Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Zb3JfvrPcBNcDXsdonmlqZmel0g.roa
File: Zb3JfvrPcBNcDXsdonmlqZmel0g.roa (raw, json)
Hash identifier: XfKWV58mLr1pOq3qaBpHYGA6naQaF+4eAJrUxAXbPZg=
Subject key identifier: 65:BD:C9:7E:FA:CF:70:13:5C:0D:7B:1D:A2:79:A5:A9:99:9E:97:48
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Zb3JfvrPcBNcDXsdonmlqZmel0g.roa
Signing time: Thu 15 Sep 2022 02:48:43 +0000
ROA not before: Thu 15 Sep 2022 02:48:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10126
IP address blocks: 203.160.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=65BDC97EFACF70135C0D7B1DA279A5A9999E9748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e9:44:a3:15:bf:63:e7:e6:3b:61:96:82:42:
2c:8d:61:70:1c:64:dd:f5:15:30:06:11:27:82:1f:
c4:0a:dd:b7:77:fc:9c:d0:a1:5f:56:85:fd:dc:40:
77:f0:08:9d:22:a2:0d:af:ad:da:a7:a8:7f:8f:c5:
2a:34:f6:76:00:64:11:23:21:31:ba:35:e0:c7:9e:
3a:3d:1f:86:46:65:16:18:9f:17:d1:4c:e7:64:58:
72:7e:44:b5:31:71:9d:df:f6:24:ac:c7:03:01:b4:
93:ce:c7:fe:64:da:d7:bb:ab:cf:f4:cf:db:08:e9:
81:94:84:9e:35:0c:40:35:70:23:12:c4:39:fd:e7:
38:75:2d:04:8c:07:7f:30:0b:2b:dd:9c:a0:25:17:
6f:1a:46:ae:11:96:c9:dd:b7:f9:85:dc:78:71:2e:
90:5a:fd:f8:51:6c:ed:4c:47:b3:8a:83:5a:0f:1c:
99:87:9a:56:a0:8a:35:f8:a2:94:49:bb:34:6e:68:
0d:9d:bd:7b:15:fb:2c:ab:b6:1e:df:54:0f:f3:04:
c4:b2:29:d5:15:fa:8a:2a:a2:8e:f5:ed:02:03:cf:
54:47:6f:5e:34:af:45:d0:cc:41:95:61:4f:a9:ae:
be:8d:43:70:8a:8b:f1:3d:28:f9:1a:2f:9a:62:81:
62:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:BD:C9:7E:FA:CF:70:13:5C:0D:7B:1D:A2:79:A5:A9:99:9E:97:48
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Zb3JfvrPcBNcDXsdonmlqZmel0g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.240.0/20
Signature Algorithm: sha256WithRSAEncryption
a9:9a:ec:24:8f:58:cb:85:73:25:e1:30:41:f3:fe:64:4e:a8:
90:1a:09:a5:27:a9:24:2e:e1:cb:7e:c5:31:80:e5:36:02:4b:
ec:67:8f:de:5c:2f:6f:5d:fc:bb:1f:c4:14:a2:99:98:67:c3:
68:89:ea:64:2d:07:ee:f5:48:57:e5:7a:6d:b4:b3:5a:23:2d:
e8:47:7a:af:bd:e8:3d:8c:66:82:c5:93:f3:6a:be:54:5b:31:
ff:58:00:db:90:95:e0:71:ef:58:9c:14:62:44:d1:71:8a:3b:
cd:d7:bd:e5:52:54:e7:10:5a:72:11:48:d9:6d:b8:bc:87:69:
67:7b:e8:a0:ef:2f:42:59:0b:9d:79:fa:88:75:f9:34:9e:b5:
b1:08:3a:a8:a4:32:a6:97:19:c4:eb:bd:20:d1:5f:6e:6e:fa:
8f:c7:0c:4c:e0:e4:d3:c2:e9:02:27:7d:a8:b3:ec:03:b9:6c:
c3:95:fb:92:dd:6c:ac:ae:af:9e:fc:e5:ce:8d:09:01:6d:67:
06:bb:6f:88:61:91:34:47:9f:79:1f:2e:f2:28:9b:80:72:65:
cc:b6:b6:66:f5:7d:3d:57:63:a4:09:91:b1:37:10:a8:40:6e:
46:36:a8:86:b5:b1:ec:fb:f3:4f:10:c9:bd:a8:29:dd:67:c0:
80:2b:f9:58
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4NDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDY1QkRDOTdFRkFDRjcw
MTM1QzBEN0IxREEyNzlBNUE5OTk5RTk3NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDC6USjFb9j5+Y7YZaCQiyNYXAcZN31FTAGESeCH8QK3bd3/JzQ
oV9Whf3cQHfwCJ0iog2vrdqnqH+PxSo09nYAZBEjITG6NeDHnjo9H4ZGZRYYnxfR
TOdkWHJ+RLUxcZ3f9iSsxwMBtJPOx/5k2te7q8/0z9sI6YGUhJ41DEA1cCMSxDn9
5zh1LQSMB38wCyvdnKAlF28aRq4Rlsndt/mF3HhxLpBa/fhRbO1MR7OKg1oPHJmH
mlagijX4opRJuzRuaA2dvXsV+yyrth7fVA/zBMSyKdUV+ooqoo717QIDz1RHb140
r0XQzEGVYU+prr6NQ3CKi/E9KPkaL5pigWK1AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUZb3JfvrPcBNcDXsdonmlqZmel0gwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9aYjNKZnZyUGNCTmNEWHNkb25t
bHFabWVsMGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEy6Dw
MA0GCSqGSIb3DQEBCwUAA4IBAQCpmuwkj1jLhXMl4TBB8/5kTqiQGgmlJ6kkLuHL
fsUxgOU2AkvsZ4/eXC9vXfy7H8QUopmYZ8NoiepkLQfu9UhX5XpttLNaIy3oR3qv
veg9jGaCxZPzar5UWzH/WADbkJXgce9YnBRiRNFxijvN173lUlTnEFpyEUjZbbi8
h2lne+ig7y9CWQudefqIdfk0nrWxCDqopDKmlxnE670g0V9ubvqPxwxM4OTTwukC
J32os+wDuWzDlfuS3Wysrq+e/OXOjQkBbWcGu2+IYZE0R595Hy7yKJuAcmXMtrZm
9X09V2OkCZGxNxCoQG5GNqiGtbHs+/NPEMm9qCndZ8CAK/lY
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:13 2025 by rpki-client