Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/I_bzjZ0ZpHolPDrVqS2Z1_ggIzc.roa
File: I_bzjZ0ZpHolPDrVqS2Z1_ggIzc.roa (raw, json)
Hash identifier: g5gsqccBT0UBo3q4gnkARF8elWtwtQA89Dm94f71WTA=
Subject key identifier: 23:F6:F3:8D:9D:19:A4:7A:25:3C:3A:D5:A9:2D:99:D7:F8:20:23:37
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/I_bzjZ0ZpHolPDrVqS2Z1_ggIzc.roa
Signing time: Thu 15 Sep 2022 02:48:33 +0000
ROA not before: Thu 15 Sep 2022 02:48:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131660
IP address blocks: 114.25.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=23F6F38D9D19A47A253C3AD5A92D99D7F8202337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0c:55:5f:26:81:66:ba:c9:6a:9b:59:52:de:
d9:b3:1c:1a:3a:2e:d3:21:f2:f7:06:da:9b:97:10:
8d:5e:8e:24:9c:98:36:b4:ca:6d:d9:30:92:cf:b4:
59:26:7e:b5:40:cb:11:ac:06:c8:e8:22:3e:03:59:
f1:80:2c:96:8f:a8:26:b4:1d:39:10:b8:0c:29:1b:
11:b8:51:ea:4d:75:a3:d2:47:de:72:ad:59:a1:c5:
7b:08:ad:d5:c8:e8:0a:e9:bd:00:61:94:40:d8:e0:
06:1c:7f:41:c4:a5:3d:ac:05:18:4a:6d:81:76:52:
15:d4:95:fb:ae:31:7f:38:ea:de:82:27:24:34:d8:
2c:b4:c9:42:63:be:be:45:f5:aa:aa:ba:12:dd:b9:
a5:e9:af:a9:41:97:e9:0d:71:eb:a8:55:c8:08:39:
c3:bd:67:f6:d7:27:a6:53:e7:0d:3c:66:6b:63:22:
fe:74:3f:94:f2:b6:11:03:65:6a:41:22:74:5f:77:
eb:bb:ef:6c:0a:62:0b:6f:f6:75:4b:c9:ee:88:41:
7e:fd:e8:7a:b4:68:e6:7e:26:48:9d:00:c7:7b:96:
4c:b7:31:30:94:24:ac:4f:e4:a9:64:4d:33:23:83:
51:37:47:a1:f5:99:ba:a3:9d:6f:83:a9:aa:6e:12:
ad:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F6:F3:8D:9D:19:A4:7A:25:3C:3A:D5:A9:2D:99:D7:F8:20:23:37
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/I_bzjZ0ZpHolPDrVqS2Z1_ggIzc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.25.251.0/24
Signature Algorithm: sha256WithRSAEncryption
19:2a:72:7e:cb:f7:bc:50:07:85:53:95:78:0e:04:e4:9b:50:
7a:fe:92:91:ea:6b:3e:88:b4:51:46:ed:4c:9f:12:0f:52:5b:
78:fb:6c:c9:01:37:7b:6e:22:aa:c1:91:b3:2f:15:f3:9d:eb:
cc:ad:e6:e3:79:00:61:ef:5a:28:01:36:54:d9:51:93:b3:e1:
ad:85:f9:bc:95:67:c4:34:dd:fb:a5:fd:e4:a3:24:30:32:bc:
73:a2:0c:38:11:17:9d:79:dd:21:13:17:3e:82:8c:0b:c7:cd:
c9:b8:97:91:f9:13:06:4f:11:49:11:62:30:dc:72:a8:87:93:
6e:23:d8:5c:e4:bf:88:2e:2d:cc:c2:3c:66:7e:82:0f:59:2b:
c7:7c:17:ca:bc:62:c9:16:e7:15:42:3b:19:23:fb:84:b3:55:
7d:f3:b4:fb:09:75:aa:47:f0:4d:4c:2b:db:17:e3:3c:e3:b5:
ba:28:fd:c4:f4:70:74:ad:59:db:89:0a:12:bf:c6:19:3d:3e:
7c:ca:05:e6:0e:c0:82:53:58:36:b9:c6:60:7c:1e:21:fb:9a:
33:26:7f:86:29:10:1b:2d:0f:d2:94:35:e7:71:59:4c:aa:1c:
53:6b:3e:f5:25:d0:ca:5c:7a:71:d3:85:48:74:73:25:6a:d8:
34:f4:1c:4f
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MzNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDIzRjZGMzhEOUQxOUE0
N0EyNTNDM0FENUE5MkQ5OUQ3RjgyMDIzMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyDFVfJoFmuslqm1lS3tmzHBo6LtMh8vcG2puXEI1ejiScmDa0
ym3ZMJLPtFkmfrVAyxGsBsjoIj4DWfGALJaPqCa0HTkQuAwpGxG4UepNdaPSR95y
rVmhxXsIrdXI6ArpvQBhlEDY4AYcf0HEpT2sBRhKbYF2UhXUlfuuMX846t6CJyQ0
2Cy0yUJjvr5F9aqquhLduaXpr6lBl+kNceuoVcgIOcO9Z/bXJ6ZT5w08ZmtjIv50
P5TythEDZWpBInRfd+u772wKYgtv9nVLye6IQX796Hq0aOZ+JkidAMd7lky3MTCU
JKxP5KlkTTMjg1E3R6H1mbqjnW+DqapuEq1fAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUI/bzjZ0ZpHolPDrVqS2Z1/ggIzcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9JX2J6alowWnBIb2xQRHJWcVMy
WjFfZ2dJemMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAchn7
MA0GCSqGSIb3DQEBCwUAA4IBAQAZKnJ+y/e8UAeFU5V4DgTkm1B6/pKR6ms+iLRR
Ru1MnxIPUlt4+2zJATd7biKqwZGzLxXznevMrebjeQBh71ooATZU2VGTs+Gthfm8
lWfENN37pf3koyQwMrxzogw4EReded0hExc+gowLx83JuJeR+RMGTxFJEWIw3HKo
h5NuI9hc5L+ILi3MwjxmfoIPWSvHfBfKvGLJFucVQjsZI/uEs1V987T7CXWqR/BN
TCvbF+M847W6KP3E9HB0rVnbiQoSv8YZPT58ygXmDsCCU1g2ucZgfB4h+5ozJn+G
KRAbLQ/SlDXncVlMqhxTaz71JdDKXHpx04VIdHMlatg09BxP
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org