Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0xSzhjuaETTUXgydRcJCw7afIWw.roa
File: 0xSzhjuaETTUXgydRcJCw7afIWw.roa (raw, json)
Hash identifier: 4GoEhslaKquTL69f1ze3SxqWKhMwXLl7i5HRKBPQcyw=
Subject key identifier: D3:14:B3:86:3B:9A:11:34:D4:5E:0C:9D:45:C2:42:C3:B6:9F:21:6C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0BF5
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0xSzhjuaETTUXgydRcJCw7afIWw.roa
Signing time: Wed 29 Sep 2021 02:50:42 +0000
ROA not before: Wed 29 Sep 2021 02:50:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 54994
IP address blocks: 210.61.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3061 (0xbf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D314B3863B9A1134D45E0C9D45C242C3B69F216C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:75:a7:cf:a0:e6:26:c4:ec:27:4b:a1:bf:01:
20:6f:14:d4:85:a9:cc:31:e1:b2:0b:fb:33:6d:ed:
1c:b5:d1:aa:f7:02:83:3c:ce:5c:72:63:ce:29:8c:
f1:9d:c5:53:d4:6d:93:0d:98:39:af:71:93:a5:ce:
11:a1:9b:f0:6a:1a:1d:63:6d:e9:f0:3b:1b:2c:66:
3e:1f:13:ab:f5:cb:5c:ae:78:45:1b:51:53:4f:e4:
12:98:51:35:01:2f:27:7f:8f:65:63:7c:fe:c4:b5:
9e:c6:ce:c6:39:55:78:33:5d:e7:03:03:a9:a2:95:
d3:0f:43:bc:7e:48:cc:ce:fa:ce:84:53:6c:a8:6a:
b7:87:c3:82:89:d0:5a:df:2e:36:0e:85:e7:b4:25:
f7:2f:fe:c7:ad:ce:a7:88:23:7a:32:e8:db:d0:d1:
de:7a:0a:e0:2f:84:1e:3b:54:b7:c3:5d:c3:c0:4b:
8d:d3:ca:0f:17:6a:a7:8e:a4:a0:11:f5:aa:29:18:
7b:82:39:91:10:e7:bd:85:a9:74:ec:6b:e0:08:22:
28:45:17:b8:47:f7:cf:f2:1b:e8:48:b0:28:8e:4d:
c7:ba:eb:48:51:32:83:7f:30:9a:12:63:d3:2e:18:
38:88:0c:a6:b7:7c:40:57:9b:b3:fb:29:da:bb:c8:
cc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:14:B3:86:3B:9A:11:34:D4:5E:0C:9D:45:C2:42:C3:B6:9F:21:6C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0xSzhjuaETTUXgydRcJCw7afIWw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.180.0/24
Signature Algorithm: sha256WithRSAEncryption
03:77:07:d1:b2:e7:e8:e9:f2:aa:a7:06:ab:0e:88:57:7c:ad:
30:18:4c:6a:42:99:02:ee:74:af:77:e6:43:81:8f:c2:03:db:
05:e4:91:e1:77:a2:1a:40:68:9c:41:fa:32:b1:91:ef:b6:34:
31:80:3c:4e:75:a4:74:38:c8:e7:82:ca:12:ac:d6:33:4a:55:
42:14:26:62:20:f9:e5:e4:3b:cc:fd:db:db:57:d2:7a:09:30:
57:ba:d8:5e:a3:aa:00:bb:27:87:4e:34:e7:2d:c8:c3:aa:f1:
d2:76:4f:f2:f7:0b:4d:f3:23:3e:8b:a7:71:a6:1c:aa:5b:c1:
50:8b:0d:73:9c:ee:d7:16:c3:d9:ae:7d:d6:1a:57:3b:6a:d0:
fd:5b:66:7d:63:f4:58:aa:b3:96:0c:65:d1:e0:8f:b7:c1:fe:
7a:ab:c4:47:18:48:eb:b3:3c:41:df:e9:4e:ca:df:55:a7:65:
64:71:b0:1f:f4:79:d9:e2:fc:17:aa:3d:ac:e6:50:65:a4:51:
7e:5c:a1:61:ca:49:67:6b:a2:ad:a2:bb:7d:e7:89:8d:9a:96:
30:be:6f:87:8b:c5:c7:20:1c:b0:58:be:34:82:82:91:f7:ca:
f0:01:e0:a0:e2:a6:14:ca:1e:27:8d:19:77:75:57:fa:49:33:
af:11:e6:66
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICC/UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUwNDJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQzMTRCMzg2M0I5QTEx
MzRENDVFMEM5RDQ1QzI0MkMzQjY5RjIxNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrdafPoOYmxOwnS6G/ASBvFNSFqcwx4bIL+zNt7Ry10ar3AoM8
zlxyY84pjPGdxVPUbZMNmDmvcZOlzhGhm/BqGh1jbenwOxssZj4fE6v1y1yueEUb
UVNP5BKYUTUBLyd/j2VjfP7EtZ7GzsY5VXgzXecDA6mildMPQ7x+SMzO+s6EU2yo
areHw4KJ0FrfLjYOhee0Jfcv/setzqeII3oy6NvQ0d56CuAvhB47VLfDXcPAS43T
yg8XaqeOpKAR9aopGHuCOZEQ572FqXTsa+AIIihFF7hH98/yG+hIsCiOTce660hR
MoN/MJoSY9MuGDiIDKa3fEBXm7P7Kdq7yMydAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU0xSzhjuaETTUXgydRcJCw7afIWwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8weFN6aGp1YUVUVFVYZ3lkUmNK
Q3c3YWZJV3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j20
MA0GCSqGSIb3DQEBCwUAA4IBAQADdwfRsufo6fKqpwarDohXfK0wGExqQpkC7nSv
d+ZDgY/CA9sF5JHhd6IaQGicQfoysZHvtjQxgDxOdaR0OMjngsoSrNYzSlVCFCZi
IPnl5DvM/dvbV9J6CTBXutheo6oAuyeHTjTnLcjDqvHSdk/y9wtN8yM+i6dxphyq
W8FQiw1znO7XFsPZrn3WGlc7atD9W2Z9Y/RYqrOWDGXR4I+3wf56q8RHGEjrszxB
3+lOyt9Vp2VkcbAf9HnZ4vwXqj2s5lBlpFF+XKFhyklna6Ktort954mNmpYwvm+H
i8XHIBywWL40goKR98rwAeCg4qYUyh4njRl3dVf6STOvEeZm
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org