Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YK-CENfHfIIfDscGvWN_IRcsOcw.roa
File: YK-CENfHfIIfDscGvWN_IRcsOcw.roa (raw, json)
Hash identifier: jdRrXJ/G06XujQ7iBCIhjDYSAfGXfgf18Zlt33qwvAY=
Subject key identifier: 60:AF:82:10:D7:C7:7C:82:1F:0E:C7:06:BD:63:7F:21:17:2C:39:CC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YK-CENfHfIIfDscGvWN_IRcsOcw.roa
Signing time: Thu 15 Sep 2022 02:48:15 +0000
ROA not before: Thu 15 Sep 2022 02:48:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9680
IP address blocks: 202.39.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=60AF8210D7C77C821F0EC706BD637F21172C39CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:18:d7:c2:b8:07:69:3f:2c:9a:6f:46:0a:ce:
b6:33:88:e2:94:55:60:ba:b9:40:b9:e0:e5:56:e3:
69:db:e4:ef:9e:8f:2e:da:91:70:fe:a6:44:fd:29:
8b:3a:f0:e7:b1:56:09:30:4e:5b:65:da:f1:e2:79:
f8:fa:97:43:72:98:ff:13:6d:50:e8:85:55:da:fc:
81:3f:04:91:1d:97:be:9a:5e:8d:de:e2:28:95:68:
f8:eb:8c:f6:1a:6f:66:b1:e5:d7:5b:61:00:5b:35:
7a:e3:b5:d1:0d:bf:97:ea:c9:05:67:5a:df:53:97:
8a:81:49:91:71:11:65:ae:dd:31:d0:67:cb:82:fb:
14:13:b8:2f:c4:26:47:3a:31:5b:db:cf:6b:f4:f9:
9a:fb:e6:04:8b:49:ee:1e:38:fa:08:c5:a0:82:cd:
32:96:1b:5e:82:d7:0f:e8:bc:d4:86:98:44:64:a1:
74:da:0b:09:8e:b2:4c:fb:c1:4e:c0:e4:58:0a:17:
82:4f:8a:dd:80:94:e3:a1:be:dd:81:51:db:bb:99:
09:ab:51:2f:52:90:24:32:38:ac:9d:5e:d4:ec:05:
ab:23:a7:50:38:d5:09:22:7e:b8:34:b5:e2:a3:58:
7d:c0:b6:b9:13:2f:03:76:b4:a0:0d:50:db:65:d5:
ef:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:AF:82:10:D7:C7:7C:82:1F:0E:C7:06:BD:63:7F:21:17:2C:39:CC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YK-CENfHfIIfDscGvWN_IRcsOcw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.80.0/20
Signature Algorithm: sha256WithRSAEncryption
1d:ed:be:fd:5b:51:0c:9d:37:dd:e3:78:a9:7f:82:f8:e1:4e:
6e:ce:42:98:df:69:4a:5b:99:d0:53:35:84:4d:76:11:53:0a:
26:02:25:b8:ce:74:8c:c5:fa:27:84:fe:1c:86:3f:f7:79:2c:
52:64:e0:fb:32:54:1c:f4:04:f1:af:5e:7c:4b:18:ba:dd:26:
c1:06:bc:f3:f8:a8:e5:bf:80:6e:8e:74:3e:e1:4c:5e:08:b3:
c8:3a:86:a6:6a:3d:c8:d9:c3:71:af:6c:21:d8:d5:91:29:8e:
00:72:11:12:2b:b1:28:c7:5f:08:db:d6:da:5a:1e:4e:d4:e3:
97:35:77:33:d5:b6:1f:cb:c6:b9:02:c0:17:de:5b:d1:0d:13:
61:33:3f:6c:8a:5a:a4:ad:a3:51:ce:ca:ac:53:2d:a2:ec:06:
3a:b0:67:f9:af:d5:a4:68:9f:d8:e4:80:03:ef:ce:c9:00:5e:
f0:25:b4:4c:a8:95:25:f9:01:5c:26:8b:07:af:5a:6c:9c:a0:
2f:ea:b1:88:c0:e4:74:e4:4e:11:22:d4:b0:9a:29:c1:8a:b6:
33:44:ef:47:79:51:36:74:48:b0:6d:db:d1:2a:50:00:46:d7:
19:c3:fb:96:c8:36:40:6d:0d:01:e3:bc:e5:58:78:df:72:38:
2a:ac:98:87
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDYwQUY4MjEwRDdDNzdD
ODIxRjBFQzcwNkJENjM3RjIxMTcyQzM5Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVGNfCuAdpPyyab0YKzrYziOKUVWC6uUC54OVW42nb5O+ejy7a
kXD+pkT9KYs68OexVgkwTltl2vHiefj6l0NymP8TbVDohVXa/IE/BJEdl76aXo3e
4iiVaPjrjPYab2ax5ddbYQBbNXrjtdENv5fqyQVnWt9Tl4qBSZFxEWWu3THQZ8uC
+xQTuC/EJkc6MVvbz2v0+Zr75gSLSe4eOPoIxaCCzTKWG16C1w/ovNSGmERkoXTa
CwmOskz7wU7A5FgKF4JPit2AlOOhvt2BUdu7mQmrUS9SkCQyOKydXtTsBasjp1A4
1Qkifrg0teKjWH3AtrkTLwN2tKANUNtl1e8BAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUYK+CENfHfIIfDscGvWN/IRcsOcwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9ZSy1DRU5mSGZJSWZEc2NHdldO
X0lSY3NPY3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyidQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAd7b79W1EMnTfd43ipf4L44U5uzkKY32lKW5nQ
UzWETXYRUwomAiW4znSMxfonhP4chj/3eSxSZOD7MlQc9ATxr158Sxi63SbBBrzz
+Kjlv4BujnQ+4UxeCLPIOoamaj3I2cNxr2wh2NWRKY4AchESK7Eox18I29baWh5O
1OOXNXcz1bYfy8a5AsAX3lvRDRNhMz9silqkraNRzsqsUy2i7AY6sGf5r9WkaJ/Y
5IAD787JAF7wJbRMqJUl+QFcJosHr1psnKAv6rGIwOR05E4RItSwminBirYzRO9H
eVE2dEiwbdvRKlAARtcZw/uWyDZAbQ0B47zlWHjfcjgqrJiH
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org