Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7o4xvxgtuNQldt_VhnqwZOIIWww.roa
File: 7o4xvxgtuNQldt_VhnqwZOIIWww.roa (raw, json)
Hash identifier: i/nv5NCgHABIBjL3WOqys0tMT/cvxh5/9f6JcTIyEzc=
Subject key identifier: EE:8E:31:BF:18:2D:B8:D4:25:76:DF:D5:86:7A:B0:64:E2:08:5B:0C
Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial: 0A3C
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7o4xvxgtuNQldt_VhnqwZOIIWww.roa
Signing time: Wed 29 Sep 2021 02:51:24 +0000
ROA not before: Wed 29 Sep 2021 02:51:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 168.95.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2620 (0xa3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Validity
Not Before: Sep 29 02:51:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EE8E31BF182DB8D42576DFD5867AB064E2085B0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b2:52:a2:bd:e8:ce:8e:47:85:83:74:4d:bd:
0f:d3:89:6a:c8:11:a2:62:db:d3:1f:b5:b5:9b:6a:
bd:7f:9a:d9:c8:b7:d5:28:fe:84:58:da:da:79:71:
da:e9:eb:7f:d1:df:d0:a7:51:28:ac:76:68:15:32:
6a:1f:b7:43:b1:b4:74:bc:9a:4e:ab:d4:ce:57:45:
51:b3:1f:fc:9a:79:b8:a1:f6:2c:b6:e3:6b:3d:ed:
e4:9d:88:08:b4:32:0d:7b:8f:5b:09:32:92:0f:f3:
cd:d0:7f:3f:55:4d:fd:cf:43:11:bb:c0:c0:35:c4:
4b:dc:2c:38:6b:e1:2e:c8:35:e0:64:b1:fb:1c:60:
2b:a5:77:06:56:eb:fd:f0:44:53:66:e1:da:c3:64:
4d:58:d0:8d:34:35:68:2f:ee:12:33:39:06:8a:ee:
51:c1:9a:fd:ed:20:af:c8:d1:be:e2:ee:8c:82:f2:
d5:a3:98:e1:5d:57:f7:b8:3f:24:7f:47:b7:a3:46:
d9:7c:6d:94:2a:6f:7d:37:17:e5:d3:a6:03:32:ad:
b9:05:40:a0:99:9c:16:2e:a4:69:45:48:c7:4b:fd:
e2:11:21:8e:dc:0e:06:6e:53:93:c3:9b:68:4e:c5:
de:68:c7:85:35:1b:76:32:ba:57:06:28:8e:e3:05:
a0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8E:31:BF:18:2D:B8:D4:25:76:DF:D5:86:7A:B0:64:E2:08:5B:0C
X509v3 Authority Key Identifier:
keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7o4xvxgtuNQldt_VhnqwZOIIWww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
168.95.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4c:0c:57:9f:c9:23:20:10:7a:1b:d8:36:27:b2:4b:06:07:54:
a6:43:6f:db:61:5a:39:86:4a:4b:a8:94:f2:46:50:a5:95:9f:
d5:35:b4:18:4b:04:b2:d3:01:63:bc:b3:22:11:6b:c4:88:4d:
d6:62:c7:57:32:5d:63:07:58:cf:f6:8f:36:e5:c4:9b:35:87:
36:35:30:bc:58:4e:72:ae:37:eb:8e:10:7b:9b:d6:2d:30:96:
cb:c2:94:c9:e3:d0:51:5d:06:09:ce:11:cb:c1:58:51:e2:35:
b2:58:2e:7a:43:c8:f5:85:8b:ee:bb:b3:e9:c9:bf:c6:d9:81:
25:ef:69:17:5b:90:27:f2:21:54:f4:86:0c:15:b0:c3:9e:85:
7f:be:90:f4:4d:6a:06:f1:e3:4f:a5:4e:95:5f:9f:43:c1:41:
23:a1:63:56:c0:8d:ad:96:06:34:28:17:35:42:6b:5d:63:da:
c9:98:a9:6f:c8:29:59:25:7d:5b:f2:4a:d9:c9:e7:91:60:dd:
60:41:db:ee:1c:7d:a2:cd:fd:66:c9:bc:15:d0:3a:e8:4a:a9:
9b:15:1e:ff:98:73:78:e3:0c:5a:37:9c:ed:70:28:01:37:64:
37:df:92:1e:d3:f7:75:f1:32:79:e0:24:66:5c:76:0f:ae:00:
24:f1:74:e3
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCjwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTg3
NkU0QjhERkFBMjI0QzAxOUQyNDY5MzFGQzNDRDdBNEZFRUQyQTAeFw0yMTA5Mjkw
MjUxMjRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEVFOEUzMUJGMTgyREI4
RDQyNTc2REZENTg2N0FCMDY0RTIwODVCMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDslKivejOjkeFg3RNvQ/TiWrIEaJi29MftbWbar1/mtnIt9Uo
/oRY2tp5cdrp63/R39CnUSisdmgVMmoft0OxtHS8mk6r1M5XRVGzH/yaebih9iy2
42s97eSdiAi0Mg17j1sJMpIP883Qfz9VTf3PQxG7wMA1xEvcLDhr4S7INeBksfsc
YCuldwZW6/3wRFNm4drDZE1Y0I00NWgv7hIzOQaK7lHBmv3tIK/I0b7i7oyC8tWj
mOFdV/e4PyR/R7ejRtl8bZQqb303F+XTpgMyrbkFQKCZnBYupGlFSMdL/eIRIY7c
DgZuU5PDm2hOxd5ox4U1G3YyulcGKI7jBaBhAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU7o4xvxgtuNQldt/VhnqwZOIIWwwwHwYDVR0jBBgwFoAUWHbkuN+qIkwBnSRp
Mfw816T+7SowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
V0hia3VOLXFJa3dCblNScE1mdzgxNlQtN1NvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9XSGJrdU4tcUlrd0JuU1JwTWZ3ODE2VC03U28uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC83bzR4dnhndHVOUWxkdF9WaG5x
d1pPSUlXd3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAqF8w
DQYJKoZIhvcNAQELBQADggEBAEwMV5/JIyAQehvYNieySwYHVKZDb9thWjmGSkuo
lPJGUKWVn9U1tBhLBLLTAWO8syIRa8SITdZix1cyXWMHWM/2jzblxJs1hzY1MLxY
TnKuN+uOEHub1i0wlsvClMnj0FFdBgnOEcvBWFHiNbJYLnpDyPWFi+67s+nJv8bZ
gSXvaRdbkCfyIVT0hgwVsMOehX++kPRNagbx40+lTpVfn0PBQSOhY1bAja2WBjQo
FzVCa11j2smYqW/IKVklfVvyStnJ55Fg3WBB2+4cfaLN/WbJvBXQOuhKqZsVHv+Y
c3jjDFo3nO1wKAE3ZDffkh7T93XxMnngJGZcdg+uACTxdOM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org