Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tWOImEHtkcINkkYyavWtaFcu6I0.roa
File: tWOImEHtkcINkkYyavWtaFcu6I0.roa (raw, json)
Hash identifier: vrVGv6HS1V1rb+CDgz/p2j9Szv1Igo1J5VDd43cKbQI=
Subject key identifier: B5:63:88:98:41:ED:91:C2:0D:92:46:32:6A:F5:AD:68:57:2E:E8:8D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tWOImEHtkcINkkYyavWtaFcu6I0.roa
Signing time: Thu 15 Sep 2022 02:48:35 +0000
ROA not before: Thu 15 Sep 2022 02:48:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131661
IP address blocks: 210.62.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B563889841ED91C20D9246326AF5AD68572EE88D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:01:86:13:86:5d:ea:51:96:1f:5a:91:f0:b5:
eb:a7:e1:93:bd:e4:fa:12:ed:6f:f8:6b:d6:34:e1:
59:d0:f8:4a:ff:f3:8c:21:3e:47:41:7c:c8:6b:a6:
77:dd:64:68:6e:6a:7c:a2:e0:5c:5e:52:cc:16:f1:
97:9b:a4:3b:12:59:89:52:57:44:4a:a4:04:32:ae:
bb:fa:b5:e4:e0:da:5f:1d:b3:15:9d:26:ad:41:7f:
9d:09:c1:15:75:b7:20:26:a8:fa:68:b8:21:38:46:
9b:e6:31:b2:4f:eb:ce:0a:b6:aa:b1:cf:3c:6a:7c:
3b:24:99:9d:84:f2:ff:7f:7f:d9:dc:9b:76:a7:9d:
1e:d8:a6:f7:b9:3b:ce:27:cc:6f:e1:9b:cc:04:78:
27:9f:46:d9:48:f8:94:eb:dc:3a:53:1f:39:a5:5b:
2f:85:21:28:6f:92:79:8f:0f:b6:d3:ca:30:f1:ab:
f0:0a:58:63:1e:ac:f7:fa:b3:a9:98:cb:8e:da:73:
25:90:ba:85:4b:ce:83:91:1d:c0:71:81:e9:0e:41:
05:41:5c:4e:3d:a8:1f:ca:94:26:91:7f:1f:d6:dd:
25:50:32:aa:4a:c6:72:cf:1e:66:bd:90:9e:30:c1:
a2:9f:18:e5:6d:eb:1c:27:fd:5c:f4:94:b2:7e:89:
fb:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:63:88:98:41:ED:91:C2:0D:92:46:32:6A:F5:AD:68:57:2E:E8:8D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tWOImEHtkcINkkYyavWtaFcu6I0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.250.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:70:fe:33:b2:f2:fc:be:8a:15:0f:be:61:35:50:56:97:9f:
15:79:57:b6:f3:9a:0e:43:9c:d4:5d:27:c4:50:d7:66:c0:6b:
40:9f:ef:34:87:1e:43:9e:40:b9:f5:29:46:aa:16:e6:e2:3f:
0a:e6:aa:21:c6:c6:48:65:c2:3c:e1:81:9c:61:ec:9d:d5:b4:
9e:58:de:f4:4c:37:e1:73:a5:71:92:f4:58:62:3e:00:54:6e:
3b:c7:c9:bc:a6:19:55:ac:7b:92:5b:bc:65:02:53:c4:d3:f1:
87:8a:b5:60:ee:fe:b4:8e:e9:c1:30:cc:e8:50:23:72:a9:df:
97:41:a0:4e:40:3c:7e:f2:f1:e6:e7:8d:0f:cb:81:34:49:b7:
9d:d3:11:f9:c6:2f:d1:43:9b:69:96:cc:84:bb:c8:13:9b:b0:
8c:2a:e7:6b:f0:9d:b0:c4:d6:f2:f6:c6:0d:bd:bd:ad:2b:cf:
13:a8:51:d5:f8:fc:07:07:b9:a8:e0:c8:79:8d:48:3d:0a:9f:
58:f2:6d:94:01:02:85:de:e6:55:ed:de:54:e8:95:5b:69:7f:
2b:68:11:56:a6:b3:fa:2b:7b:c2:93:1c:91:5e:a7:f8:f2:10:
38:36:88:b3:75:3d:58:e0:b2:b7:37:ee:de:f7:8a:65:94:9a:
2d:db:a1:4a
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MzVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEI1NjM4ODk4NDFFRDkx
QzIwRDkyNDYzMjZBRjVBRDY4NTcyRUU4OEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDgAYYThl3qUZYfWpHwteun4ZO95PoS7W/4a9Y04VnQ+Er/84wh
PkdBfMhrpnfdZGhuanyi4FxeUswW8ZebpDsSWYlSV0RKpAQyrrv6teTg2l8dsxWd
Jq1Bf50JwRV1tyAmqPpouCE4RpvmMbJP684KtqqxzzxqfDskmZ2E8v9/f9ncm3an
nR7Ypve5O84nzG/hm8wEeCefRtlI+JTr3DpTHzmlWy+FIShvknmPD7bTyjDxq/AK
WGMerPf6s6mYy47acyWQuoVLzoORHcBxgekOQQVBXE49qB/KlCaRfx/W3SVQMqpK
xnLPHma9kJ4wwaKfGOVt6xwn/Vz0lLJ+iftLAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUtWOImEHtkcINkkYyavWtaFcu6I0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC90V09JbUVIdGtjSU5ra1l5YXZX
dGFGY3U2STAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j76
MA0GCSqGSIb3DQEBCwUAA4IBAQDTcP4zsvL8vooVD75hNVBWl58VeVe285oOQ5zU
XSfEUNdmwGtAn+80hx5DnkC59SlGqhbm4j8K5qohxsZIZcI84YGcYeyd1bSeWN70
TDfhc6VxkvRYYj4AVG47x8m8phlVrHuSW7xlAlPE0/GHirVg7v60junBMMzoUCNy
qd+XQaBOQDx+8vHm540Py4E0Sbed0xH5xi/RQ5tplsyEu8gTm7CMKudr8J2wxNby
9sYNvb2tK88TqFHV+PwHB7mo4Mh5jUg9Cp9Y8m2UAQKF3uZV7d5U6JVbaX8raBFW
prP6K3vCkxyRXqf48hA4NoizdT1Y4LK3N+7e94pllJot26FK
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org