Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/QLpnXYeG5CgHN8FFzZDMfcx2XWE.roa
File: QLpnXYeG5CgHN8FFzZDMfcx2XWE.roa (raw, json)
Hash identifier: eH4OwHDPjpNZwWT9+GzHzH7LJQeF8+eai24At5PQVGI=
Subject key identifier: 40:BA:67:5D:87:86:E4:28:07:37:C1:45:CD:90:CC:7D:CC:76:5D:61
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/QLpnXYeG5CgHN8FFzZDMfcx2XWE.roa
Signing time: Thu 15 Sep 2022 02:48:37 +0000
ROA not before: Thu 15 Sep 2022 02:48:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17714
IP address blocks: 203.78.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:37 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=40BA675D8786E4280737C145CD90CC7DCC765D61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1c:ff:d8:ab:fd:8c:4a:ff:00:48:2a:e0:a0:
fb:5e:d4:c3:4b:dd:3b:e8:ee:b4:a5:99:c4:6a:eb:
fa:56:2d:8d:8c:1b:3c:2a:22:de:6d:86:1f:11:c8:
d0:db:5a:60:13:40:52:82:92:d3:67:ca:59:9f:a3:
b9:c0:25:e6:91:b4:7c:ff:db:56:65:b3:d6:33:f8:
94:be:36:c1:4a:6f:9c:6e:0c:b7:42:63:a4:13:26:
8c:37:cb:5d:f9:3c:f7:ca:30:26:b0:2b:56:e4:f9:
a6:84:0b:8d:68:b1:d9:37:72:61:93:cc:d6:6d:2e:
13:7f:09:44:8a:3c:a1:0a:d4:25:b7:e3:05:8a:7f:
e3:48:1a:0b:9a:31:6b:ba:10:ee:de:eb:09:3d:e5:
4a:3c:a2:56:fe:0d:9e:f1:96:65:84:21:3b:f9:d3:
10:e7:af:76:30:5f:b3:47:ca:a7:2a:27:57:12:8e:
b8:d0:a5:42:b2:79:c4:ee:14:a9:16:51:85:46:5d:
cc:3f:58:b2:dd:ff:de:f9:81:3c:04:ea:b2:d7:eb:
63:3d:80:4b:27:d3:a9:0e:9f:b1:fc:68:ba:b1:42:
43:c6:7c:de:66:1f:ed:c9:85:ba:75:e2:16:83:d1:
84:ad:20:aa:af:ad:7e:43:a4:25:d5:ed:60:50:3d:
26:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:BA:67:5D:87:86:E4:28:07:37:C1:45:CD:90:CC:7D:CC:76:5D:61
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/QLpnXYeG5CgHN8FFzZDMfcx2XWE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.78.190.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:2b:a8:4a:1c:c8:e7:77:25:fb:97:d3:44:2e:cc:f9:79:38:
76:3d:6e:1a:10:c2:65:bd:9f:98:8c:12:e9:2b:49:7e:b2:2c:
dc:c5:6c:03:8c:95:bb:49:b9:7f:07:c3:47:04:92:18:87:49:
c9:04:b4:e1:53:59:0b:96:0f:66:13:23:86:cd:9e:43:e9:70:
41:24:08:40:2c:9c:47:5a:1f:89:04:c6:ce:49:59:18:5a:d3:
ea:6e:73:26:b8:56:0e:2c:ad:7f:0d:68:0e:bd:9f:3b:d7:8b:
85:69:5c:12:8f:9d:02:48:e1:b1:20:b2:0f:37:c1:d2:63:24:
0f:95:eb:3a:93:77:fc:d0:de:70:9f:23:ca:6c:ce:4c:a6:b9:
d2:10:9e:46:b0:9c:a7:f6:91:1f:6e:11:7f:ce:58:e0:fc:e5:
41:d3:d1:b6:fa:5e:a0:8a:f1:1c:e2:9a:8a:b4:4a:ae:5b:a3:
a3:f4:86:46:c7:bf:0d:51:2f:56:5a:55:ee:7a:06:2a:cc:f0:
67:b5:0f:f6:ec:9d:11:e7:e2:81:34:c7:11:a2:81:5a:63:6a:
82:19:2c:84:24:ca:46:ec:5e:e3:36:10:13:73:e4:04:8e:0d:
84:7f:68:f8:f4:c3:70:8d:de:50:e3:ec:74:43:10:42:ad:7d:
63:37:7f:23
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MzdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQwQkE2NzVEODc4NkU0
MjgwNzM3QzE0NUNEOTBDQzdEQ0M3NjVENjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfHP/Yq/2MSv8ASCrgoPte1MNL3Tvo7rSlmcRq6/pWLY2MGzwq
It5thh8RyNDbWmATQFKCktNnylmfo7nAJeaRtHz/21Zls9Yz+JS+NsFKb5xuDLdC
Y6QTJow3y135PPfKMCawK1bk+aaEC41osdk3cmGTzNZtLhN/CUSKPKEK1CW34wWK
f+NIGguaMWu6EO7e6wk95Uo8olb+DZ7xlmWEITv50xDnr3YwX7NHyqcqJ1cSjrjQ
pUKyecTuFKkWUYVGXcw/WLLd/975gTwE6rLX62M9gEsn06kOn7H8aLqxQkPGfN5m
H+3Jhbp14haD0YStIKqvrX5DpCXV7WBQPSZRAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUQLpnXYeG5CgHN8FFzZDMfcx2XWEwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9RTHBuWFllRzVDZ0hOOEZGelpE
TWZjeDJYV0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy06+
MA0GCSqGSIb3DQEBCwUAA4IBAQCOK6hKHMjndyX7l9NELsz5eTh2PW4aEMJlvZ+Y
jBLpK0l+sizcxWwDjJW7Sbl/B8NHBJIYh0nJBLThU1kLlg9mEyOGzZ5D6XBBJAhA
LJxHWh+JBMbOSVkYWtPqbnMmuFYOLK1/DWgOvZ8714uFaVwSj50CSOGxILIPN8HS
YyQPles6k3f80N5wnyPKbM5MprnSEJ5GsJyn9pEfbhF/zljg/OVB09G2+l6givEc
4pqKtEquW6Oj9IZGx78NUS9WWlXuegYqzPBntQ/27J0R5+KBNMcRooFaY2qCGSyE
JMpG7F7jNhATc+QEjg2Ef2j49MNwjd5Q4+x0QxBCrX1jN38j
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org