Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/B-KC33w_1Ihc6pL073haR1XlnvE.roa
File: B-KC33w_1Ihc6pL073haR1XlnvE.roa (raw, json)
Hash identifier: 7P0TgNZF/qxqWtKQshkUGrULkGBQcFD03LEJAbg/ESY=
Subject key identifier: 07:E2:82:DF:7C:3F:D4:88:5C:EA:92:F4:EF:78:5A:47:55:E5:9E:F1
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B17
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/B-KC33w_1Ihc6pL073haR1XlnvE.roa
Signing time: Sun 07 Feb 2021 11:47:25 +0000
ROA not before: Sun 07 Feb 2021 11:47:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17421
IP address blocks: 111.80.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2839 (0xb17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:47:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=07E282DF7C3FD4885CEA92F4EF785A4755E59EF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:15:5a:16:06:b9:d3:da:e2:e5:2e:74:4c:33:
76:c6:d4:d4:74:31:8b:fc:1f:4a:d4:83:ae:e7:af:
d5:3c:f1:74:dd:d8:f0:7e:69:6d:a3:cd:a9:e1:59:
b3:2c:12:c2:0f:85:fc:54:c2:25:bf:f9:1d:4d:c3:
44:b3:4f:a7:66:7b:02:70:40:68:74:4e:06:6a:c6:
81:07:ab:1c:af:c0:bb:45:53:74:01:88:02:45:ea:
38:d5:1b:bb:1e:2c:51:54:8c:e1:88:15:fd:a7:4b:
79:bd:db:8c:63:ab:43:99:a0:a7:2e:4c:ee:68:4e:
e0:39:b0:5c:39:80:25:98:7b:3b:d3:ae:15:ea:20:
f5:61:74:34:6c:23:f3:f4:38:a8:2d:59:29:58:a5:
78:29:c4:dd:5a:89:92:8b:28:51:48:06:e6:4f:2d:
a9:c6:26:c0:5c:31:95:d1:e3:98:ad:d5:0a:bf:26:
82:1c:ad:e1:37:8d:9e:4d:fa:a8:82:2f:c9:0d:7a:
2b:f0:23:81:7f:29:a6:c4:22:fa:83:3f:3c:c3:e1:
e6:ac:a8:b1:6d:df:db:8c:d7:57:ca:90:3b:64:78:
18:ee:1f:97:0b:69:99:ed:5d:c1:30:ea:f6:50:fc:
da:be:44:20:ac:6a:88:a4:81:7f:a2:cd:9b:1f:ec:
a2:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E2:82:DF:7C:3F:D4:88:5C:EA:92:F4:EF:78:5A:47:55:E5:9E:F1
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/B-KC33w_1Ihc6pL073haR1XlnvE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.80.0.0/14
Signature Algorithm: sha256WithRSAEncryption
83:37:62:86:ca:62:ce:f9:17:c8:46:0b:05:4f:c2:0f:21:68:
20:e2:a6:23:91:86:2b:41:65:0e:93:3b:d0:47:ea:02:aa:70:
15:3a:e2:e4:fc:b3:b0:a0:da:5a:5c:85:da:30:fc:c6:0e:71:
d7:6a:97:26:7e:27:96:55:2d:9c:cb:40:b2:e8:e7:b3:95:a2:
54:61:c4:62:96:c5:d8:b9:c7:e9:ae:01:c6:04:d8:ee:18:18:
13:33:44:e0:ca:ec:90:a7:3d:4f:ae:4f:63:9f:ca:b4:12:eb:
f7:11:43:29:62:0d:29:41:63:a2:f7:d6:eb:48:f4:3a:a3:c4:
09:27:f6:d8:da:7d:41:75:30:9f:85:2b:18:fc:77:b5:b6:78:
0f:f6:fb:64:0d:88:70:5b:d5:0f:ed:0b:5d:c5:e2:ba:f8:bf:
25:79:04:ce:a7:47:4f:06:62:56:6d:f4:01:f7:fe:42:2f:0f:
66:c0:7c:b4:2a:8d:ad:f5:4b:62:d3:4e:c3:74:93:2e:b1:55:
e6:90:57:5b:b1:51:c0:40:ae:fe:1a:93:54:15:ec:76:60:dc:
2f:19:f3:9b:89:bf:9b:fd:fa:9f:ba:d5:ab:10:29:8f:e4:df:
07:67:e1:ef:49:77:b1:86:99:13:58:b2:bc:37:f4:3d:2b:5b:
47:e5:a1:86
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCxcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTAyMDcx
MTQ3MjVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA3RTI4MkRGN0MzRkQ0
ODg1Q0VBOTJGNEVGNzg1QTQ3NTVFNTlFRjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuFVoWBrnT2uLlLnRMM3bG1NR0MYv8H0rUg67nr9U88XTd2PB+
aW2jzanhWbMsEsIPhfxUwiW/+R1Nw0SzT6dmewJwQGh0TgZqxoEHqxyvwLtFU3QB
iAJF6jjVG7seLFFUjOGIFf2nS3m924xjq0OZoKcuTO5oTuA5sFw5gCWYezvTrhXq
IPVhdDRsI/P0OKgtWSlYpXgpxN1aiZKLKFFIBuZPLanGJsBcMZXR45it1Qq/JoIc
reE3jZ5N+qiCL8kNeivwI4F/KabEIvqDPzzD4easqLFt39uM11fKkDtkeBjuH5cL
aZntXcEw6vZQ/Nq+RCCsaoikgX+izZsf7KKhAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUB+KC33w/1Ihc6pL073haR1XlnvEwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9CLUtDMzN3XzFJaGM2cEwwNzNo
YVIxWGxudkUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCb1Aw
DQYJKoZIhvcNAQELBQADggEBAIM3YobKYs75F8hGCwVPwg8haCDipiORhitBZQ6T
O9BH6gKqcBU64uT8s7Cg2lpchdow/MYOcddqlyZ+J5ZVLZzLQLLo57OVolRhxGKW
xdi5x+muAcYE2O4YGBMzRODK7JCnPU+uT2OfyrQS6/cRQyliDSlBY6L31utI9Dqj
xAkn9tjafUF1MJ+FKxj8d7W2eA/2+2QNiHBb1Q/tC13F4rr4vyV5BM6nR08GYlZt
9AH3/kIvD2bAfLQqja31S2LTTsN0ky6xVeaQV1uxUcBArv4ak1QV7HZg3C8Z85uJ
v5v9+p+61asQKY/k3wdn4e9Jd7GGmRNYsrw39D0rW0floYY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org