Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/9-HMKTlwrkuCLE1cPyT9jyIJKvc.roa
File: 9-HMKTlwrkuCLE1cPyT9jyIJKvc.roa (raw, json)
Hash identifier: PPJsTTHlx4DaZo0H0tczCLVvCuy1JitxQKYC/nlDMro=
Subject key identifier: F7:E1:CC:29:39:70:AE:4B:82:2C:4D:5C:3F:24:FD:8F:22:09:2A:F7
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0BFF
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9-HMKTlwrkuCLE1cPyT9jyIJKvc.roa
Signing time: Wed 29 Sep 2021 02:50:45 +0000
ROA not before: Wed 29 Sep 2021 02:50:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20940
IP address blocks: 2001:b034:700:580::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3071 (0xbff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F7E1CC293970AE4B822C4D5C3F24FD8F22092AF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d6:c9:d6:7c:d2:28:bb:c0:b8:51:ff:9a:1e:
89:17:a8:fe:55:63:c7:14:50:18:3b:8b:70:8c:f5:
80:5a:77:ca:81:b4:54:63:49:7f:22:81:f4:3e:84:
1a:67:90:f8:a3:d4:18:2f:53:b8:ed:d9:6d:87:c5:
e4:9a:75:86:79:89:b9:33:6e:ac:7b:6b:c4:fb:4f:
96:b2:aa:f8:b1:c3:be:c3:02:0b:c4:b2:33:42:5c:
a2:d5:61:8b:6f:af:cd:74:ad:7e:a0:1d:bd:51:f3:
08:d4:1e:c6:48:cb:a6:1f:5c:a5:6c:e8:94:5c:a0:
03:ef:02:d5:f8:ae:18:df:f8:be:d9:21:10:08:60:
f9:23:b0:e1:c8:12:38:83:53:4b:0f:27:c8:27:24:
56:0c:49:3b:c5:b1:0d:9b:99:d4:a4:01:8d:89:ca:
6d:90:d0:4b:65:5b:1d:cd:fb:b1:99:75:94:5e:ca:
d5:fe:32:55:d5:ac:80:d2:4c:22:c8:47:ae:43:28:
d7:dc:13:1f:d1:6a:3a:53:fc:75:ac:8c:c0:7b:ef:
70:0e:75:04:59:d1:7d:1f:2d:13:89:de:88:d6:fe:
57:b1:5e:d1:ac:4c:11:e0:ed:aa:aa:6e:a1:46:4e:
be:26:c6:15:58:b8:87:36:bf:2f:f0:b7:4b:64:db:
95:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:E1:CC:29:39:70:AE:4B:82:2C:4D:5C:3F:24:FD:8F:22:09:2A:F7
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9-HMKTlwrkuCLE1cPyT9jyIJKvc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b034:700:580::/64
Signature Algorithm: sha256WithRSAEncryption
53:15:cd:22:3d:f7:00:ba:60:f7:9a:7d:3e:e6:62:32:dc:dd:
09:4d:91:50:29:bb:3e:6c:7b:b0:5b:54:dd:a2:d2:2b:f8:68:
93:2c:59:e4:c0:ff:30:cb:65:bd:d7:7d:86:cf:f5:6b:e3:11:
9c:d8:60:78:7b:6f:58:ae:9b:7e:ea:f0:ba:20:bc:43:a8:74:
93:2a:ec:3f:44:a4:7e:cf:fd:79:c7:d2:9c:87:9a:e1:34:c4:
15:54:10:65:91:c3:96:db:24:77:a7:dd:6e:20:9f:8f:58:fd:
a3:b5:bd:65:fe:90:3b:64:4c:37:e0:b1:08:cd:c0:2e:b5:e7:
c7:d9:7b:d7:92:49:de:c8:8f:ea:c2:2f:b7:72:2f:77:dd:e0:
98:9e:c4:58:ed:de:6c:87:e3:2b:6f:22:66:c8:4f:ee:2c:b0:
e1:f7:d5:57:2c:b1:8a:bc:9f:7e:59:cd:41:ce:f8:14:0d:01:
51:4e:62:72:9d:fc:b7:58:fe:08:d6:bb:2a:d5:57:ee:4a:a2:
d3:7b:45:48:57:cb:43:5c:a1:b1:9b:c4:24:06:a8:84:9d:6e:
86:46:36:9d:90:09:a5:e1:2e:25:d3:76:3e:45:4d:5b:8a:38:
cd:b9:5b:03:88:85:b8:83:38:09:f7:e9:ee:79:2d:cb:fd:7f:
2a:d7:e5:99
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICC/8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUwNDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEY3RTFDQzI5Mzk3MEFF
NEI4MjJDNEQ1QzNGMjRGRDhGMjIwOTJBRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCl1snWfNIou8C4Uf+aHokXqP5VY8cUUBg7i3CM9YBad8qBtFRj
SX8igfQ+hBpnkPij1BgvU7jt2W2HxeSadYZ5ibkzbqx7a8T7T5ayqvixw77DAgvE
sjNCXKLVYYtvr810rX6gHb1R8wjUHsZIy6YfXKVs6JRcoAPvAtX4rhjf+L7ZIRAI
YPkjsOHIEjiDU0sPJ8gnJFYMSTvFsQ2bmdSkAY2Jym2Q0EtlWx3N+7GZdZReytX+
MlXVrIDSTCLIR65DKNfcEx/RajpT/HWsjMB773AOdQRZ0X0fLROJ3ojW/lexXtGs
TBHg7aqqbqFGTr4mxhVYuIc2vy/wt0tk25UXAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQU9+HMKTlwrkuCLE1cPyT9jyIJKvcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC85LUhNS1Rsd3JrdUNMRTFjUHlU
OWp5SUpLdmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAIAGw
NAcABYAwDQYJKoZIhvcNAQELBQADggEBAFMVzSI99wC6YPeafT7mYjLc3QlNkVAp
uz5se7BbVN2i0iv4aJMsWeTA/zDLZb3XfYbP9WvjEZzYYHh7b1ium37q8LogvEOo
dJMq7D9EpH7P/XnH0pyHmuE0xBVUEGWRw5bbJHen3W4gn49Y/aO1vWX+kDtkTDfg
sQjNwC6158fZe9eSSd7Ij+rCL7dyL3fd4JiexFjt3myH4ytvImbIT+4ssOH31Vcs
sYq8n35ZzUHO+BQNAVFOYnKd/LdY/gjWuyrVV+5KotN7RUhXy0NcobGbxCQGqISd
boZGNp2QCaXhLiXTdj5FTVuKOM25WwOIhbiDOAn36e55Lcv9fyrX5Zk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org