Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/hjs8D0mPOy9x6jXlA_6-TnefRFQ.roa
File: hjs8D0mPOy9x6jXlA_6-TnefRFQ.roa (raw, json)
Hash identifier: TfqPDqNUqI5A/40e8UgetG6KM2/yfUVR89GWga3LWrM=
Subject key identifier: 86:3B:3C:0F:49:8F:3B:2F:71:EA:35:E5:03:FE:BE:4E:77:9F:44:54
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hjs8D0mPOy9x6jXlA_6-TnefRFQ.roa
Signing time: Thu 15 Sep 2022 02:48:03 +0000
ROA not before: Thu 15 Sep 2022 02:48:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 36040
IP address blocks: 2001:b032:c0ff:2::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=863B3C0F498F3B2F71EA35E503FEBE4E779F4454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:39:08:a4:1a:6a:39:3b:db:bd:d1:67:c6:a4:
f4:49:cc:21:50:c8:7b:72:e1:7b:34:0d:02:03:08:
c7:8d:42:00:fd:b0:40:c5:b1:18:38:d0:47:ac:4f:
00:4b:10:5f:b5:43:4f:72:5e:95:7e:ea:d8:53:63:
f5:ec:51:93:30:52:db:90:78:b6:af:d2:f0:47:6e:
8b:23:05:bc:2d:fd:12:8c:59:c7:6a:56:68:50:9a:
0f:ef:72:24:7b:b9:5f:40:4b:39:56:04:58:e7:8f:
89:37:15:9d:1d:fa:cd:35:f3:e5:6d:b4:9c:9b:73:
c8:59:3a:64:45:06:00:09:cd:fb:80:67:72:25:15:
87:31:c8:66:d7:65:51:c8:22:4f:04:dc:e7:85:c3:
a4:5e:d5:bf:7d:d9:05:0c:f3:b5:59:af:46:18:02:
be:5e:8b:b9:3f:f9:9e:86:54:95:9d:aa:fd:c7:4a:
ab:41:22:40:9d:3d:16:c6:ae:51:9b:de:a6:8d:7d:
a7:02:9a:1f:3c:76:cb:2c:fe:bc:c4:5f:eb:5b:9e:
00:6e:c1:a2:2e:69:68:6b:1c:6e:fc:6c:0e:77:45:
81:e3:f8:cf:ce:74:ed:92:61:3f:20:73:96:3e:95:
ff:1e:e4:7e:4c:e1:9d:bc:e8:44:4f:60:a1:cb:6e:
5b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:3B:3C:0F:49:8F:3B:2F:71:EA:35:E5:03:FE:BE:4E:77:9F:44:54
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hjs8D0mPOy9x6jXlA_6-TnefRFQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b032:c0ff:2::/64
Signature Algorithm: sha256WithRSAEncryption
57:b1:40:94:4e:93:3a:a5:28:97:7e:52:11:bd:c2:cc:97:f8:
0b:d5:27:c9:2d:74:a4:e4:40:97:d1:8e:48:50:67:c2:3a:f3:
4c:ba:7f:ad:a1:d1:7e:04:4d:6e:4c:99:0b:00:53:c6:99:c4:
65:21:e7:b7:02:1e:14:8a:da:36:5a:52:9e:14:83:4f:ce:22:
bc:7b:06:95:c0:0e:c7:a3:2b:0e:3a:64:bc:0b:3f:d3:d9:78:
4b:03:5b:2b:33:3d:db:72:82:a6:c1:85:c4:91:f0:40:5c:a3:
8c:3a:0e:cc:1c:fb:20:67:db:26:1b:be:12:6c:70:0d:a8:07:
72:26:df:9a:e5:91:5d:93:07:23:c2:3e:f1:6b:d4:23:f1:74:
86:b9:1a:01:2d:b5:f1:32:39:98:9b:f5:4c:18:65:bf:27:cd:
d5:95:a4:75:91:5a:61:56:cc:73:e0:24:44:bc:31:8a:5b:52:
64:fb:7a:84:21:b9:59:8c:b9:81:1b:9a:ab:f1:ad:a9:57:67:
c7:e4:d1:ba:b6:1e:82:c0:75:85:06:1c:57:a1:9f:60:1d:46:
49:04:ac:44:62:16:bc:b7:dd:6a:18:47:d3:5c:87:c5:ff:d9:
5a:ec:21:16:bb:c2:78:09:36:ed:fe:07:a4:40:97:2e:0d:9e:
47:45:d1:90
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg2M0IzQzBGNDk4RjNC
MkY3MUVBMzVFNTAzRkVCRTRFNzc5RjQ0NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDgOQikGmo5O9u90WfGpPRJzCFQyHty4Xs0DQIDCMeNQgD9sEDF
sRg40EesTwBLEF+1Q09yXpV+6thTY/XsUZMwUtuQeLav0vBHbosjBbwt/RKMWcdq
VmhQmg/vciR7uV9ASzlWBFjnj4k3FZ0d+s018+VttJybc8hZOmRFBgAJzfuAZ3Il
FYcxyGbXZVHIIk8E3OeFw6Re1b992QUM87VZr0YYAr5ei7k/+Z6GVJWdqv3HSqtB
IkCdPRbGrlGb3qaNfacCmh88dsss/rzEX+tbngBuwaIuaWhrHG78bA53RYHj+M/O
dO2SYT8gc5Y+lf8e5H5M4Z286ERPYKHLblvxAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUhjs8D0mPOy9x6jXlA/6+TnefRFQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9oanM4RDBtUE95OXg2alhsQV82
LVRuZWZSRlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAIAGw
MsD/AAIwDQYJKoZIhvcNAQELBQADggEBAFexQJROkzqlKJd+UhG9wsyX+AvVJ8kt
dKTkQJfRjkhQZ8I680y6f62h0X4ETW5MmQsAU8aZxGUh57cCHhSK2jZaUp4Ug0/O
Irx7BpXADsejKw46ZLwLP9PZeEsDWyszPdtygqbBhcSR8EBco4w6Dswc+yBn2yYb
vhJscA2oB3Im35rlkV2TByPCPvFr1CPxdIa5GgEttfEyOZib9UwYZb8nzdWVpHWR
WmFWzHPgJES8MYpbUmT7eoQhuVmMuYEbmqvxralXZ8fk0bq2HoLAdYUGHFehn2Ad
RkkErERiFry33WoYR9Nch8X/2VrsIRa7wngJNu3+B6RAly4NnkdF0ZA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org