Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/HW7u2bTqS-R9898RqZFKCWuebCY.roa
File: HW7u2bTqS-R9898RqZFKCWuebCY.roa (raw, json)
Hash identifier: MLfDi8HyvScEWwVSTcVEMRmJHU0dxzr4Geq2i3Ye8xc=
Subject key identifier: 1D:6E:EE:D9:B4:EA:4B:E4:7D:F3:DF:11:A9:91:4A:09:6B:9E:6C:26
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A70
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HW7u2bTqS-R9898RqZFKCWuebCY.roa
Signing time: Sun 07 Feb 2021 11:37:49 +0000
ROA not before: Sun 07 Feb 2021 11:37:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 103.25.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2672 (0xa70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1D6EEED9B4EA4BE47DF3DF11A9914A096B9E6C26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:54:0f:92:82:eb:37:88:53:86:42:b4:84:90:
f2:08:e4:6e:03:eb:e8:7f:50:c9:f5:8a:0a:ff:2b:
ac:53:93:1a:b6:6a:1b:40:ae:ba:cf:8b:54:33:4f:
21:9c:e5:6b:c5:84:db:13:16:28:62:47:ab:6c:c9:
f8:e2:61:1f:3d:45:b2:30:e8:db:63:6e:cf:e2:ec:
69:c4:ed:c3:f2:63:8e:84:2d:85:8c:f0:8d:3a:bd:
ec:6e:80:51:3c:a8:33:de:fb:12:80:6c:10:4e:3a:
8a:01:7b:ef:84:04:83:08:6f:ea:f9:c0:8e:3a:a2:
49:9e:09:17:ff:23:51:b4:8d:44:30:6d:21:eb:b8:
c9:94:d6:32:06:7d:b3:79:2d:d0:ed:79:3d:d5:fd:
67:8d:69:9e:0c:c0:3e:fd:66:59:58:a8:15:06:a2:
90:10:53:55:9c:b4:1d:a8:7d:68:a5:7f:33:13:21:
a7:70:b2:5c:b3:79:dd:e1:31:59:28:ae:b5:d9:2d:
f9:49:91:82:bb:1f:0f:66:6d:ac:3c:a6:f1:37:03:
b6:a3:f5:35:15:9b:0e:d6:97:44:a3:9c:03:d9:8b:
d0:5d:c8:86:22:49:5c:11:ed:5a:c6:1c:37:cd:7f:
a6:c2:3f:10:6e:bb:91:29:ae:ab:45:4e:e0:6a:2d:
eb:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:6E:EE:D9:B4:EA:4B:E4:7D:F3:DF:11:A9:91:4A:09:6B:9E:6C:26
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HW7u2bTqS-R9898RqZFKCWuebCY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.25.236.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:3f:92:0f:90:96:98:25:dc:a9:eb:02:7b:09:f0:9d:08:dd:
45:a7:e7:49:fb:48:71:f6:1c:4e:b4:f6:d7:44:72:cb:75:f8:
97:5d:dc:83:31:38:76:2e:bd:f6:01:fd:97:37:0c:0b:1b:90:
b3:50:f7:1b:01:95:5f:de:90:81:8d:f0:1a:17:59:26:0f:40:
0c:0a:f7:32:38:de:6d:59:96:48:de:73:7d:88:78:96:00:2c:
08:8f:fb:09:4b:ae:3c:1d:8f:d1:2a:12:ea:46:4b:be:18:20:
37:58:2b:8a:34:2e:d9:25:8a:96:f4:56:a3:89:3b:f1:b4:19:
7f:91:a0:2e:e4:78:b2:11:5f:76:68:a6:0a:0b:3d:bf:2e:86:
23:fb:c2:31:51:13:87:84:1f:84:a7:e7:79:56:c5:70:12:ec:
d2:b0:e5:64:c6:0f:95:7d:9c:c4:2b:6d:2a:94:95:4f:30:0d:
46:c4:b0:16:83:2b:57:bb:a1:10:4c:5d:89:50:1a:98:f5:a8:
1c:60:f1:b7:f8:ab:63:54:8b:58:b4:94:06:a3:54:1f:c7:8a:
99:d5:b4:8d:ee:49:74:42:0c:24:0d:ad:17:25:e8:fc:e4:ea:
73:9d:58:29:6b:fc:3b:da:1d:c5:be:84:40:9f:86:52:26:42:
c4:52:c4:99
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCnAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTAyMDcx
MTM3NDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFENkVFRUQ5QjRFQTRC
RTQ3REYzREYxMUE5OTE0QTA5NkI5RTZDMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5VA+Sgus3iFOGQrSEkPII5G4D6+h/UMn1igr/K6xTkxq2ahtA
rrrPi1QzTyGc5WvFhNsTFihiR6tsyfjiYR89RbIw6Ntjbs/i7GnE7cPyY46ELYWM
8I06vexugFE8qDPe+xKAbBBOOooBe++EBIMIb+r5wI46okmeCRf/I1G0jUQwbSHr
uMmU1jIGfbN5LdDteT3V/WeNaZ4MwD79ZllYqBUGopAQU1WctB2ofWilfzMTIadw
slyzed3hMVkorrXZLflJkYK7Hw9mbaw8pvE3A7aj9TUVmw7Wl0SjnAPZi9BdyIYi
SVwR7VrGHDfNf6bCPxBuu5EprqtFTuBqLeupAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUHW7u2bTqS+R9898RqZFKCWuebCYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9IVzd1MmJUcVMtUjk4OThScVpG
S0NXdWViQ1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxns
MA0GCSqGSIb3DQEBCwUAA4IBAQAvP5IPkJaYJdyp6wJ7CfCdCN1Fp+dJ+0hx9hxO
tPbXRHLLdfiXXdyDMTh2Lr32Af2XNwwLG5CzUPcbAZVf3pCBjfAaF1kmD0AMCvcy
ON5tWZZI3nN9iHiWACwIj/sJS648HY/RKhLqRku+GCA3WCuKNC7ZJYqW9FajiTvx
tBl/kaAu5HiyEV92aKYKCz2/LoYj+8IxUROHhB+Ep+d5VsVwEuzSsOVkxg+VfZzE
K20qlJVPMA1GxLAWgytXu6EQTF2JUBqY9agcYPG3+KtjVItYtJQGo1Qfx4qZ1bSN
7kl0QgwkDa0XJej85OpznVgpa/w72h3FvoRAn4ZSJkLEUsSZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org