Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YeSHlYj0GeBAu-4IQelMzAjdlGI.roa
File: YeSHlYj0GeBAu-4IQelMzAjdlGI.roa (raw, json)
Hash identifier: HdLrGULGB2YblhcdLhOVK+/c9a6MJhGqGj4wwLRZ3Zg=
Subject key identifier: 61:E4:87:95:88:F4:19:E0:40:BB:EE:08:41:E9:4C:CC:08:DD:94:62
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A5C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YeSHlYj0GeBAu-4IQelMzAjdlGI.roa
Signing time: Sun 07 Feb 2021 11:37:33 +0000
ROA not before: Sun 07 Feb 2021 11:37:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 36040
IP address blocks: 202.39.67.128/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2652 (0xa5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=61E4879588F419E040BBEE0841E94CCC08DD9462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:02:5f:61:d4:d5:a5:b6:2f:21:47:c2:2b:49:
3b:5f:75:ac:c0:8d:e6:8d:58:b4:55:ae:09:dd:68:
33:55:f5:ee:95:0e:59:1b:ad:9d:07:37:3b:7a:a9:
58:fb:9a:b3:fe:9e:9f:60:7d:d8:f5:1f:cb:49:2f:
ff:cf:6a:d0:3c:4d:ba:8c:63:dd:f8:3f:e1:f3:a3:
23:fa:1e:6b:5d:da:4f:bb:2c:4d:a5:f1:07:83:e4:
15:d0:75:79:40:cb:b2:ff:af:7a:4d:34:a4:65:98:
29:45:69:b0:00:eb:62:a4:89:2f:0f:ce:e8:9b:3e:
82:62:b7:8d:51:84:c6:86:2c:09:60:26:d1:49:63:
15:b8:e3:47:df:94:d6:dd:91:43:34:76:9a:c2:93:
8b:a0:6e:f7:d7:17:a0:87:b2:f5:e9:01:50:11:a1:
c0:7e:1d:1d:b3:43:1c:2f:a9:1d:3e:10:f3:1f:6b:
3a:bc:14:cd:14:86:d6:b5:04:df:0d:99:06:fd:be:
2e:14:cb:48:7c:65:7c:ae:60:09:01:8b:79:ee:5e:
88:6c:48:e1:66:7e:2a:a5:18:5f:52:73:34:53:1d:
b3:e2:c6:de:e6:8c:67:6f:2a:8c:9d:cf:c8:97:bb:
cc:08:ce:2b:35:11:bc:e2:03:68:86:c9:46:0d:e3:
50:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E4:87:95:88:F4:19:E0:40:BB:EE:08:41:E9:4C:CC:08:DD:94:62
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YeSHlYj0GeBAu-4IQelMzAjdlGI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.67.128/27
Signature Algorithm: sha256WithRSAEncryption
91:af:08:51:37:a7:f0:25:1e:de:e7:4d:ef:b0:72:7e:09:34:
ac:4f:9e:2c:79:d6:db:7f:14:56:36:aa:ed:f9:8a:aa:47:a4:
56:b5:f4:38:5d:ae:ba:aa:68:78:71:df:0a:33:c3:a3:91:59:
d8:fe:80:bd:aa:75:2c:62:78:af:bd:36:15:d0:e5:84:cb:b3:
c1:c4:17:63:0f:46:10:38:16:cd:f4:3b:87:2c:4b:64:ee:46:
aa:1a:f0:ab:ef:e4:18:84:8c:9f:2d:0e:58:b1:ea:30:5f:e2:
75:1c:1f:ba:4f:7f:c8:56:8d:e7:23:53:1c:f9:65:97:f6:f3:
d0:cd:b2:ae:f8:d7:65:a4:d1:75:f1:82:d9:f2:f4:e0:f0:e4:
15:bc:27:e7:55:8b:b9:76:55:da:6f:8d:d9:90:33:80:7a:6c:
25:1c:2b:2e:17:a3:12:5d:c8:ce:d3:fa:1b:a7:d6:43:93:bc:
4b:56:3b:0e:0d:48:68:50:df:44:47:ac:cb:06:45:1e:86:20:
81:98:34:8e:7a:0b:37:68:28:74:98:4b:09:bc:4a:28:bf:cc:
7b:d2:91:c5:a0:c3:7d:82:af:2d:2c:db:b7:0d:e7:d6:22:29:
94:7d:d8:5b:d2:10:3f:71:a2:5d:35:61:f7:72:ac:8b:e9:f8:
13:7a:11:56
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICClwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTAyMDcx
MTM3MzNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDYxRTQ4Nzk1ODhGNDE5
RTA0MEJCRUUwODQxRTk0Q0NDMDhERDk0NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/Al9h1NWlti8hR8IrSTtfdazAjeaNWLRVrgndaDNV9e6VDlkb
rZ0HNzt6qVj7mrP+np9gfdj1H8tJL//PatA8TbqMY934P+HzoyP6Hmtd2k+7LE2l
8QeD5BXQdXlAy7L/r3pNNKRlmClFabAA62KkiS8PzuibPoJit41RhMaGLAlgJtFJ
YxW440fflNbdkUM0dprCk4ugbvfXF6CHsvXpAVARocB+HR2zQxwvqR0+EPMfazq8
FM0Uhta1BN8NmQb9vi4Uy0h8ZXyuYAkBi3nuXohsSOFmfiqlGF9SczRTHbPixt7m
jGdvKoydz8iXu8wIzis1EbziA2iGyUYN41CHAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUYeSHlYj0GeBAu+4IQelMzAjdlGIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9ZZVNIbFlqMEdlQkF1LTRJUWVs
TXpBamRsR0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUFyidD
gDANBgkqhkiG9w0BAQsFAAOCAQEAka8IUTen8CUe3udN77Byfgk0rE+eLHnW238U
Vjaq7fmKqkekVrX0OF2uuqpoeHHfCjPDo5FZ2P6Avap1LGJ4r702FdDlhMuzwcQX
Yw9GEDgWzfQ7hyxLZO5Gqhrwq+/kGISMny0OWLHqMF/idRwfuk9/yFaN5yNTHPll
l/bz0M2yrvjXZaTRdfGC2fL04PDkFbwn51WLuXZV2m+N2ZAzgHpsJRwrLhejEl3I
ztP6G6fWQ5O8S1Y7Dg1IaFDfREesywZFHoYggZg0jnoLN2godJhLCbxKKL/Me9KR
xaDDfYKvLSzbtw3n1iIplH3YW9IQP3GiXTVh93Ksi+n4E3oRVg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-fra.rpki-client.org