Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ebtVAO3YWNEL6J1rxvG3hvAxDgk.roa
File: ebtVAO3YWNEL6J1rxvG3hvAxDgk.roa (raw, json)
Hash identifier: Stt6i3qzWCZFZXWF5hWwbUQLFc/ZC2tMgEwmDoxMBZQ=
Subject key identifier: 79:BB:55:00:ED:D8:58:D1:0B:E8:9D:6B:C6:F1:B7:86:F0:31:0E:09
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C5B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ebtVAO3YWNEL6J1rxvG3hvAxDgk.roa
Signing time: Wed 29 Sep 2021 02:51:11 +0000
ROA not before: Wed 29 Sep 2021 02:51:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17421
IP address blocks: 221.120.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3163 (0xc5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=79BB5500EDD858D10BE89D6BC6F1B786F0310E09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:34:21:53:1d:ab:82:74:53:d2:be:99:51:31:
82:e3:0f:62:28:4c:12:5f:d6:4b:2a:e9:0c:7e:d3:
e6:0b:95:fc:87:ed:a5:7b:f7:e2:3e:49:13:89:1f:
7c:99:8f:bc:4b:27:a1:e1:ba:ee:5c:7f:7a:0f:d5:
de:8b:3c:c6:0e:3a:69:af:e6:2e:48:9e:41:c6:c2:
67:3b:f9:48:46:0c:60:db:90:0c:06:6a:e3:36:5d:
af:4f:de:c3:b5:34:fd:ea:e7:f2:31:2e:b5:c1:f3:
fb:6b:21:f5:69:60:7b:0b:3c:f6:d6:69:83:08:f4:
c7:28:da:2d:e8:fc:47:b8:b9:c4:12:14:71:a8:f1:
a9:71:61:df:44:dc:d9:39:ba:44:02:57:d3:12:9b:
5a:14:77:d8:17:d2:8c:a9:3e:e4:c1:b0:2f:e7:f4:
23:d8:f4:16:7d:de:08:47:7c:c2:70:58:a5:28:b9:
14:83:25:c1:87:3d:91:a8:cc:f0:d5:4c:e1:e5:06:
97:e2:bf:dc:18:43:f3:4e:fd:1b:8f:32:d1:2a:aa:
5b:0e:64:ab:72:84:de:66:67:64:8b:d9:28:bf:6f:
71:55:c6:5f:c9:12:3d:f6:8c:fb:a3:bc:26:c2:4d:
a6:94:29:a8:a0:6c:3b:df:6c:f2:fb:cd:a9:ad:c3:
16:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:BB:55:00:ED:D8:58:D1:0B:E8:9D:6B:C6:F1:B7:86:F0:31:0E:09
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ebtVAO3YWNEL6J1rxvG3hvAxDgk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.0.0/18
Signature Algorithm: sha256WithRSAEncryption
9d:bb:12:ff:34:17:82:65:ed:83:fc:04:4e:c7:1b:de:82:32:
13:20:0a:7d:e0:25:71:39:af:8d:1c:cb:8a:f2:45:3f:0a:20:
b3:b7:3b:53:3d:6e:9c:32:0b:58:ed:8e:62:3a:bd:66:e1:62:
f2:8b:fb:8c:42:72:1d:71:e2:4b:65:64:27:24:15:03:79:6c:
51:fa:4e:03:0e:4f:bb:75:62:ab:51:1b:da:b7:76:16:89:39:
d8:6b:cf:2d:a1:46:22:42:b5:50:b0:7b:af:43:ad:a1:3d:87:
59:55:61:d1:a7:88:f4:10:93:9d:5b:c3:a5:2d:a2:fd:0e:dc:
bc:7c:f1:72:5f:f4:71:07:0e:5d:66:2f:a9:4c:e4:73:bf:7c:
17:45:c2:26:6d:42:a1:21:b9:27:71:3a:30:e8:db:62:c8:46:
37:29:86:cb:0e:fe:5e:a9:94:af:42:ea:fd:53:6f:be:42:a3:
12:d0:c1:8b:a7:12:e9:b5:d6:48:4b:6a:2d:1e:84:87:87:d6:
c2:42:32:39:74:45:38:a2:3b:92:4d:67:9a:27:ba:87:b6:e4:
12:10:d6:5b:66:35:b2:72:e8:65:c5:9c:7a:81:a0:da:e0:6f:
d1:14:8a:c8:02:9b:42:e8:35:61:03:ee:b9:7d:e2:d0:91:67:
e8:79:34:03
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDFswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUxMTFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDc5QkI1NTAwRUREODU4
RDEwQkU4OUQ2QkM2RjFCNzg2RjAzMTBFMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjNCFTHauCdFPSvplRMYLjD2IoTBJf1ksq6Qx+0+YLlfyH7aV7
9+I+SROJH3yZj7xLJ6Hhuu5cf3oP1d6LPMYOOmmv5i5InkHGwmc7+UhGDGDbkAwG
auM2Xa9P3sO1NP3q5/IxLrXB8/trIfVpYHsLPPbWaYMI9Mco2i3o/Ee4ucQSFHGo
8alxYd9E3Nk5ukQCV9MSm1oUd9gX0oypPuTBsC/n9CPY9BZ93ghHfMJwWKUouRSD
JcGHPZGozPDVTOHlBpfiv9wYQ/NO/RuPMtEqqlsOZKtyhN5mZ2SL2Si/b3FVxl/J
Ej32jPujvCbCTaaUKaigbDvfbPL7zamtwxa/AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUebtVAO3YWNEL6J1rxvG3hvAxDgkwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9lYnRWQU8zWVdORUw2SjFyeHZH
M2h2QXhEZ2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG3XgA
MA0GCSqGSIb3DQEBCwUAA4IBAQCduxL/NBeCZe2D/AROxxvegjITIAp94CVxOa+N
HMuK8kU/CiCztztTPW6cMgtY7Y5iOr1m4WLyi/uMQnIdceJLZWQnJBUDeWxR+k4D
Dk+7dWKrURvat3YWiTnYa88toUYiQrVQsHuvQ62hPYdZVWHRp4j0EJOdW8OlLaL9
Dty8fPFyX/RxBw5dZi+pTORzv3wXRcImbUKhIbkncTow6NtiyEY3KYbLDv5eqZSv
Qur9U2++QqMS0MGLpxLptdZIS2otHoSHh9bCQjI5dEU4ojuSTWeaJ7qHtuQSENZb
ZjWycuhlxZx6gaDa4G/RFIrIAptC6DVhA+65feLQkWfoeTQD
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org