Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Rkhu0J5eGPXaz57Mme87bwC1D8M.roa
File: Rkhu0J5eGPXaz57Mme87bwC1D8M.roa (raw, json)
Hash identifier: uzpA9z/HSL43lwFXZtEz+XZe9BtKinDdpJrMu3ScAbc=
Subject key identifier: 46:48:6E:D0:9E:5E:18:F5:DA:CF:9E:CC:99:EF:3B:6F:00:B5:0F:C3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A91
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Rkhu0J5eGPXaz57Mme87bwC1D8M.roa
Signing time: Sun 07 Feb 2021 11:38:17 +0000
ROA not before: Sun 07 Feb 2021 11:38:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 203.75.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2705 (0xa91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=46486ED09E5E18F5DACF9ECC99EF3B6F00B50FC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fd:63:15:33:7d:47:1a:fb:82:c8:0c:fd:60:
af:3f:e7:c8:89:ba:a6:a2:fa:e5:ff:20:bf:c7:11:
9b:ca:44:3d:d7:0a:a5:fd:8f:56:42:d5:be:3d:3f:
fb:ec:f9:26:f0:a4:ef:12:a1:05:85:15:03:96:f4:
95:97:91:48:f5:ba:13:1c:91:75:d5:88:be:f1:03:
ee:23:fe:20:cc:dc:3c:46:6a:1c:ad:b0:14:51:31:
a7:9d:0a:8b:36:d3:f7:91:0b:c7:c3:3d:19:dd:d2:
93:63:5e:c4:26:e2:8e:e8:dd:0a:60:48:a6:fd:25:
be:e1:c4:d4:9f:43:2e:15:e3:38:19:0c:b6:0c:0b:
e0:a8:cc:18:35:16:84:7a:4e:42:86:61:d8:a3:81:
66:05:30:54:de:6a:15:f3:bb:c0:46:eb:4a:14:08:
42:25:6b:67:3e:09:1e:da:e9:e8:8f:22:8d:82:8b:
e1:af:eb:69:d0:62:54:f4:cd:14:62:12:50:7d:99:
c9:d5:71:82:14:27:4c:4a:25:1b:79:5b:74:14:b7:
54:6e:91:52:32:ac:30:a8:76:c0:a2:64:a7:1b:00:
4e:73:3b:82:37:45:1e:ca:03:9c:18:93:71:c7:f9:
ea:32:7d:74:67:20:30:01:95:7b:6f:c9:1a:ff:51:
51:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:48:6E:D0:9E:5E:18:F5:DA:CF:9E:CC:99:EF:3B:6F:00:B5:0F:C3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Rkhu0J5eGPXaz57Mme87bwC1D8M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3b:00:c6:0d:79:d2:2e:40:b7:92:61:97:ee:e9:f6:2d:5a:50:
5c:2b:93:22:f2:aa:44:96:06:4d:76:6f:bc:fc:d6:c4:4c:5a:
37:c2:ae:ea:06:60:70:93:00:cc:68:a2:a3:25:da:26:4a:a0:
f2:ed:fc:2b:80:11:df:65:13:06:db:de:55:45:62:b0:5e:cf:
77:4b:de:bd:1a:1a:28:e6:f1:21:16:5a:04:7b:30:1f:3b:12:
3e:46:d1:4d:f6:e9:77:f5:ca:ef:0a:b5:6e:9f:29:87:3d:a4:
7e:6d:12:83:ec:50:4f:6c:b5:99:d9:d8:2a:55:06:71:1a:05:
19:4d:06:33:26:28:6e:de:42:f1:1d:18:db:95:1a:54:05:68:
e7:d8:72:5b:0c:32:34:7d:fc:6d:66:97:5a:2e:4f:09:6a:7f:
9f:d2:1a:92:a2:3b:47:5b:5f:d4:c1:ac:d4:f7:17:14:b9:98:
ae:e6:43:75:a9:a7:db:9f:2f:8c:41:e2:16:57:65:6d:0d:18:
7c:a6:c8:32:5a:3d:9e:6f:f0:8a:d6:f7:06:71:c8:0f:8a:29:
7a:2e:6e:ea:c8:da:c9:51:4e:86:13:0b:7a:22:b9:50:69:b2:
4e:e5:cb:0f:92:8e:3f:0f:51:85:db:da:7d:fe:a5:7c:ee:7e:
f9:55:c8:9a
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCpEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTAyMDcx
MTM4MTdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQ2NDg2RUQwOUU1RTE4
RjVEQUNGOUVDQzk5RUYzQjZGMDBCNTBGQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCg/WMVM31HGvuCyAz9YK8/58iJuqai+uX/IL/HEZvKRD3XCqX9
j1ZC1b49P/vs+SbwpO8SoQWFFQOW9JWXkUj1uhMckXXViL7xA+4j/iDM3DxGahyt
sBRRMaedCos20/eRC8fDPRnd0pNjXsQm4o7o3QpgSKb9Jb7hxNSfQy4V4zgZDLYM
C+CozBg1FoR6TkKGYdijgWYFMFTeahXzu8BG60oUCEIla2c+CR7a6eiPIo2Ci+Gv
62nQYlT0zRRiElB9mcnVcYIUJ0xKJRt5W3QUt1RukVIyrDCodsCiZKcbAE5zO4I3
RR7KA5wYk3HH+eoyfXRnIDABlXtvyRr/UVG7AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQURkhu0J5eGPXaz57Mme87bwC1D8MwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9Sa2h1MEo1ZUdQWGF6NTdNbWU4
N2J3QzFEOE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0sw
DQYJKoZIhvcNAQELBQADggEBADsAxg150i5At5Jhl+7p9i1aUFwrkyLyqkSWBk12
b7z81sRMWjfCruoGYHCTAMxooqMl2iZKoPLt/CuAEd9lEwbb3lVFYrBez3dL3r0a
Gijm8SEWWgR7MB87Ej5G0U326Xf1yu8KtW6fKYc9pH5tEoPsUE9stZnZ2CpVBnEa
BRlNBjMmKG7eQvEdGNuVGlQFaOfYclsMMjR9/G1ml1ouTwlqf5/SGpKiO0dbX9TB
rNT3FxS5mK7mQ3Wpp9ufL4xB4hZXZW0NGHymyDJaPZ5v8IrW9wZxyA+KKXouburI
2slRToYTC3oiuVBpsk7lyw+Sjj8PUYXb2n3+pXzufvlVyJo=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-fra.rpki-client.org