Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8PPAatruNVckjV9SbBs5QaeNeWY.roa
File: 8PPAatruNVckjV9SbBs5QaeNeWY.roa (raw, json)
Hash identifier: xp2nD80N8VtlHV31LBjzhDfl4K7dwnZeoRomJslqZwU=
Subject key identifier: F0:F3:C0:6A:DA:EE:35:57:24:8D:5F:52:6C:1B:39:41:A7:8D:79:66
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0829
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8PPAatruNVckjV9SbBs5QaeNeWY.roa
Signing time: Tue 29 Sep 2020 09:58:25 +0000
ROA not before: Tue 29 Sep 2020 09:58:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 8068
IP address blocks: 61.220.60.200/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2089 (0x829)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F0F3C06ADAEE3557248D5F526C1B3941A78D7966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5d:e9:ab:fa:27:ed:e6:bc:5e:33:dd:12:83:
85:fa:3d:c1:5c:1f:dc:50:0e:d0:6d:a6:b8:3d:fa:
b4:0b:16:d8:9f:05:77:e0:85:63:22:52:fa:a2:6b:
4e:c4:99:84:0c:8c:8b:d5:ec:5d:1d:69:e2:31:19:
74:03:bc:50:c4:87:12:54:c5:d3:f3:54:b4:eb:2e:
70:d5:f7:3e:8c:b5:f7:8b:75:28:49:72:6c:03:bf:
ff:c3:3d:9d:c4:45:80:a6:bf:e0:3b:a1:22:ba:1f:
eb:63:9c:7b:8f:bd:d0:a2:a2:47:da:1f:3d:c0:23:
eb:4b:ee:8d:97:10:76:36:7a:c4:d8:16:00:98:e2:
d6:4a:c7:91:ea:d8:c3:79:0d:2a:35:10:cf:9b:4f:
f9:e5:21:83:84:84:b9:20:fd:4f:4c:2c:9c:c1:f6:
40:bf:69:6b:54:e1:4c:f9:77:be:0e:d9:52:8e:20:
8e:b6:7d:11:7e:37:f7:9a:4d:8e:c5:7a:93:90:cd:
03:40:4f:67:05:9e:54:16:0e:39:ad:40:2a:c2:18:
3e:00:70:63:0a:29:c0:cf:5e:bd:7c:b3:cd:bc:01:
04:d9:b2:20:16:95:ba:ed:7b:5d:96:fc:22:e5:d9:
f2:dd:de:85:07:5c:4e:fa:58:fe:ac:7a:c7:c0:7a:
97:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F3:C0:6A:DA:EE:35:57:24:8D:5F:52:6C:1B:39:41:A7:8D:79:66
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8PPAatruNVckjV9SbBs5QaeNeWY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.220.60.200/29
Signature Algorithm: sha256WithRSAEncryption
ae:37:8d:b7:63:0b:86:80:46:e2:60:c1:e7:5f:ea:96:ce:67:
0f:6a:51:8d:4f:53:99:8d:fa:e4:9d:c7:a5:f4:7a:2a:b9:2f:
b5:71:61:7b:d4:e8:2a:56:09:8e:99:c3:f9:03:a7:88:a2:fd:
d9:2a:ef:f4:d4:30:64:47:30:79:c0:39:e3:0f:1f:9d:81:55:
42:71:c7:b5:03:3c:77:77:68:fe:1e:5b:3e:9a:b5:e7:91:a3:
97:6b:77:3d:b2:f7:2e:4d:64:a3:14:29:4b:7b:dd:0b:4c:20:
ea:62:18:88:9d:f6:3d:64:6e:bd:55:7a:7c:e0:d5:fe:b5:f2:
53:7a:ad:05:46:6d:3f:3f:83:69:96:81:a4:d8:16:0d:88:a3:
f2:70:c1:32:e6:df:91:e9:c4:63:cd:cf:6e:d2:62:93:06:11:
8a:c3:1b:27:67:d7:81:bf:88:eb:ff:fb:f2:47:5f:14:de:62:
f4:06:18:4f:6d:44:41:4f:af:42:fb:74:05:f8:d5:8d:14:e4:
32:6d:c7:ee:d9:da:91:fa:a5:0f:2c:79:34:56:13:79:35:de:
bc:c7:06:6a:32:ff:f0:ff:8d:8e:37:83:7f:d3:1a:01:87:91:
d7:56:4a:d1:22:f8:59:97:f6:cf:72:6a:8c:99:22:9d:28:9b:
ae:d5:c1:1b
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICCCkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMDA5Mjkw
OTU4MjVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEYwRjNDMDZBREFFRTM1
NTcyNDhENUY1MjZDMUIzOTQxQTc4RDc5NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6Xemr+ift5rxeM90Sg4X6PcFcH9xQDtBtprg9+rQLFtifBXfg
hWMiUvqia07EmYQMjIvV7F0daeIxGXQDvFDEhxJUxdPzVLTrLnDV9z6MtfeLdShJ
cmwDv//DPZ3ERYCmv+A7oSK6H+tjnHuPvdCiokfaHz3AI+tL7o2XEHY2esTYFgCY
4tZKx5Hq2MN5DSo1EM+bT/nlIYOEhLkg/U9MLJzB9kC/aWtU4Uz5d74O2VKOII62
fRF+N/eaTY7FepOQzQNAT2cFnlQWDjmtQCrCGD4AcGMKKcDPXr18s828AQTZsiAW
lbrte12W/CLl2fLd3oUHXE76WP6sesfAepe1AgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQU8PPAatruNVckjV9SbBs5QaeNeWYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC84UFBBYXRydU5WY2tqVjlTYkJz
NVFhZU5lV1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUDPdw8
yDANBgkqhkiG9w0BAQsFAAOCAQEArjeNt2MLhoBG4mDB51/qls5nD2pRjU9TmY36
5J3HpfR6KrkvtXFhe9ToKlYJjpnD+QOniKL92Srv9NQwZEcwecA54w8fnYFVQnHH
tQM8d3do/h5bPpq155Gjl2t3PbL3Lk1koxQpS3vdC0wg6mIYiJ32PWRuvVV6fODV
/rXyU3qtBUZtPz+DaZaBpNgWDYij8nDBMubfkenEY83PbtJikwYRisMbJ2fXgb+I
6//78kdfFN5i9AYYT21EQU+vQvt0BfjVjRTkMm3H7tnakfqlDyx5NFYTeTXevMcG
ajL/8P+NjjeDf9MaAYeR11ZK0SL4WZf2z3JqjJkinSibrtXBGw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org