Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/iW9sZksUBNDRJheiuawHEiBvh_I.roa
File: iW9sZksUBNDRJheiuawHEiBvh_I.roa (raw, json)
Hash identifier: HAUNRnVvNH351P2NOXBg5XZ5SCtTFgcgrR26tc24LVA=
Subject key identifier: 89:6F:6C:66:4B:14:04:D0:D1:26:17:A2:B9:AC:07:12:20:6F:87:F2
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/iW9sZksUBNDRJheiuawHEiBvh_I.roa
Signing time: Thu 15 Sep 2022 02:48:19 +0000
ROA not before: Thu 15 Sep 2022 02:48:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 2001:b000::/21 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=896F6C664B1404D0D12617A2B9AC0712206F87F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:28:b4:f9:58:9b:7e:1f:80:e5:75:05:c1:63:
83:08:48:9b:7f:46:ef:b1:7a:44:e5:5e:48:4f:86:
06:a9:96:c2:89:1b:35:b8:65:0d:6e:e6:58:da:fb:
64:17:80:fe:06:93:fc:6c:ef:62:d7:c0:f2:ad:ee:
c1:8a:df:6b:f3:2c:40:d6:6e:4d:71:86:a2:30:ed:
28:ad:da:19:ca:c0:b6:fd:da:6b:66:f6:14:90:e1:
e9:b7:0a:8b:e8:40:39:19:5b:3a:20:be:4c:a2:54:
bd:a4:47:48:7a:6e:cb:85:e4:94:8c:96:2b:e4:33:
06:a2:84:01:bd:c0:42:1a:fc:1a:f4:56:70:e5:60:
f1:b8:2b:95:80:c4:34:bc:18:8a:1a:66:a2:69:10:
67:9c:24:37:01:fe:8f:1f:73:ed:c7:1b:b0:c3:e8:
73:15:70:db:23:50:08:a1:49:23:4a:64:2f:b6:f7:
7d:f1:41:02:fe:e2:81:93:fc:d0:2c:6e:06:ae:06:
88:15:26:50:84:96:b9:11:91:90:85:34:1c:fc:43:
5c:58:36:4c:7e:0a:d7:be:6d:62:b9:ce:83:f6:de:
39:7e:2a:dd:58:4c:61:fe:d6:cb:7e:95:29:a8:82:
0b:db:fe:21:a9:30:14:4e:4b:d8:96:f9:18:fb:a5:
42:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6F:6C:66:4B:14:04:D0:D1:26:17:A2:B9:AC:07:12:20:6F:87:F2
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/iW9sZksUBNDRJheiuawHEiBvh_I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000::/21
Signature Algorithm: sha256WithRSAEncryption
69:70:1d:26:ed:c4:d8:79:a3:46:79:36:27:7b:1a:15:5e:6f:
db:20:a9:3f:6c:0a:9c:7e:95:ed:98:0f:69:c7:9e:21:bc:16:
05:0f:0f:21:d0:32:19:b4:50:80:43:a3:70:45:a0:02:fe:ac:
d2:8d:79:51:e1:3f:ff:13:39:27:00:37:c0:d1:65:16:f4:e1:
10:ff:d2:0b:7f:bc:ac:9a:93:6c:61:a2:3d:bc:0c:4c:b7:d7:
96:72:c4:1a:f8:5b:39:e6:b9:d0:16:24:ff:35:dd:05:aa:77:
d4:e6:41:7a:36:d6:25:54:ba:4f:73:3b:73:24:97:9d:7f:98:
9c:9d:04:da:4d:73:9d:85:28:87:b1:4e:b3:fa:b5:30:fb:b2:
5d:59:c8:14:cc:32:6b:ac:be:aa:a0:ed:2d:a2:66:9e:fc:6f:
d2:4f:9b:d7:72:08:bb:ae:b6:05:41:87:79:c7:bd:19:b3:96:
bd:2d:bf:80:71:ca:3a:aa:3d:50:a0:d3:9f:6f:92:a1:b9:a7:
21:fc:78:6e:32:ba:1f:6c:20:97:38:2b:f8:22:6d:6b:0b:df:
e6:02:56:e7:d7:0e:d7:34:90:fd:e8:3c:19:d7:6a:4f:78:23:
34:5a:0f:af:02:dd:7d:ab:5e:06:99:b1:ac:3b:f0:3a:94:f1:
1b:d9:ca:70
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MTlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg5NkY2QzY2NEIxNDA0
RDBEMTI2MTdBMkI5QUMwNzEyMjA2Rjg3RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyKLT5WJt+H4DldQXBY4MISJt/Ru+xekTlXkhPhgaplsKJGzW4
ZQ1u5lja+2QXgP4Gk/xs72LXwPKt7sGK32vzLEDWbk1xhqIw7Sit2hnKwLb92mtm
9hSQ4em3CovoQDkZWzogvkyiVL2kR0h6bsuF5JSMlivkMwaihAG9wEIa/Br0VnDl
YPG4K5WAxDS8GIoaZqJpEGecJDcB/o8fc+3HG7DD6HMVcNsjUAihSSNKZC+2933x
QQL+4oGT/NAsbgauBogVJlCElrkRkZCFNBz8Q1xYNkx+Cte+bWK5zoP23jl+Kt1Y
TGH+1st+lSmoggvb/iGpMBROS9iW+Rj7pULFAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUiW9sZksUBNDRJheiuawHEiBvh/IwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9pVzlzWmtzVUJORFJKaGVpdWF3
SEVpQnZoX0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAAjAGAwQDIAGw
MA0GCSqGSIb3DQEBCwUAA4IBAQBpcB0m7cTYeaNGeTYnexoVXm/bIKk/bAqcfpXt
mA9px54hvBYFDw8h0DIZtFCAQ6NwRaAC/qzSjXlR4T//EzknADfA0WUW9OEQ/9IL
f7ysmpNsYaI9vAxMt9eWcsQa+Fs55rnQFiT/Nd0FqnfU5kF6NtYlVLpPcztzJJed
f5icnQTaTXOdhSiHsU6z+rUw+7JdWcgUzDJrrL6qoO0tomae/G/ST5vXcgi7rrYF
QYd5x70Zs5a9Lb+Acco6qj1QoNOfb5Khuach/HhuMrofbCCXOCv4Im1rC9/mAlbn
1w7XNJD96DwZ12pPeCM0Wg+vAt19q14GmbGsO/A6lPEb2cpw
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org