Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/M5Ji1R3XwK00URYmHhQPGNQaE2c.roa
File: M5Ji1R3XwK00URYmHhQPGNQaE2c.roa (raw, json)
Hash identifier: xp7Yo2RQhfjdxmGbyXCYCocRkiE/Ho2bkN05NRDr0Lk=
Subject key identifier: 33:92:62:D5:1D:D7:C0:AD:34:51:16:26:1E:14:0F:18:D4:1A:13:67
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/M5Ji1R3XwK00URYmHhQPGNQaE2c.roa
Signing time: Thu 15 Sep 2022 02:48:12 +0000
ROA not before: Thu 15 Sep 2022 02:48:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17421
IP address blocks: 111.70.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=339262D51DD7C0AD345116261E140F18D41A1367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:86:fd:12:79:15:12:9e:9d:f9:28:a7:d5:59:
4b:9f:15:e1:8d:7c:61:2c:11:d6:f7:09:f9:5f:f4:
9e:86:92:ad:eb:2b:00:61:6b:a4:25:b4:66:35:33:
9e:e7:bd:e5:af:54:4e:62:6e:cc:9a:47:6a:bc:c3:
8b:03:56:41:f4:65:5e:4c:19:f5:7a:62:c5:33:79:
b0:e1:6d:c2:93:56:b1:db:ef:aa:0b:fb:b2:fd:0e:
3f:91:e4:ac:59:7a:d3:63:08:57:e8:19:2f:00:15:
e1:4d:6b:b3:6e:7e:6a:0f:45:04:b0:48:48:f5:6e:
b1:f1:9d:36:07:ca:5d:f6:5c:18:4e:7e:f5:bc:ae:
d5:ff:09:e5:b0:9d:74:b0:da:75:5c:0a:c6:af:5d:
7d:55:e0:eb:57:49:8e:c0:41:6a:4a:7c:37:b4:25:
79:b7:45:d5:f1:1b:43:9b:4e:de:23:47:6f:c3:1c:
0a:00:a9:1b:08:71:5b:eb:c5:4b:4b:7f:1f:42:9f:
4e:5f:bf:ef:f3:f0:01:0f:4e:33:8c:ba:f0:ed:4c:
71:64:6d:83:d9:d2:b6:50:0d:2a:bd:39:e7:7e:73:
1d:57:b0:9c:d5:56:c1:fb:cf:2b:00:14:a8:9d:2c:
fe:0c:d4:41:9d:1b:80:54:39:3d:3f:f1:83:77:c2:
00:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:92:62:D5:1D:D7:C0:AD:34:51:16:26:1E:14:0F:18:D4:1A:13:67
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/M5Ji1R3XwK00URYmHhQPGNQaE2c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.70.0.0/15
Signature Algorithm: sha256WithRSAEncryption
4a:3b:b7:67:4c:ef:5f:57:5f:36:4e:05:ce:00:d8:75:b4:07:
e7:ab:f1:1b:11:e6:70:5f:25:22:da:e5:fa:38:09:51:14:51:
7d:37:2c:53:56:d1:a9:db:d7:08:4b:9c:37:05:b9:de:0b:b5:
b1:ec:42:ca:39:34:91:07:9b:0b:de:57:67:a4:99:94:96:e3:
05:1a:23:35:ea:62:4a:0a:1e:18:de:e9:e7:8f:23:36:c8:08:
01:a5:e2:4a:91:8d:52:a1:6a:63:17:02:f5:1d:a9:99:db:aa:
14:29:61:da:3d:cb:ba:b0:a8:a7:f0:aa:04:dc:04:77:09:24:
5d:48:32:e1:3f:89:15:34:fc:f5:25:84:ed:46:72:d9:5f:d7:
01:44:99:46:21:43:41:52:22:75:e9:78:a3:92:80:04:7b:4f:
2c:14:1f:a1:62:c1:22:bb:bc:da:56:3a:26:d7:2b:a5:96:5c:
c5:18:35:f6:34:ab:41:95:2e:a4:8b:fa:e6:dd:62:de:d2:c8:
b1:5d:ae:f8:68:0b:f1:c5:37:af:83:7b:55:72:30:6f:04:ff:
cf:9a:cb:89:f3:b3:fa:57:40:f8:fc:7d:33:3e:7d:e3:e0:93:
4a:86:27:6d:d9:c9:f6:4a:09:e0:25:37:47:22:de:9b:47:4c:
dc:f5:d5:3c
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MTJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDMzOTI2MkQ1MUREN0Mw
QUQzNDUxMTYyNjFFMTQwRjE4RDQxQTEzNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9hv0SeRUSnp35KKfVWUufFeGNfGEsEdb3Cflf9J6Gkq3rKwBh
a6QltGY1M57nveWvVE5ibsyaR2q8w4sDVkH0ZV5MGfV6YsUzebDhbcKTVrHb76oL
+7L9Dj+R5KxZetNjCFfoGS8AFeFNa7NufmoPRQSwSEj1brHxnTYHyl32XBhOfvW8
rtX/CeWwnXSw2nVcCsavXX1V4OtXSY7AQWpKfDe0JXm3RdXxG0ObTt4jR2/DHAoA
qRsIcVvrxUtLfx9Cn05fv+/z8AEPTjOMuvDtTHFkbYPZ0rZQDSq9Oed+cx1XsJzV
VsH7zysAFKidLP4M1EGdG4BUOT0/8YN3wgDTAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUM5Ji1R3XwK00URYmHhQPGNQaE2cwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9NNUppMVIzWHdLMDBVUlltSGhR
UEdOUWFFMmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBb0Yw
DQYJKoZIhvcNAQELBQADggEBAEo7t2dM719XXzZOBc4A2HW0B+er8RsR5nBfJSLa
5fo4CVEUUX03LFNW0anb1whLnDcFud4LtbHsQso5NJEHmwveV2ekmZSW4wUaIzXq
YkoKHhje6eePIzbICAGl4kqRjVKhamMXAvUdqZnbqhQpYdo9y7qwqKfwqgTcBHcJ
JF1IMuE/iRU0/PUlhO1Gctlf1wFEmUYhQ0FSInXpeKOSgAR7TywUH6FiwSK7vNpW
OibXK6WWXMUYNfY0q0GVLqSL+ubdYt7SyLFdrvhoC/HFN6+De1VyMG8E/8+ay4nz
s/pXQPj8fTM+fePgk0qGJ23ZyfZKCeAlN0ci3ptHTNz11Tw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org