6f:1d:1a:3b:f7:03:44:
78:7c:e5:05:50:36:18:50:20:22:21:0c:0a:e7:05:
03:4b:05:1f:04:80:5a:8c:b1:f0:ec:2e:41:b8:12:
49:cc:77:dd:ed:e6:d0:07:1b:e1:c5:5a:f1:af:ff:
a5:ac:c9:80:18:69:53:30:73:5b:a3:56:c1:0b:ea:
3b:10:df:eb:31:e8:7c:d5:c6:8c:c7:03:cf:24:5e:
ad:30:17:4a:13:b6:67:f5:50:d8:ff:3e:28:86:40:
8d:18:9f:0d:3e:87:8e:b2:8f:c4:5a:6c:95:96:d8:
bb:98:56:6e:7d:13:85:61:a1:94:41:24:60:23:36:
f7:26:9b:b6:20:55:53:b1:fe:e6:99:08:ac:b4:65:
d0:39:87:be:f3:e1:c0:74:f0:dc:b2:36:de:33:79:
75:c4:6a:45:30:44:2e:25:cb:d2:91:e6:f8:8b:6b:
1b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B3:02:19:D0:F7:30:6A:75:7C:92:AB:8A:D0:11:0B:D1:C8:36:BE
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0rMCGdD3MGp1fJKritARC9HINr4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
125.224.0.0/13
Signature Algorithm: sha256WithRSAEncryption
09:33:ac:bb:41:fa:38:29:30:2d:cc:ec:ea:9c:31:4b:47:75:
26:ac:f3:51:96:b5:b0:89:40:83:9d:de:00:5a:37:a8:f3:14:
a9:c9:5e:09:ca:bf:f8:f0:67:ed:05:a5:3d:bd:a9:11:a1:19:
b6:fd:71:17:26:16:e3:7f:20:aa:10:17:20:bf:c5:48:3b:3c:
96:0b:eb:28:e4:55:9d:62:af:2c:ba:90:63:94:d8:e5:2c:cc:
f6:09:b5:5d:7f:b0:e0:a4:f2:bb:dc:a4:ed:c5:ea:18:5a:a1:
02:75:0c:d7:54:9e:64:7d:7c:d7:f2:2c:73:2b:fa:af:29:73:
1d:68:8f:75:40:c4:63:6b:20:7a:19:f0:4e:f8:ec:cf:ab:61:
c0:b1:90:cb:b8:bd:b9:b4:c4:d6:2f:bf:f7:23:42:c3:af:c9:
fc:2c:0b:09:61:b9:83:f2:d6:11:2b:ec:83:b0:26:88:36:c4:
76:61:48:58:52:a7:6f:d7:a9:fb:b3:eb:68:cd:bc:95:90:cf:
54:68:28:ee:b3:c1:9e:3f:43:ad:47:3d:c8:b7:63:d9:1c:a4:
2c:79:6e:92:83:08:b7:71:9f:4a:d3:43:d9:2b:37:5e:14:48:
21:5a:70:51:01:f7:a1:11:40:0a:08:e8:46:31:59:35:f6:cc:
91:32:da:ec
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCoIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTAyMDcx
MTM4MDNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEQyQjMwMjE5RDBGNzMw
NkE3NTdDOTJBQjhBRDAxMTBCRDFDODM2QkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7lQNj6hwz5Z8FUHRMjfheyQOzyAHMKlQVTVaGISGvL1WLJgXv
yJYYLUGR1DJ5jqCkuFV2uVTB4LW89+SI9lMO69F1oskwqSRCCteh0Mq7/21Kbx0a
O/cDRHh85QVQNhhQICIhDArnBQNLBR8EgFqMsfDsLkG4EknMd93t5tAHG+HFWvGv
/6WsyYAYaVMwc1ujVsEL6jsQ3+sx6HzVxozHA88kXq0wF0oTtmf1UNj/PiiGQI0Y
nw0+h46yj8RabJWW2LuYVm59E4VhoZRBJGAjNvcmm7YgVVOx/uaZCKy0ZdA5h77z
4cB08NyyNt4zeXXEakUwRC4ly9KR5viLaxvLAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU0rMCGdD3MGp1fJKritARC9HINr4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8wck1DR2REM01HcDFmSktyaXRB
UkM5SElOcjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMDfeAw
DQYJKoZIhvcNAQELBQADggEBAAkzrLtB+jgpMC3M7OqcMUtHdSas81GWtbCJQIOd
3gBaN6jzFKnJXgnKv/jwZ+0FpT29qRGhGbb9cRcmFuN/IKoQFyC/xUg7PJYL6yjk
VZ1iryy6kGOU2OUszPYJtV1/sOCk8rvcpO3F6hhaoQJ1DNdUnmR9fNfyLHMr+q8p
cx1oj3VAxGNrIHoZ8E747M+rYcCxkMu4vbm0xNYvv/cjQsOvyfwsCwlhuYPy1hEr
7IOwJog2xHZhSFhSp2/Xqfuz62jNvJWQz1RoKO6zwZ4/Q61HPci3Y9kcpCx5bpKD
CLdxn0rTQ9krN14USCFacFEB96ERQAoI6EYxWTX2zJEy2uw=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org