Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7vW7_buNnfQnvq9BF8566zDPGxo.roa
File: 7vW7_buNnfQnvq9BF8566zDPGxo.roa (raw, json)
Hash identifier: /OnCr8cQZxkWJh+5uR7EftEipWSRBIWy2ZWNGHSpBLs=
Subject key identifier: EE:F5:BB:FD:BB:8D:9D:F4:27:BE:AF:41:17:CE:7A:EB:30:CF:1B:1A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 08A6
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7vW7_buNnfQnvq9BF8566zDPGxo.roa
Signing time: Mon 05 Oct 2020 04:11:59 +0000
ROA not before: Mon 05 Oct 2020 04:11:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9678
IP address blocks: 203.66.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2214 (0x8a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Oct 5 04:11:59 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EEF5BBFDBB8D9DF427BEAF4117CE7AEB30CF1B1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:9c:de:2e:f9:b4:28:f2:0c:b0:d7:17:d6:33:
5b:61:cb:93:16:ad:c2:59:1e:16:e4:5d:d9:bd:ba:
a1:4f:6b:5e:f4:73:55:5a:08:27:32:30:7e:25:0a:
41:0e:af:f2:8c:4d:b9:53:2a:82:4b:21:b1:f2:7e:
a2:c5:04:51:12:a8:ec:fc:8a:8b:58:1e:9f:d8:be:
57:f7:a2:39:94:9f:cd:f3:cf:5c:62:37:64:af:d1:
c9:bc:60:0c:95:2d:3a:21:bc:ae:93:c5:fd:f3:fe:
ba:d4:7e:e7:1b:1a:1f:6a:f8:bd:df:eb:9e:9a:5f:
c5:14:3b:7c:04:0d:3a:5d:b6:80:13:70:98:de:15:
21:2b:6d:f6:a7:20:00:f7:67:fd:c8:13:45:85:f0:
44:8a:0f:2a:e1:15:e3:56:fd:63:86:53:17:10:78:
8e:92:57:c3:ff:76:55:4e:62:05:03:dc:e1:3a:05:
16:14:19:cd:b2:0d:55:c5:57:d5:5e:16:d1:ce:4e:
b0:75:4b:9b:91:47:4a:05:d5:a9:38:0d:fa:28:0a:
6f:12:ea:3d:a5:cd:6a:4f:15:f0:68:45:b3:02:ad:
cc:a1:dd:a1:ad:9c:74:40:c5:54:3e:b2:2f:bb:83:
a1:82:de:67:96:44:77:45:37:d5:a1:69:0b:6e:e8:
3e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F5:BB:FD:BB:8D:9D:F4:27:BE:AF:41:17:CE:7A:EB:30:CF:1B:1A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7vW7_buNnfQnvq9BF8566zDPGxo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:e9:68:74:1a:5c:d3:78:9b:b9:fc:68:be:4c:bb:98:5e:d6:
e3:90:35:b1:40:59:1d:ae:04:74:e7:1d:cd:18:22:6c:a2:8f:
73:72:8b:3c:d2:4a:72:2a:37:7f:e2:9e:73:de:a9:94:64:cb:
51:cd:ed:5a:0c:f0:79:ef:12:af:e0:37:60:1d:91:35:fa:af:
12:f6:65:ab:94:c1:e5:3c:b9:96:bf:40:2e:b6:30:4f:3b:f8:
25:53:4a:ef:12:64:93:67:83:b0:54:5b:f0:09:46:1f:a0:45:
6d:d1:0d:98:a1:ea:59:b3:a9:28:50:35:84:c5:e4:65:65:4a:
e2:b0:ed:a3:d3:aa:4f:65:cf:92:e9:c4:0d:f5:88:95:92:2d:
c5:3e:97:b2:c1:fc:70:94:63:75:05:1e:eb:04:44:75:97:f0:
ba:22:45:85:3d:fa:56:17:47:e5:fe:1b:82:18:5f:00:a2:5a:
a2:b5:f4:40:a7:72:21:54:13:51:be:49:2c:30:93:2f:72:c0:
e2:0e:15:82:0c:ac:50:e8:b8:2f:94:28:8d:21:f8:c1:ec:b9:
7f:26:92:bc:2b:37:cd:4a:52:dd:89:7a:05:03:ab:33:7f:63:
31:67:e6:b5:66:cc:bb:72:eb:1e:59:55:80:6f:68:44:8e:b9:
21:5a:b7:0c
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCKYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMDEwMDUw
NDExNTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEVFRjVCQkZEQkI4RDlE
RjQyN0JFQUY0MTE3Q0U3QUVCMzBDRjFCMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDinN4u+bQo8gyw1xfWM1thy5MWrcJZHhbkXdm9uqFPa170c1Va
CCcyMH4lCkEOr/KMTblTKoJLIbHyfqLFBFESqOz8iotYHp/Yvlf3ojmUn83zz1xi
N2Sv0cm8YAyVLTohvK6Txf3z/rrUfucbGh9q+L3f656aX8UUO3wEDTpdtoATcJje
FSErbfanIAD3Z/3IE0WF8ESKDyrhFeNW/WOGUxcQeI6SV8P/dlVOYgUD3OE6BRYU
Gc2yDVXFV9VeFtHOTrB1S5uRR0oF1ak4DfooCm8S6j2lzWpPFfBoRbMCrcyh3aGt
nHRAxVQ+si+7g6GC3meWRHdFN9WhaQtu6D7pAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU7vW7/buNnfQnvq9BF8566zDPGxowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC83dlc3X2J1Tm5mUW52cTlCRjg1
NjZ6RFBHeG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0KX
MA0GCSqGSIb3DQEBCwUAA4IBAQCo6Wh0GlzTeJu5/Gi+TLuYXtbjkDWxQFkdrgR0
5x3NGCJsoo9zcos80kpyKjd/4p5z3qmUZMtRze1aDPB57xKv4DdgHZE1+q8S9mWr
lMHlPLmWv0AutjBPO/glU0rvEmSTZ4OwVFvwCUYfoEVt0Q2YoepZs6koUDWExeRl
ZUrisO2j06pPZc+S6cQN9YiVki3FPpeywfxwlGN1BR7rBER1l/C6IkWFPfpWF0fl
/huCGF8AolqitfRAp3IhVBNRvkksMJMvcsDiDhWCDKxQ6LgvlCiNIfjB7Ll/JpK8
KzfNSlLdiXoFA6szf2MxZ+a1Zsy7cuseWVWAb2hEjrkhWrcM
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org