Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/XwRQfJBoi4YTGlqm9u82ktsNlXc.roa
File: XwRQfJBoi4YTGlqm9u82ktsNlXc.roa (raw, json)
Hash identifier: X0E6VDLLy8VqTlKLrHIcspttfjM+mNQq5ezRsOJAxso=
Subject key identifier: 5F:04:50:7C:90:68:8B:86:13:1A:5A:A6:F6:EF:36:92:DB:0D:95:77
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C03
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XwRQfJBoi4YTGlqm9u82ktsNlXc.roa
Signing time: Wed 29 Sep 2021 02:50:45 +0000
ROA not before: Wed 29 Sep 2021 02:50:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20940
IP address blocks: 210.65.144.128/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3075 (0xc03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5F04507C90688B86131A5AA6F6EF3692DB0D9577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:19:b9:32:d6:ea:46:99:ea:81:a0:65:5f:9e:
9b:1d:3a:40:44:d3:97:88:dd:5c:19:5d:64:9f:6e:
66:fb:ed:25:f3:f9:36:d4:ea:cb:62:a3:51:2e:18:
94:27:9b:78:52:5d:97:d6:10:c1:82:40:a0:2e:a8:
85:75:73:4a:93:f9:9a:41:86:3c:35:87:7a:bf:50:
7a:4d:f0:95:48:34:53:f8:79:62:ac:28:e6:e1:0a:
1e:68:c7:91:07:5e:2c:77:24:38:cf:d9:a7:2d:8e:
e6:dd:99:45:98:b6:b7:d7:d7:cc:3b:78:4d:f2:6b:
31:c5:d2:e9:e0:e0:2e:ff:e3:9a:fd:50:47:b8:c9:
a8:21:88:1f:f2:14:e0:af:5e:bf:c5:25:ae:28:49:
f2:0e:2f:34:bf:6c:0e:21:e4:c1:b5:b0:2b:74:c2:
c7:77:7e:52:f3:a1:04:83:d0:7a:c0:9d:d4:e8:6f:
4e:6d:48:70:6a:3d:18:1a:44:68:06:a8:72:ad:d2:
82:e3:fa:ba:5d:c5:ac:34:d2:65:5b:fd:26:ed:73:
b4:a7:3f:30:bc:37:1c:01:7c:e5:bd:73:70:22:85:
92:23:08:73:9e:26:da:8f:ff:df:b0:4e:a2:d4:d1:
8d:b7:84:3c:6c:ff:c3:ab:b5:67:5c:50:83:7d:b5:
71:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:04:50:7C:90:68:8B:86:13:1A:5A:A6:F6:EF:36:92:DB:0D:95:77
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XwRQfJBoi4YTGlqm9u82ktsNlXc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.65.144.128/26
Signature Algorithm: sha256WithRSAEncryption
3d:e2:ad:45:19:07:b3:58:79:10:53:f7:7a:69:3c:a8:4d:b9:
99:75:4d:a6:5b:06:df:7d:df:01:74:e1:74:d6:06:e0:02:86:
55:38:41:31:0e:6e:9f:4d:20:19:93:35:fb:6d:b6:97:0b:b5:
44:80:1e:28:b1:ac:67:2c:52:c6:9e:7d:d7:14:78:f6:e8:8f:
9c:b6:d7:6b:81:77:bb:f6:1d:6c:a7:da:a8:28:7c:ab:29:42:
37:05:2a:88:d3:60:84:ad:ad:4c:e4:00:dd:0a:ef:ed:0e:2d:
34:39:1a:fe:1e:2f:dd:91:ae:54:d3:f0:74:4a:f3:1e:7d:28:
f7:ba:b8:d2:bc:83:97:72:ef:34:f2:e3:fe:76:a3:85:49:3c:
89:3b:ae:d4:91:54:e0:c1:c1:c7:b6:63:fa:38:09:bd:82:5c:
71:2b:96:89:e4:98:00:e8:93:81:39:3e:5f:4a:2a:a7:28:ec:
ba:e3:92:48:e6:40:cb:6f:d7:e2:e6:98:84:f0:13:1f:89:c4:
19:c0:b7:45:60:54:e8:23:d2:98:4c:81:35:1a:e9:a4:db:95:
4a:bc:d2:af:e7:e4:6d:dc:da:98:e8:8a:df:5c:84:04:eb:29:
6c:b4:2c:6a:50:d1:03:42:3d:76:92:8e:2e:0d:77:f0:12:8e:
28:ec:1d:e9
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICDAMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUwNDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDVGMDQ1MDdDOTA2ODhC
ODYxMzFBNUFBNkY2RUYzNjkyREIwRDk1NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQClGbky1upGmeqBoGVfnpsdOkBE05eI3VwZXWSfbmb77SXz+TbU
6stio1EuGJQnm3hSXZfWEMGCQKAuqIV1c0qT+ZpBhjw1h3q/UHpN8JVINFP4eWKs
KObhCh5ox5EHXix3JDjP2actjubdmUWYtrfX18w7eE3yazHF0ung4C7/45r9UEe4
yaghiB/yFOCvXr/FJa4oSfIOLzS/bA4h5MG1sCt0wsd3flLzoQSD0HrAndTob05t
SHBqPRgaRGgGqHKt0oLj+rpdxaw00mVb/Sbtc7SnPzC8NxwBfOW9c3AihZIjCHOe
JtqP/9+wTqLU0Y23hDxs/8OrtWdcUIN9tXF3AgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUXwRQfJBoi4YTGlqm9u82ktsNlXcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9Yd1JRZkpCb2k0WVRHbHFtOXU4
Mmt0c05sWGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUG0kGQ
gDANBgkqhkiG9w0BAQsFAAOCAQEAPeKtRRkHs1h5EFP3emk8qE25mXVNplsG333f
AXThdNYG4AKGVThBMQ5un00gGZM1+222lwu1RIAeKLGsZyxSxp591xR49uiPnLbX
a4F3u/YdbKfaqCh8qylCNwUqiNNghK2tTOQA3Qrv7Q4tNDka/h4v3ZGuVNPwdErz
Hn0o97q40ryDl3LvNPLj/najhUk8iTuu1JFU4MHBx7Zj+jgJvYJccSuWieSYAOiT
gTk+X0oqpyjsuuOSSOZAy2/X4uaYhPATH4nEGcC3RWBU6CPSmEyBNRrppNuVSrzS
r+fkbdzamOiK31yEBOspbLQsalDRA0I9dpKOLg138BKOKOwd6Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org