Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/R8o6RfL5guq9xVSksELPoe1i3Fg.roa
File: R8o6RfL5guq9xVSksELPoe1i3Fg.roa (raw, json)
Hash identifier: 2J9Aq9z9NJ5heYlL33y74KXPh5dxgmQs9pgFb0OwLLU=
Subject key identifier: 47:CA:3A:45:F2:F9:82:EA:BD:C5:54:A4:B0:42:CF:A1:ED:62:DC:58
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0820
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/R8o6RfL5guq9xVSksELPoe1i3Fg.roa
Signing time: Tue 29 Sep 2020 09:58:23 +0000
ROA not before: Tue 29 Sep 2020 09:58:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 211.75.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2080 (0x820)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=47CA3A45F2F982EABDC554A4B042CFA1ED62DC58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:dc:2f:ef:cd:3c:83:b9:79:53:f4:cc:20:62:
d5:b1:83:d2:a4:0c:3b:96:2e:73:01:5a:d8:87:a6:
72:7c:68:2f:52:4b:d8:50:33:a4:ae:6f:b9:e8:2e:
11:07:f4:a2:09:73:fd:ee:e8:71:ff:ab:c6:7e:3d:
ce:e5:71:e2:7f:c2:4a:8b:82:d7:4f:5e:4f:fe:e2:
b4:e5:19:d3:b8:4b:e8:31:ff:4b:d7:96:4b:bd:13:
1f:ed:7e:cf:d1:d6:c1:bf:64:7b:62:c4:80:63:be:
ca:a0:93:d1:25:a9:21:7d:8f:08:0a:91:1c:28:4f:
92:fc:06:14:2e:d7:94:92:e4:26:6a:3a:6d:e9:43:
a5:6d:b5:f2:a1:c8:7f:5a:8e:48:4e:af:c3:be:33:
60:73:0d:c8:3b:08:b0:22:53:45:5f:60:ef:11:7b:
d3:de:e5:c9:ae:15:33:7d:1d:51:de:f6:c8:20:09:
83:6a:e9:a4:8e:d4:8f:65:40:bf:6d:f7:2f:f4:94:
cb:26:ee:fa:99:fc:e2:a1:9d:c1:6d:13:48:51:f6:
5b:cd:f0:a3:28:3f:48:9e:59:47:5f:01:97:92:7d:
89:7a:ea:92:96:1a:d4:fb:a0:45:f8:24:72:dd:a7:
db:00:1f:c3:a6:19:9c:0c:77:12:61:92:9b:0e:2e:
f9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:CA:3A:45:F2:F9:82:EA:BD:C5:54:A4:B0:42:CF:A1:ED:62:DC:58
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/R8o6RfL5guq9xVSksELPoe1i3Fg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
36:0f:ca:64:7d:b0:3a:e0:ec:8a:c4:38:c5:93:6e:d4:79:a5:
d2:81:e4:17:f1:5c:27:ce:12:2f:99:97:fd:83:b6:1f:f5:7d:
1a:f6:17:74:48:3b:05:c3:af:ac:72:67:28:f9:e6:6e:51:c9:
5a:22:8f:91:16:5c:ae:48:99:d9:24:f1:71:79:fc:09:9f:04:
47:b9:32:94:ab:71:c3:84:15:03:12:3e:e6:4a:b3:23:31:c4:
77:e7:a7:0d:6d:01:45:de:ba:fa:43:03:99:4d:4b:5c:06:58:
98:88:61:7c:02:bd:a8:4a:41:15:21:e1:05:e1:9d:1d:9c:17:
8a:57:1d:ad:ad:77:da:05:3f:9e:90:e2:26:eb:b3:a8:45:47:
07:e3:01:30:50:aa:1d:58:0d:26:8d:c3:98:38:6f:f9:30:c0:
2a:0f:98:12:00:e5:bc:01:05:ac:d0:0b:bc:ba:94:9b:0d:9d:
a8:5d:94:00:e4:66:94:92:6e:03:62:34:73:2a:a0:1e:74:fa:
d7:97:2e:7e:01:a8:14:a3:27:ba:07:5f:7c:0d:37:95:ca:17:
fc:61:40:87:b1:bd:55:c2:b2:88:be:3d:22:8c:42:ef:52:06:
f9:13:ca:cd:19:ce:2c:20:be:bd:85:f2:68:d9:bc:54:7e:43:
69:14:e2:6e
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCCAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMDA5Mjkw
OTU4MjNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQ3Q0EzQTQ1RjJGOTgy
RUFCREM1NTRBNEIwNDJDRkExRUQ2MkRDNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDx3C/vzTyDuXlT9MwgYtWxg9KkDDuWLnMBWtiHpnJ8aC9SS9hQ
M6Sub7noLhEH9KIJc/3u6HH/q8Z+Pc7lceJ/wkqLgtdPXk/+4rTlGdO4S+gx/0vX
lku9Ex/tfs/R1sG/ZHtixIBjvsqgk9ElqSF9jwgKkRwoT5L8BhQu15SS5CZqOm3p
Q6VttfKhyH9ajkhOr8O+M2BzDcg7CLAiU0VfYO8Re9Pe5cmuFTN9HVHe9sggCYNq
6aSO1I9lQL9t9y/0lMsm7vqZ/OKhncFtE0hR9lvN8KMoP0ieWUdfAZeSfYl66pKW
GtT7oEX4JHLdp9sAH8OmGZwMdxJhkpsOLvmnAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUR8o6RfL5guq9xVSksELPoe1i3FgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9SOG82UmZMNWd1cTl4VlNrc0VM
UG9lMWkzRmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA00sw
DQYJKoZIhvcNAQELBQADggEBADYPymR9sDrg7IrEOMWTbtR5pdKB5BfxXCfOEi+Z
l/2Dth/1fRr2F3RIOwXDr6xyZyj55m5RyVoij5EWXK5Imdkk8XF5/AmfBEe5MpSr
ccOEFQMSPuZKsyMxxHfnpw1tAUXeuvpDA5lNS1wGWJiIYXwCvahKQRUh4QXhnR2c
F4pXHa2td9oFP56Q4ibrs6hFRwfjATBQqh1YDSaNw5g4b/kwwCoPmBIA5bwBBazQ
C7y6lJsNnahdlADkZpSSbgNiNHMqoB50+teXLn4BqBSjJ7oHX3wNN5XKF/xhQIex
vVXCsoi+PSKMQu9SBvkTys0Zziwgvr2F8mjZvFR+Q2kU4m4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org