Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/fFddhtV_FlYUhu4rB2uNaG5vwNA.roa
File: fFddhtV_FlYUhu4rB2uNaG5vwNA.roa (raw, json)
Hash identifier: aFvmMbQIePW+nuEH3YM1b7RBMu7/FE93LYrBlAmCzd0=
Subject key identifier: 7C:57:5D:86:D5:7F:16:56:14:86:EE:2B:07:6B:8D:68:6E:6F:C0:D0
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B19
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fFddhtV_FlYUhu4rB2uNaG5vwNA.roa
Signing time: Sun 07 Feb 2021 11:47:27 +0000
ROA not before: Sun 07 Feb 2021 11:47:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17421
IP address blocks: 111.70.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2841 (0xb19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:47:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7C575D86D57F16561486EE2B076B8D686E6FC0D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:81:03:e3:66:33:be:56:91:7d:c1:ab:a4:da:
b7:7b:fe:3c:86:f8:7c:06:e0:c0:fb:29:69:25:bb:
5f:86:93:7b:20:3d:2e:4b:0d:7d:c2:39:ed:f6:7d:
c9:15:52:41:99:9a:3c:be:fe:32:ce:10:51:48:56:
7e:2a:c9:00:9f:15:59:82:2c:13:6a:88:87:4e:13:
e6:69:99:93:a0:be:9a:19:17:8a:ac:5c:b6:00:9d:
71:14:78:1b:c2:62:ac:c5:3a:be:8a:45:80:47:ce:
26:bb:35:0e:81:ec:a0:d5:ca:a2:98:a7:64:98:b9:
68:f6:1f:9d:ab:b5:24:ae:c6:00:f7:f2:2b:52:7d:
5f:7d:1b:8a:65:f4:07:b8:b2:90:ad:f1:6c:fa:5c:
33:15:ae:1e:da:fd:4a:54:63:f3:a9:e1:ab:b6:40:
0a:c9:98:56:d2:92:df:c4:ea:e4:76:0b:9d:39:a2:
3a:6f:0c:15:08:7f:c5:67:0e:a0:46:38:68:9e:60:
86:77:57:dc:57:e8:bc:34:46:55:1c:6f:53:ba:ed:
a8:06:e1:a7:cc:35:73:97:96:d0:fa:52:98:b3:96:
ef:00:68:e0:dd:d5:a5:8c:dc:39:f3:0d:1e:ff:63:
07:4f:da:ca:8b:d4:0a:ef:82:96:31:43:24:4f:70:
73:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:57:5D:86:D5:7F:16:56:14:86:EE:2B:07:6B:8D:68:6E:6F:C0:D0
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fFddhtV_FlYUhu4rB2uNaG5vwNA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.70.0.0/15
Signature Algorithm: sha256WithRSAEncryption
5c:d3:41:53:e5:38:f6:77:89:4f:3e:d9:d9:74:1d:33:cc:06:
13:c6:0f:c3:5d:2b:b5:d6:38:65:e6:e3:10:74:89:5f:a7:f5:
76:ee:ac:c5:8c:30:e0:c9:f7:39:0f:58:bb:3e:c7:57:0e:33:
09:9d:fa:21:7c:94:38:99:89:0b:78:cb:9b:70:83:68:89:62:
06:4a:7f:75:a9:d9:6a:fc:86:eb:8d:e0:a1:ca:9c:41:b1:54:
36:87:84:10:a9:67:4e:fc:2d:7a:1f:a6:a0:8b:4f:d4:29:51:
79:6a:cd:9e:06:23:18:29:f5:6c:16:06:c6:7d:4a:21:ed:62:
6b:8f:c5:35:e4:02:43:81:11:b1:54:5d:f8:3f:e7:6d:08:33:
5d:8c:c5:4b:fa:a8:16:61:b8:3a:a5:07:d7:09:c8:d3:43:de:
b4:8e:ac:1a:cb:33:24:b5:9b:55:91:8b:3e:73:8f:4d:c7:db:
c9:e8:dd:35:25:d2:4b:dd:a3:54:9a:72:e3:78:87:ab:d1:a2:
32:62:1d:e3:44:de:56:36:59:fa:c9:8f:79:bb:77:2c:57:7e:
d6:c5:6b:a1:ff:47:fd:d3:ab:2d:27:c0:b6:51:02:bb:9c:e6:
fa:ac:6b:04:a5:ee:12:d8:3c:94:fb:1e:46:6b:5b:15:66:26:
af:4b:cd:c3
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCxkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTAyMDcx
MTQ3MjdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDdDNTc1RDg2RDU3RjE2
NTYxNDg2RUUyQjA3NkI4RDY4NkU2RkMwRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxgQPjZjO+VpF9wauk2rd7/jyG+HwG4MD7KWklu1+Gk3sgPS5L
DX3COe32fckVUkGZmjy+/jLOEFFIVn4qyQCfFVmCLBNqiIdOE+ZpmZOgvpoZF4qs
XLYAnXEUeBvCYqzFOr6KRYBHzia7NQ6B7KDVyqKYp2SYuWj2H52rtSSuxgD38itS
fV99G4pl9Ae4spCt8Wz6XDMVrh7a/UpUY/Op4au2QArJmFbSkt/E6uR2C505ojpv
DBUIf8VnDqBGOGieYIZ3V9xX6Lw0RlUcb1O67agG4afMNXOXltD6Upizlu8AaODd
1aWM3DnzDR7/YwdP2sqL1ArvgpYxQyRPcHNTAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUfFddhtV/FlYUhu4rB2uNaG5vwNAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9mRmRkaHRWX0ZsWVVodTRyQjJ1
TmFHNXZ3TkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBb0Yw
DQYJKoZIhvcNAQELBQADggEBAFzTQVPlOPZ3iU8+2dl0HTPMBhPGD8NdK7XWOGXm
4xB0iV+n9XburMWMMODJ9zkPWLs+x1cOMwmd+iF8lDiZiQt4y5twg2iJYgZKf3Wp
2Wr8huuN4KHKnEGxVDaHhBCpZ078LXofpqCLT9QpUXlqzZ4GIxgp9WwWBsZ9SiHt
YmuPxTXkAkOBEbFUXfg/520IM12MxUv6qBZhuDqlB9cJyNND3rSOrBrLMyS1m1WR
iz5zj03H28no3TUl0kvdo1SacuN4h6vRojJiHeNE3lY2WfrJj3m7dyxXftbFa6H/
R/3Tqy0nwLZRAruc5vqsawSl7hLYPJT7HkZrWxVmJq9LzcM=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:40 2025 by rpki-client