Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/gh9k11_-4nVMkKgM5zE0Ap4csoQ.roa
File: gh9k11_-4nVMkKgM5zE0Ap4csoQ.roa (raw, json)
Hash identifier: b7enSxjDJDyOtVF1n32fBXVUvhm8/oQRV6C4Hl5At0A=
Subject key identifier: 82:1F:64:D7:5F:FE:E2:75:4C:90:A8:0C:E7:31:34:02:9E:1C:B2:84
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 09A9
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gh9k11_-4nVMkKgM5zE0Ap4csoQ.roa
Signing time: Mon 21 Dec 2020 07:27:21 +0000
ROA not before: Mon 21 Dec 2020 07:27:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131660
IP address blocks: 2001:b000:591::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2473 (0x9a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Dec 21 07:27:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=821F64D75FFEE2754C90A80CE73134029E1CB284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a0:ef:32:d1:75:dd:ac:3f:47:06:b7:ae:36:
1a:a4:c3:80:9d:24:b2:ce:2f:10:60:18:de:71:6e:
61:20:6e:23:80:75:1a:61:ea:74:52:d6:b0:7e:25:
1c:a5:6d:ac:f5:d1:41:bd:d2:1c:66:13:f7:4d:d5:
1a:c3:9b:35:02:a7:df:5e:f6:25:8b:cd:44:16:be:
ff:17:e6:b1:12:cd:5d:5a:f4:25:57:b4:61:83:97:
49:b6:2e:97:77:98:9b:e3:44:ef:c1:8a:f3:88:8d:
86:0b:9a:d4:66:64:9a:b4:51:33:48:43:b0:20:94:
fb:0a:c2:40:14:db:a1:85:85:cc:78:b0:dc:b2:35:
6a:56:5c:5e:df:54:0e:80:8f:2c:95:6c:48:d2:13:
d9:8b:94:19:26:35:10:45:1a:88:92:a8:78:85:07:
16:c7:b8:82:23:14:92:66:04:c5:dd:cc:e3:af:73:
ac:00:3f:70:f0:ae:f7:47:a9:f8:37:fa:ce:67:b2:
30:ea:12:3c:c9:4f:4c:b7:58:67:84:f6:e2:b1:1c:
1b:d5:c4:ed:54:06:02:fb:44:e4:47:0e:f3:42:33:
d9:d5:bc:18:3f:9b:97:5a:28:97:38:9a:d9:e5:0e:
6e:99:bb:81:ce:a0:aa:58:c5:c5:84:a1:63:63:29:
ca:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1F:64:D7:5F:FE:E2:75:4C:90:A8:0C:E7:31:34:02:9E:1C:B2:84
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gh9k11_-4nVMkKgM5zE0Ap4csoQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:591::/48
Signature Algorithm: sha256WithRSAEncryption
9e:f1:67:53:db:23:9c:fa:1e:1f:e8:a5:66:94:2e:ac:80:93:
7f:e7:6f:dc:63:42:9b:1c:16:58:e3:2b:51:0a:33:0a:a2:dd:
30:43:ec:93:e2:ec:0f:8a:be:37:67:c6:71:c3:4f:e2:8a:fd:
68:63:86:1c:2d:9f:dd:19:7e:29:8e:59:17:9b:63:10:80:90:
6a:ee:04:87:9a:01:35:60:7a:00:b1:15:f7:8b:60:95:57:cf:
d2:a1:98:f6:44:ff:46:42:ef:5b:8c:67:8b:27:b9:a0:49:ef:
f4:e5:c3:12:c8:79:9f:45:a4:6f:7e:19:55:1a:a9:1b:dc:d0:
62:76:da:9e:f2:74:66:b2:90:64:2a:5c:e7:80:29:de:d0:b9:
5f:19:8b:51:12:4a:5f:3f:f0:83:1a:de:84:e7:bd:17:cf:e8:
c9:6a:d1:2c:5b:3f:cb:d4:53:92:62:a5:3d:74:83:b0:32:97:
45:0b:3c:07:e9:31:fe:6a:27:c4:50:9c:a6:eb:72:1a:8c:22:
4c:a2:df:64:39:18:a9:48:52:6e:b4:6e:90:60:0a:50:48:29:
2b:b3:83:39:80:37:d2:07:0c:97:a0:33:1f:18:f7:4d:68:ef:
56:96:57:bc:09:06:8e:ec:34:56:3f:9e:cf:e7:ed:d0:32:26:
2b:db:e6:f8
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICCakwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMDEyMjEw
NzI3MjFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDgyMUY2NEQ3NUZGRUUy
NzU0QzkwQTgwQ0U3MzEzNDAyOUUxQ0IyODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqoO8y0XXdrD9HBreuNhqkw4CdJLLOLxBgGN5xbmEgbiOAdRph
6nRS1rB+JRylbaz10UG90hxmE/dN1RrDmzUCp99e9iWLzUQWvv8X5rESzV1a9CVX
tGGDl0m2Lpd3mJvjRO/BivOIjYYLmtRmZJq0UTNIQ7AglPsKwkAU26GFhcx4sNyy
NWpWXF7fVA6AjyyVbEjSE9mLlBkmNRBFGoiSqHiFBxbHuIIjFJJmBMXdzOOvc6wA
P3DwrvdHqfg3+s5nsjDqEjzJT0y3WGeE9uKxHBvVxO1UBgL7RORHDvNCM9nVvBg/
m5daKJc4mtnlDm6Zu4HOoKpYxcWEoWNjKcqDAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUgh9k11/+4nVMkKgM5zE0Ap4csoQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9naDlrMTFfLTRuVk1rS2dNNXpF
MEFwNGNzb1Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw
AAWRMA0GCSqGSIb3DQEBCwUAA4IBAQCe8WdT2yOc+h4f6KVmlC6sgJN/52/cY0Kb
HBZY4ytRCjMKot0wQ+yT4uwPir43Z8Zxw0/iiv1oY4YcLZ/dGX4pjlkXm2MQgJBq
7gSHmgE1YHoAsRX3i2CVV8/SoZj2RP9GQu9bjGeLJ7mgSe/05cMSyHmfRaRvfhlV
Gqkb3NBidtqe8nRmspBkKlzngCne0LlfGYtREkpfP/CDGt6E570Xz+jJatEsWz/L
1FOSYqU9dIOwMpdFCzwH6TH+aifEUJym63IajCJMot9kORipSFJutG6QYApQSCkr
s4M5gDfSBwyXoDMfGPdNaO9Wlle8CQaO7DRWP57P5+3QMiYr2+b4
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:55 2023 by rpki-client on console-ams.rpki-client.org