Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/cfOlB1nJ07vGZvGC18Snp8VLY6o.roa
File: cfOlB1nJ07vGZvGC18Snp8VLY6o.roa (raw, json)
Hash identifier: LmdKoHg1TJ9F29Pil2MtE19SYRwESGwaflwJ0lVqT5Q=
Subject key identifier: 71:F3:A5:07:59:C9:D3:BB:C6:66:F1:82:D7:C4:A7:A7:C5:4B:63:AA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cfOlB1nJ07vGZvGC18Snp8VLY6o.roa
Signing time: Thu 15 Sep 2022 02:48:16 +0000
ROA not before: Thu 15 Sep 2022 02:48:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 54994
IP address blocks: 210.61.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=71F3A50759C9D3BBC666F182D7C4A7A7C54B63AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:56:8f:dc:ff:ec:7f:78:b0:6f:51:a2:29:48:
fc:0b:fd:cf:9d:7e:f0:d9:b2:72:f1:09:d8:db:27:
95:5b:97:51:89:ad:70:8b:a7:83:4d:93:8a:df:ab:
c9:19:aa:bb:e0:3c:72:34:00:a3:b1:15:1c:f1:d7:
6f:91:f9:03:ca:f2:cf:cb:9b:a8:2e:35:95:9f:cc:
4e:29:ce:5d:ab:d4:6c:03:08:e1:7e:f0:08:a7:01:
56:6d:38:49:a3:f6:c7:ee:e5:3e:70:5d:3c:fa:1e:
a3:61:f1:c0:3f:a5:f1:83:dc:35:c3:92:e7:24:db:
01:64:49:81:01:3f:9c:cc:8f:31:8c:7a:23:95:16:
c5:8b:6e:63:13:5b:f2:85:a0:d4:0b:cb:b0:60:70:
80:5b:89:9d:4a:ff:20:83:33:a8:b3:70:0b:fa:e7:
28:4b:e0:0f:8c:99:8f:c3:c3:0c:b2:51:79:85:07:
a5:cd:4f:d1:24:bf:dd:cb:2d:f5:4f:b4:36:b7:3a:
7c:7e:bb:af:d4:d7:d6:df:0e:ae:c5:ba:7e:0d:02:
bc:27:41:73:4f:4d:46:ad:ac:13:9f:e5:d8:15:e7:
32:5a:8c:17:5a:0d:90:0b:e5:46:83:29:2c:29:1c:
12:c1:fd:aa:18:a7:42:9c:7c:e7:44:8b:f8:84:16:
04:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F3:A5:07:59:C9:D3:BB:C6:66:F1:82:D7:C4:A7:A7:C5:4B:63:AA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cfOlB1nJ07vGZvGC18Snp8VLY6o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.180.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:67:e1:5f:0b:a6:09:16:c0:f3:fa:c8:96:45:87:3d:1e:8f:
1a:fe:5a:53:3b:d2:9b:15:e3:9a:c1:de:4e:ac:41:30:d1:e9:
92:02:8e:90:4c:d7:ad:6e:6c:ee:e4:17:d0:c8:7e:48:88:b0:
e5:9f:57:b2:f1:0d:11:90:8b:17:bf:b0:70:a9:5f:62:22:37:
88:a3:86:2d:3e:9c:69:9a:51:9b:73:f7:0f:ca:77:5b:20:a8:
7d:49:61:0e:ef:74:cc:d6:5d:7e:79:65:19:8b:03:2d:14:c8:
67:9c:08:f8:78:d0:95:aa:28:5d:a4:35:8b:33:7b:e3:9b:13:
ca:3a:58:45:d8:cc:b3:87:b2:7c:a0:35:c0:d7:74:b9:5c:2d:
d2:53:63:da:93:fe:a3:26:79:f9:4d:a5:1b:df:e6:79:5a:b5:
5d:4c:b6:cb:0e:41:b5:56:08:01:ed:b9:dc:62:c9:f7:cd:15:
75:d1:dc:5c:2b:67:63:4b:e2:d3:c1:27:c2:47:6e:fb:27:bc:
da:b4:c5:70:b6:a9:3d:d2:1e:af:f3:d1:11:b5:0c:09:8c:d7:
6d:ed:03:6c:10:be:ca:85:8c:74:bb:1e:c4:a4:87:fc:04:ec:
2f:7c:d7:1d:a9:b7:85:06:61:19:2c:9a:52:2c:2a:0c:f2:67:
b8:f2:77:36
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MTZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDcxRjNBNTA3NTlDOUQz
QkJDNjY2RjE4MkQ3QzRBN0E3QzU0QjYzQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDtVo/c/+x/eLBvUaIpSPwL/c+dfvDZsnLxCdjbJ5Vbl1GJrXCL
p4NNk4rfq8kZqrvgPHI0AKOxFRzx12+R+QPK8s/Lm6guNZWfzE4pzl2r1GwDCOF+
8AinAVZtOEmj9sfu5T5wXTz6HqNh8cA/pfGD3DXDkuck2wFkSYEBP5zMjzGMeiOV
FsWLbmMTW/KFoNQLy7BgcIBbiZ1K/yCDM6izcAv65yhL4A+MmY/DwwyyUXmFB6XN
T9Ekv93LLfVPtDa3Onx+u6/U19bfDq7Fun4NArwnQXNPTUatrBOf5dgV5zJajBda
DZAL5UaDKSwpHBLB/aoYp0KcfOdEi/iEFgR3AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUcfOlB1nJ07vGZvGC18Snp8VLY6owHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9jZk9sQjFuSjA3dkdadkdDMThT
bnA4VkxZNm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j20
MA0GCSqGSIb3DQEBCwUAA4IBAQDOZ+FfC6YJFsDz+siWRYc9Ho8a/lpTO9KbFeOa
wd5OrEEw0emSAo6QTNetbmzu5BfQyH5IiLDln1ey8Q0RkIsXv7BwqV9iIjeIo4Yt
PpxpmlGbc/cPyndbIKh9SWEO73TM1l1+eWUZiwMtFMhnnAj4eNCVqihdpDWLM3vj
mxPKOlhF2Myzh7J8oDXA13S5XC3SU2Pak/6jJnn5TaUb3+Z5WrVdTLbLDkG1VggB
7bncYsn3zRV10dxcK2djS+LTwSfCR277J7zatMVwtqk90h6v89ERtQwJjNdt7QNs
EL7KhYx0ux7EpIf8BOwvfNcdqbeFBmEZLJpSLCoM8me48nc2
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org