Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/lXg9RFJuXiM6SfLRLWtvy2oECdI.roa
File: lXg9RFJuXiM6SfLRLWtvy2oECdI.roa (raw, json)
Hash identifier: scJwiTjEHEq5Wvy3PmU2qY7TxxHedbVlRXIk7nIj52Y=
Subject key identifier: 95:78:3D:44:52:6E:5E:23:3A:49:F2:D1:2D:6B:6F:CB:6A:04:09:D2
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C33
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lXg9RFJuXiM6SfLRLWtvy2oECdI.roa
Signing time: Wed 29 Sep 2021 02:51:00 +0000
ROA not before: Wed 29 Sep 2021 02:51:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 36.224.0.0/12 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3123 (0xc33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=95783D44526E5E233A49F2D12D6B6FCB6A0409D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:e7:b8:2a:f6:72:44:f2:3a:45:d1:5d:96:19:
99:d7:7c:d1:a8:6f:22:7a:f0:aa:54:e3:62:52:e2:
a4:b2:c5:b9:55:1b:a6:03:6d:e3:ee:7b:db:33:ae:
ef:83:1c:e7:bb:6b:49:60:85:51:b1:72:03:06:37:
fb:b0:f3:0c:3a:62:b3:94:44:2e:4f:f1:7e:c0:cc:
f9:1d:81:c5:d8:16:76:b2:a5:2f:90:24:6d:fd:4a:
3a:03:6e:77:22:a4:73:4a:f1:fb:bb:de:c8:24:d2:
99:68:e2:2a:42:31:39:2a:30:11:94:18:ee:ed:e5:
6b:e2:4b:1a:b6:8a:30:18:2c:84:aa:a8:ce:ab:fd:
7e:5a:15:ae:8c:92:c5:d9:92:ad:17:51:94:53:80:
3b:4a:eb:c5:c1:59:6c:f8:e0:ed:8f:9d:55:d9:a4:
9e:d9:48:37:95:ee:81:7d:29:5f:e4:35:56:72:49:
e6:fb:88:0d:8b:c6:65:d3:6d:41:b6:61:11:6b:68:
85:b7:a4:e8:73:b1:c9:46:f8:bd:f4:74:db:f9:fc:
f4:db:87:20:71:c0:62:a3:0e:89:77:f9:ae:b5:e2:
d1:4e:9d:b2:24:44:c6:fd:16:01:64:71:a4:c7:3e:
d4:41:95:67:ae:f1:7c:47:c2:a3:9c:d7:11:5f:b1:
c1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:78:3D:44:52:6E:5E:23:3A:49:F2:D1:2D:6B:6F:CB:6A:04:09:D2
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lXg9RFJuXiM6SfLRLWtvy2oECdI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.224.0.0/12
Signature Algorithm: sha256WithRSAEncryption
74:42:1f:bb:ed:49:92:0a:18:c0:dc:19:ce:b8:f1:a5:ca:19:
8c:bc:0c:a9:63:a2:d8:20:5c:8c:29:c8:cc:33:20:db:f7:a9:
79:8f:c3:66:1e:b5:3a:1e:22:f5:02:0c:cc:35:fc:d9:c5:54:
d2:1e:19:93:d3:ae:09:2c:a5:06:1a:2f:25:cc:37:3f:24:97:
32:1c:ba:7f:e2:26:3b:42:c6:52:3e:1f:c5:aa:70:fb:58:23:
d5:70:d6:92:25:86:e5:93:63:cc:bd:9f:82:73:34:c0:e8:32:
e4:0b:1f:bf:a1:fe:bf:35:d4:16:b8:47:5a:ca:ca:bd:74:db:
96:68:17:72:aa:1c:55:73:df:b7:e0:f0:8c:41:f2:44:6d:6e:
56:41:a9:cb:ba:af:79:74:a2:6a:d4:04:b7:5e:e8:82:37:5d:
7d:45:10:1d:65:95:ab:9d:21:cb:b5:34:ca:8e:17:fe:49:fb:
0f:48:ec:33:90:81:fd:a4:d6:83:d5:32:a6:9f:80:53:b2:2e:
35:b6:dc:ac:cc:78:ae:d2:c1:d5:ee:4e:b4:74:5b:2c:5d:18:
df:dd:fe:46:df:6c:ed:03:9e:07:79:dd:55:6c:84:e9:d1:b2:
74:74:f6:aa:1b:a2:1f:b5:9d:d7:66:90:de:06:cb:44:f8:01:
aa:85:18:9c
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDDMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUxMDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDk1NzgzRDQ0NTI2RTVF
MjMzQTQ5RjJEMTJENkI2RkNCNkEwNDA5RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDx57gq9nJE8jpF0V2WGZnXfNGobyJ68KpU42JS4qSyxblVG6YD
bePue9szru+DHOe7a0lghVGxcgMGN/uw8ww6YrOURC5P8X7AzPkdgcXYFnaypS+Q
JG39SjoDbncipHNK8fu73sgk0plo4ipCMTkqMBGUGO7t5WviSxq2ijAYLISqqM6r
/X5aFa6MksXZkq0XUZRTgDtK68XBWWz44O2PnVXZpJ7ZSDeV7oF9KV/kNVZySeb7
iA2LxmXTbUG2YRFraIW3pOhzsclG+L30dNv5/PTbhyBxwGKjDol3+a614tFOnbIk
RMb9FgFkcaTHPtRBlWeu8XxHwqOc1xFfscEDAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUlXg9RFJuXiM6SfLRLWtvy2oECdIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9sWGc5UkZKdVhpTTZTZkxSTFd0
dnkyb0VDZEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEJOAw
DQYJKoZIhvcNAQELBQADggEBAHRCH7vtSZIKGMDcGc648aXKGYy8DKljotggXIwp
yMwzINv3qXmPw2YetToeIvUCDMw1/NnFVNIeGZPTrgkspQYaLyXMNz8klzIcun/i
JjtCxlI+H8WqcPtYI9Vw1pIlhuWTY8y9n4JzNMDoMuQLH7+h/r811Ba4R1rKyr10
25ZoF3KqHFVz37fg8IxB8kRtblZBqcu6r3l0omrUBLde6II3XX1FEB1llaudIcu1
NMqOF/5J+w9I7DOQgf2k1oPVMqafgFOyLjW23KzMeK7SwdXuTrR0WyxdGN/d/kbf
bO0Dngd53VVshOnRsnR09qoboh+1nddmkN4Gy0T4AaqFGJw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org