Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/15zh7P_hrT6BzdOK0TqsgxB_6Y8.roa
File: 15zh7P_hrT6BzdOK0TqsgxB_6Y8.roa (raw, json)
Hash identifier: IRdHZubBDuRdemxTcA8DlLRxfphSSil53msiQe5zX+8=
Subject key identifier: D7:9C:E1:EC:FF:E1:AD:3E:81:CD:D3:8A:D1:3A:AC:83:10:7F:E9:8F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C01
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/15zh7P_hrT6BzdOK0TqsgxB_6Y8.roa
Signing time: Wed 29 Sep 2021 02:50:45 +0000
ROA not before: Wed 29 Sep 2021 02:50:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 2001:b000::/23 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3073 (0xc01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D79CE1ECFFE1AD3E81CDD38AD13AAC83107FE98F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:54:ae:1e:92:33:00:cd:31:00:70:38:c4:7d:
fd:5a:13:0f:e2:4c:7d:72:9b:c5:51:e1:91:52:58:
ef:88:d4:4e:b3:ea:08:0c:cc:8a:bf:d6:84:c1:25:
88:3a:88:32:b4:ee:1f:18:83:72:a4:eb:ad:c2:bb:
23:73:4d:a7:88:37:7e:f4:e6:64:93:a9:63:0f:6e:
12:af:c3:f3:0a:86:be:f3:dd:a6:f6:72:25:5d:5c:
3a:72:17:cd:7b:7c:bd:ec:6d:63:45:5a:f9:24:e9:
96:f9:29:1d:ba:e4:be:2a:d9:81:07:e0:d1:f4:29:
09:a2:58:1f:e8:66:47:24:3a:f1:de:48:57:01:e5:
33:43:f9:27:1a:78:e9:2e:d1:81:dd:56:7b:13:19:
a0:75:f3:5f:67:6b:33:ba:ad:dc:9a:12:0b:dd:d0:
a9:6c:d0:1f:7e:7a:b8:62:d3:6a:33:11:3e:bf:6f:
c3:d1:44:c1:ff:c7:2c:7f:7c:43:ea:ae:a1:92:79:
dd:06:a8:86:9d:3f:19:fb:3d:59:6a:92:cc:35:db:
6a:f7:4e:25:57:cf:d4:23:c0:62:81:39:0b:52:91:
2a:c6:e7:02:64:2e:6e:f0:8f:1c:af:17:d4:26:1d:
2c:fb:32:58:dd:08:bf:49:72:c6:aa:49:d6:3d:68:
d8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:9C:E1:EC:FF:E1:AD:3E:81:CD:D3:8A:D1:3A:AC:83:10:7F:E9:8F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/15zh7P_hrT6BzdOK0TqsgxB_6Y8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000::/23
Signature Algorithm: sha256WithRSAEncryption
c2:db:8c:36:a9:1e:bf:72:27:14:2b:d9:f2:85:37:df:a5:e5:
7b:ec:e4:27:9d:d2:8b:b4:19:7b:fa:9a:b6:a5:09:c7:16:44:
b0:c5:e1:46:76:b2:85:92:3f:e9:cc:d1:78:35:2f:b6:4b:c7:
d9:19:c1:12:5d:7e:87:69:87:5f:04:b1:e9:63:e1:39:cc:09:
b9:01:cc:79:98:ff:87:eb:4d:03:69:07:e7:01:f9:31:8c:45:
9f:58:98:b2:9c:29:cd:a8:0a:66:73:23:34:80:4b:ba:a2:3a:
62:fc:76:6f:7f:85:41:15:5a:02:40:98:f4:d5:df:72:0e:0a:
06:ee:7e:ef:b7:27:b4:89:fe:20:e4:56:07:43:1f:dc:95:bd:
4e:83:fd:bf:a9:45:d3:75:18:10:5e:a4:2a:a0:9a:08:ff:23:
49:79:2a:4a:84:74:df:f1:18:fc:10:dd:7f:94:71:22:7b:08:
5c:53:46:c3:86:f8:f4:0e:c4:a2:a9:ea:bc:d2:9d:d6:25:9a:
df:3e:3f:99:8d:28:fd:c8:9b:2f:95:97:fb:8f:24:de:83:d7:
01:a8:0f:94:e1:99:f1:ff:97:68:4d:35:a9:f1:20:7f:5f:8f:
23:41:2e:f5:74:75:77:e5:7c:74:a5:63:5d:3a:a2:00:47:ee:
16:75:ff:29
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDAEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUwNDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQ3OUNFMUVDRkZFMUFE
M0U4MUNERDM4QUQxM0FBQzgzMTA3RkU5OEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBVK4ekjMAzTEAcDjEff1aEw/iTH1ym8VR4ZFSWO+I1E6z6ggM
zIq/1oTBJYg6iDK07h8Yg3Kk663CuyNzTaeIN3705mSTqWMPbhKvw/MKhr7z3ab2
ciVdXDpyF817fL3sbWNFWvkk6Zb5KR265L4q2YEH4NH0KQmiWB/oZkckOvHeSFcB
5TND+ScaeOku0YHdVnsTGaB1819nazO6rdyaEgvd0Kls0B9+erhi02ozET6/b8PR
RMH/xyx/fEPqrqGSed0GqIadPxn7PVlqksw122r3TiVXz9QjwGKBOQtSkSrG5wJk
Lm7wjxyvF9QmHSz7MljdCL9JcsaqSdY9aNh1AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU15zh7P/hrT6BzdOK0TqsgxB/6Y8wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8xNXpoN1BfaHJUNkJ6ZE9LMFRx
c2d4Ql82WTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAAjAGAwQBIAGw
MA0GCSqGSIb3DQEBCwUAA4IBAQDC24w2qR6/cicUK9nyhTffpeV77OQnndKLtBl7
+pq2pQnHFkSwxeFGdrKFkj/pzNF4NS+2S8fZGcESXX6HaYdfBLHpY+E5zAm5Acx5
mP+H600DaQfnAfkxjEWfWJiynCnNqApmcyM0gEu6ojpi/HZvf4VBFVoCQJj01d9y
DgoG7n7vtye0if4g5FYHQx/clb1Og/2/qUXTdRgQXqQqoJoI/yNJeSpKhHTf8Rj8
EN1/lHEiewhcU0bDhvj0DsSiqeq80p3WJZrfPj+ZjSj9yJsvlZf7jyTeg9cBqA+U
4Znx/5doTTWp8SB/X48jQS71dHV35Xx0pWNdOqIAR+4Wdf8p
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org