Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Q5Tjsw1J7HjtlRwG0zh7xniWxT0.roa
File: Q5Tjsw1J7HjtlRwG0zh7xniWxT0.roa (raw, json)
Hash identifier: vcOcqLNRsc0iqq49+JjHqZulqCudfFh7NwcFdYJeAZk=
Subject key identifier: 43:94:E3:B3:0D:49:EC:78:ED:95:1C:06:D3:38:7B:C6:78:96:C5:3D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C13
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Q5Tjsw1J7HjtlRwG0zh7xniWxT0.roa
Signing time: Wed 29 Sep 2021 02:50:50 +0000
ROA not before: Wed 29 Sep 2021 02:50:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 125.224.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3091 (0xc13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4394E3B30D49EC78ED951C06D3387BC67896C53D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:12:0a:d3:c1:af:1f:69:ce:7f:23:28:e4:11:
d8:8e:22:79:2a:07:61:81:7b:e1:7f:ed:89:bb:99:
b1:98:de:ec:d0:85:8a:d4:00:0f:50:8f:cd:a3:30:
be:2c:96:5f:f9:0f:78:fd:3f:a3:62:3a:40:4c:0a:
f0:77:5c:5d:c9:e7:c6:ae:2f:67:00:b6:35:f2:4c:
88:20:04:0e:5d:ba:68:e2:9c:4d:8c:fe:bb:50:73:
af:c2:7f:00:f1:ad:06:8b:6c:bb:df:5b:de:d0:b9:
22:99:5f:1e:a0:15:0c:3f:ed:87:76:bc:6f:22:7d:
1b:39:b2:1b:20:5a:c6:d5:ee:6c:3f:4e:09:b8:21:
46:1e:ed:2d:84:92:05:ea:35:37:4e:c4:a6:0c:b7:
a4:2d:59:80:36:0e:eb:d0:13:55:c8:92:82:1b:c4:
85:f2:8e:cf:68:d9:de:29:90:4e:c0:fd:5e:08:ac:
1a:76:0c:70:fe:b6:5e:ea:04:8c:91:32:a6:bb:13:
f5:a1:e9:dd:d0:73:3d:d8:ab:55:f5:66:50:a1:dc:
0f:b8:e0:38:88:cb:98:1e:f5:9e:fa:5e:3a:fa:b7:
15:3c:5c:e9:af:83:ac:3d:85:d1:a4:e4:ae:c3:e3:
2d:b5:07:70:16:ef:46:a8:7b:21:92:20:43:8f:69:
14:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:94:E3:B3:0D:49:EC:78:ED:95:1C:06:D3:38:7B:C6:78:96:C5:3D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Q5Tjsw1J7HjtlRwG0zh7xniWxT0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
125.224.0.0/13
Signature Algorithm: sha256WithRSAEncryption
42:c1:b0:6c:a4:cb:b5:5a:98:68:49:04:6c:25:79:41:18:73:
b9:02:99:e1:a0:7f:39:2c:ee:0d:11:12:a1:d5:24:52:39:8b:
e1:b7:1b:97:03:60:ac:93:ae:a0:43:25:a1:88:c8:59:79:84:
8b:32:d0:4b:fc:a4:68:74:69:da:26:88:71:9b:7d:0a:1a:df:
ea:2c:03:a8:89:a9:66:d7:7d:ca:33:5b:fe:50:0a:ab:ba:73:
78:de:b3:c8:4f:dc:a9:f2:34:b5:99:a4:ae:f8:79:31:70:29:
e4:be:3c:d2:22:94:7a:ca:23:bc:fb:74:77:9c:b1:a4:56:57:
19:89:ed:45:34:16:05:8b:9f:22:37:9a:44:a7:69:75:ea:29:
83:29:bd:70:f9:6b:3c:a8:d9:93:59:b5:85:ef:5e:b2:6f:a8:
ab:11:22:d8:9d:05:87:9c:89:98:22:1b:2c:21:3d:6e:a6:ff:
9d:1c:69:23:67:a4:74:b6:a2:1c:53:31:07:f0:1f:4a:f9:d4:
45:75:b7:ab:8f:85:fe:ef:23:8f:2c:aa:52:4b:bf:b1:b5:21:
06:9a:6e:d4:37:f2:d4:c9:63:15:1b:45:20:bd:78:6e:e8:87:
e0:a0:18:ac:c9:f0:d7:25:d7:b9:78:08:8e:62:40:ab:e3:0c:
2d:b3:0a:94
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUwNTBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDQzOTRFM0IzMEQ0OUVD
NzhFRDk1MUMwNkQzMzg3QkM2Nzg5NkM1M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCnEgrTwa8fac5/IyjkEdiOInkqB2GBe+F/7Ym7mbGY3uzQhYrU
AA9Qj82jML4sll/5D3j9P6NiOkBMCvB3XF3J58auL2cAtjXyTIggBA5dumjinE2M
/rtQc6/CfwDxrQaLbLvfW97QuSKZXx6gFQw/7Yd2vG8ifRs5shsgWsbV7mw/Tgm4
IUYe7S2EkgXqNTdOxKYMt6QtWYA2DuvQE1XIkoIbxIXyjs9o2d4pkE7A/V4IrBp2
DHD+tl7qBIyRMqa7E/Wh6d3Qcz3Yq1X1ZlCh3A+44DiIy5ge9Z76Xjr6txU8XOmv
g6w9hdGk5K7D4y21B3AW70aoeyGSIEOPaRTjAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUQ5Tjsw1J7HjtlRwG0zh7xniWxT0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9RNVRqc3cxSjdIanRsUndHMHpo
N3huaVd4VDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMDfeAw
DQYJKoZIhvcNAQELBQADggEBAELBsGyky7VamGhJBGwleUEYc7kCmeGgfzks7g0R
EqHVJFI5i+G3G5cDYKyTrqBDJaGIyFl5hIsy0Ev8pGh0adomiHGbfQoa3+osA6iJ
qWbXfcozW/5QCqu6c3jes8hP3KnyNLWZpK74eTFwKeS+PNIilHrKI7z7dHecsaRW
VxmJ7UU0FgWLnyI3mkSnaXXqKYMpvXD5azyo2ZNZtYXvXrJvqKsRItidBYeciZgi
GywhPW6m/50caSNnpHS2ohxTMQfwH0r51EV1t6uPhf7vI48sqlJLv7G1IQaabtQ3
8tTJYxUbRSC9eG7oh+CgGKzJ8Ncl17l4CI5iQKvjDC2zCpQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org