Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/hPkKGEw6MEgG1juELziqhEd5TEE.roa
File: hPkKGEw6MEgG1juELziqhEd5TEE.roa (raw, json)
Hash identifier: 3B76S2cdAWKp0GDVzHtPTSJJrgBUL677QNGT+OfnSBI=
Subject key identifier: 84:F9:0A:18:4C:3A:30:48:06:D6:3B:84:2F:38:AA:84:47:79:4C:41
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hPkKGEw6MEgG1juELziqhEd5TEE.roa
Signing time: Thu 15 Sep 2022 02:48:40 +0000
ROA not before: Thu 15 Sep 2022 02:48:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 1.34.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=84F90A184C3A304806D63B842F38AA8447794C41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:28:6e:3f:12:a4:7c:d9:9f:1f:87:2a:99:fd:
77:3f:d8:1f:d0:45:7c:c9:17:6b:fb:92:8b:fd:89:
05:14:88:0c:48:af:3c:86:a1:bf:43:b6:60:78:5a:
31:db:54:80:e9:f4:a0:33:df:55:b0:16:9d:74:b9:
17:49:55:20:e2:35:1b:f3:93:38:59:88:db:da:3d:
8d:94:6f:d2:17:4a:93:c8:3a:0c:d6:66:c4:a4:56:
62:67:2e:7f:ab:06:cb:12:88:0b:ab:80:5e:ed:d5:
64:8e:44:4e:c5:b5:5a:f0:a5:ad:db:19:1f:59:3e:
dd:fb:bc:65:d5:e5:36:9d:1e:37:a0:e4:8f:5b:60:
cb:e4:d9:ed:47:53:57:36:d7:5a:c9:bf:67:09:1d:
66:e6:ab:e1:1f:20:69:02:44:aa:02:18:5b:15:43:
02:d9:fa:8e:3d:34:2b:e3:7c:6d:09:35:10:c3:52:
6a:93:91:cb:68:48:01:cd:49:3b:56:18:9e:20:e4:
6e:9f:21:fd:45:1c:96:f8:9c:d8:49:89:9f:c8:5e:
42:a8:d5:65:c4:4b:26:d3:cc:31:a8:25:17:56:d0:
70:b9:a5:ef:22:53:e7:83:1e:63:aa:20:15:c8:ac:
1f:f1:31:43:77:60:e9:62:28:a9:e4:c2:dc:90:c5:
5b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:F9:0A:18:4C:3A:30:48:06:D6:3B:84:2F:38:AA:84:47:79:4C:41
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hPkKGEw6MEgG1juELziqhEd5TEE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
1.34.0.0/15
Signature Algorithm: sha256WithRSAEncryption
bd:60:6a:30:8c:3b:85:86:c7:23:66:c2:0a:aa:58:57:87:0e:
79:b2:b5:31:8f:6d:8d:6d:92:50:72:cf:cf:03:e1:9d:a6:94:
22:da:fe:11:07:d4:6f:66:dd:ed:ae:08:6f:2a:34:f6:18:91:
af:06:68:a3:3a:d2:f8:89:43:b8:e3:73:5d:89:3b:ea:e2:21:
d5:b7:38:63:97:f7:e9:0e:18:90:94:41:65:ea:72:7c:b6:8b:
91:78:b3:76:09:97:52:de:c2:c5:4d:0e:3e:f6:a5:2d:10:39:
dc:97:99:6e:4c:94:15:81:87:fb:f3:15:12:05:b7:3c:19:a0:
b9:79:70:03:34:8c:1d:f6:72:9e:67:c4:62:73:be:80:5b:e4:
3a:19:8f:f1:27:da:b9:be:36:c6:d7:3f:08:06:35:1f:2d:02:
86:f4:a4:7f:2a:db:f7:9b:45:41:9f:5b:fb:f9:b8:3a:71:d6:
9c:ec:de:eb:3d:f0:f7:d4:e3:a8:c4:0a:24:b4:af:d7:80:5b:
59:d2:c5:2e:52:3e:96:2d:5e:5d:17:5d:9d:a7:be:98:7a:29:
a6:3b:b5:fc:8b:85:c9:68:ed:92:f6:4b:16:9c:67:cf:b4:e1:
30:f9:93:ab:67:95:49:73:d7:9e:ce:7b:2e:66:ae:c4:fb:29:
7c:7e:fb:7b
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4NDBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg0RjkwQTE4NEMzQTMw
NDgwNkQ2M0I4NDJGMzhBQTg0NDc3OTRDNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDlKG4/EqR82Z8fhyqZ/Xc/2B/QRXzJF2v7kov9iQUUiAxIrzyG
ob9DtmB4WjHbVIDp9KAz31WwFp10uRdJVSDiNRvzkzhZiNvaPY2Ub9IXSpPIOgzW
ZsSkVmJnLn+rBssSiAurgF7t1WSORE7FtVrwpa3bGR9ZPt37vGXV5TadHjeg5I9b
YMvk2e1HU1c211rJv2cJHWbmq+EfIGkCRKoCGFsVQwLZ+o49NCvjfG0JNRDDUmqT
kctoSAHNSTtWGJ4g5G6fIf1FHJb4nNhJiZ/IXkKo1WXESybTzDGoJRdW0HC5pe8i
U+eDHmOqIBXIrB/xMUN3YOliKKnkwtyQxVupAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUhPkKGEw6MEgG1juELziqhEd5TEEwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9oUGtLR0V3Nk1FZ0cxanVFTHpp
cWhFZDVURUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBASIw
DQYJKoZIhvcNAQELBQADggEBAL1gajCMO4WGxyNmwgqqWFeHDnmytTGPbY1tklBy
z88D4Z2mlCLa/hEH1G9m3e2uCG8qNPYYka8GaKM60viJQ7jjc12JO+riIdW3OGOX
9+kOGJCUQWXqcny2i5F4s3YJl1LewsVNDj72pS0QOdyXmW5MlBWBh/vzFRIFtzwZ
oLl5cAM0jB32cp5nxGJzvoBb5DoZj/En2rm+NsbXPwgGNR8tAob0pH8q2/ebRUGf
W/v5uDpx1pzs3us98PfU46jECiS0r9eAW1nSxS5SPpYtXl0XXZ2nvph6KaY7tfyL
hclo7ZL2SxacZ8+04TD5k6tnlUlz157Oey5mrsT7KXx++3s=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org