Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/FgWKNi5rn99XFkVqndeJzf7Li1c.roa
File: FgWKNi5rn99XFkVqndeJzf7Li1c.roa (raw, json)
Hash identifier: sxZMj5U47UxlD+9U/EPJmK64Bl+E5r/aS3tQlIinmgI=
Subject key identifier: 16:05:8A:36:2E:6B:9F:DF:57:16:45:6A:9D:D7:89:CD:FE:CB:8B:57
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C1D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/FgWKNi5rn99XFkVqndeJzf7Li1c.roa
Signing time: Wed 29 Sep 2021 02:50:53 +0000
ROA not before: Wed 29 Sep 2021 02:50:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 210.59.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3101 (0xc1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=16058A362E6B9FDF5716456A9DD789CDFECB8B57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b4:54:66:bb:b9:0b:9d:7d:65:c6:14:51:6d:
fe:24:d0:59:37:55:39:e3:aa:5f:a1:3a:be:7a:c0:
c8:99:86:ab:58:40:44:98:7a:ea:fa:0a:7d:77:91:
b8:c1:53:29:c7:f9:a7:c7:e1:cc:06:23:3f:33:5e:
54:3e:40:0a:09:df:cd:33:7a:2d:4c:17:8b:a3:01:
4a:6a:b3:b6:1c:c1:20:74:02:7a:11:a1:34:75:6c:
5d:cc:91:27:9f:aa:85:cb:28:cd:f8:a4:2d:ee:8e:
0e:ff:c3:69:44:35:71:45:af:b0:7e:15:8f:d2:21:
1f:ed:ba:6a:c4:9b:5a:8d:71:5a:db:f3:a2:ab:8a:
c5:b4:d7:5f:a1:97:2c:b7:ee:78:20:3c:cf:a6:aa:
38:4f:78:79:7f:1e:12:61:57:db:79:e7:8a:ae:41:
18:52:62:43:0f:43:cf:d9:8b:07:64:36:80:15:77:
41:4e:ad:7c:b0:7d:e2:6f:c5:e3:1e:10:7b:81:75:
80:9b:4c:51:3a:dc:b7:4f:b4:aa:a7:02:92:17:67:
fa:38:b5:45:14:a4:69:0a:e0:49:41:dd:7f:5b:68:
2a:92:30:45:b0:e8:dd:c5:5d:a9:aa:59:c4:c4:b4:
8e:2d:1a:47:7d:69:e9:f1:e4:a2:31:fe:61:05:a6:
f3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:05:8A:36:2E:6B:9F:DF:57:16:45:6A:9D:D7:89:CD:FE:CB:8B:57
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/FgWKNi5rn99XFkVqndeJzf7Li1c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.59.128.0/17
Signature Algorithm: sha256WithRSAEncryption
82:94:c7:d0:d1:46:da:b5:7c:ef:7d:50:5a:3c:0a:b4:17:7f:
a6:fc:53:a6:df:2f:62:b6:67:44:34:52:01:16:0d:c2:dc:a6:
20:db:1b:d3:b2:a8:b4:8c:84:1e:41:ab:8a:cb:f8:cb:1c:c7:
b1:21:8a:11:f6:f1:31:1b:79:29:db:97:7f:03:e0:90:3d:8e:
8a:e4:30:58:63:b0:05:57:77:18:4c:e6:0e:68:bf:da:1c:1d:
7a:d8:7f:b3:12:4f:76:c7:08:eb:62:7b:de:10:ab:e5:5f:85:
c1:d3:5e:bc:7a:e0:2c:cc:ff:57:e0:26:1c:9d:4e:99:c9:40:
62:26:20:ee:6f:b9:8b:43:21:23:2d:a7:7b:77:5f:d7:9f:0c:
95:8f:90:0f:87:99:a5:9d:bb:b5:d5:27:08:16:39:2a:22:c6:
0d:ce:b9:42:02:c2:9f:95:bc:42:f7:60:6f:f6:0d:f2:6f:8c:
d7:45:f8:23:2f:d3:8e:b0:3e:d1:c3:c8:a4:9a:46:93:75:d9:
63:33:a2:d0:6d:4f:a2:18:4a:75:fb:34:a5:db:60:89:eb:e6:
b7:72:da:73:cf:f2:2a:8d:9b:19:3f:d4:d9:cd:b4:95:9f:5f:
e2:fa:b4:e6:4f:0d:18:51:be:df:71:77:c1:58:c5:7c:0b:72:
c7:3b:bf:88
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDB0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUwNTNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDE2MDU4QTM2MkU2QjlG
REY1NzE2NDU2QTlERDc4OUNERkVDQjhCNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6tFRmu7kLnX1lxhRRbf4k0Fk3VTnjql+hOr56wMiZhqtYQESY
eur6Cn13kbjBUynH+afH4cwGIz8zXlQ+QAoJ380zei1MF4ujAUpqs7YcwSB0AnoR
oTR1bF3MkSefqoXLKM34pC3ujg7/w2lENXFFr7B+FY/SIR/tumrEm1qNcVrb86Kr
isW011+hlyy37nggPM+mqjhPeHl/HhJhV9t554quQRhSYkMPQ8/ZiwdkNoAVd0FO
rXywfeJvxeMeEHuBdYCbTFE63LdPtKqnApIXZ/o4tUUUpGkK4ElB3X9baCqSMEWw
6N3FXamqWcTEtI4tGkd9aenx5KIx/mEFpvODAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUFgWKNi5rn99XFkVqndeJzf7Li1cwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9GZ1dLTmk1cm45OVhGa1ZxbmRl
SnpmN0xpMWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH0juA
MA0GCSqGSIb3DQEBCwUAA4IBAQCClMfQ0UbatXzvfVBaPAq0F3+m/FOm3y9itmdE
NFIBFg3C3KYg2xvTsqi0jIQeQauKy/jLHMexIYoR9vExG3kp25d/A+CQPY6K5DBY
Y7AFV3cYTOYOaL/aHB162H+zEk92xwjrYnveEKvlX4XB0168euAszP9X4CYcnU6Z
yUBiJiDub7mLQyEjLad7d1/XnwyVj5APh5mlnbu11ScIFjkqIsYNzrlCAsKflbxC
92Bv9g3yb4zXRfgjL9OOsD7Rw8ikmkaTddljM6LQbU+iGEp1+zSl22CJ6+a3ctpz
z/IqjZsZP9TZzbSVn1/i+rTmTw0YUb7fcXfBWMV8C3LHO7+I
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:55 2023 by rpki-client on console-ams.rpki-client.org