Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/wSUX9WC7JyXitfPqGo9n-8GCZLI.roa
File: wSUX9WC7JyXitfPqGo9n-8GCZLI.roa (raw, json)
Hash identifier: MwdrBFkTu5AMjpN8QrffCQ9+bbWklxNhMYdiGSLDPlQ=
Subject key identifier: C1:25:17:F5:60:BB:27:25:E2:B5:F3:EA:1A:8F:67:FB:C1:82:64:B2
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0BF4
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wSUX9WC7JyXitfPqGo9n-8GCZLI.roa
Signing time: Wed 29 Sep 2021 02:50:42 +0000
ROA not before: Wed 29 Sep 2021 02:50:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 54994
IP address blocks: 203.74.117.128/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3060 (0xbf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C12517F560BB2725E2B5F3EA1A8F67FBC18264B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e3:af:a7:1c:85:82:0e:e5:5d:bd:0c:a6:c2:
92:30:01:3c:fa:35:84:b4:f3:1d:71:2a:da:1a:35:
c1:fb:76:76:91:41:cb:05:2e:13:40:e0:df:66:8c:
3f:c3:2d:8d:ab:a0:2c:6c:b4:f5:57:cb:57:db:17:
2c:9c:50:09:7e:58:52:e7:70:da:c9:89:55:fd:a8:
1c:2e:aa:72:86:09:d1:16:99:4f:fc:1e:f4:ed:c2:
3e:75:80:d2:31:b7:f0:4a:52:e7:74:16:f9:68:d4:
51:9a:9b:10:28:ed:2b:44:cd:ad:e7:8c:94:e5:30:
88:9f:27:db:a1:e2:d7:db:21:f4:b0:0e:01:05:ad:
5d:08:a2:5c:65:6a:d1:11:8e:07:f7:c7:8e:c1:c9:
40:04:5e:bf:a0:bf:f4:e8:fa:7d:92:8f:1e:f0:e6:
ce:7c:4f:10:b7:5c:0a:65:14:fe:f0:b7:27:7f:a6:
51:ec:bd:c4:a9:ee:b7:2a:79:96:67:04:b1:54:63:
db:32:72:62:52:5a:cc:cf:1a:83:5e:3e:bc:73:9f:
38:d7:39:f4:7c:78:ad:e8:fd:3e:0f:0f:2b:89:27:
a4:8a:67:df:42:ec:f4:4c:4a:40:d4:a8:d0:2b:f2:
66:80:31:42:08:93:a3:db:96:1f:87:5b:72:39:f8:
31:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:25:17:F5:60:BB:27:25:E2:B5:F3:EA:1A:8F:67:FB:C1:82:64:B2
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wSUX9WC7JyXitfPqGo9n-8GCZLI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.117.128/27
Signature Algorithm: sha256WithRSAEncryption
25:15:6c:96:34:50:5b:f8:96:e4:bb:4d:be:eb:8c:fe:03:fe:
54:2c:fd:90:96:f1:88:5e:e1:90:ff:4f:d8:ee:51:62:9b:90:
66:cf:fb:0a:59:fe:fe:ee:a6:23:cc:1e:1a:30:34:42:9a:e5:
75:c2:08:81:ba:79:fa:49:b2:e4:52:6c:35:46:1a:25:cf:5b:
95:46:ab:09:a0:44:fc:05:2e:8e:f6:49:18:52:f3:a1:2b:b9:
4b:46:3f:e2:d2:45:61:a9:e8:a6:21:36:fd:d8:b1:bb:e9:8c:
33:1e:b9:6c:38:fb:21:29:38:3d:be:6d:f1:76:b9:88:f8:ec:
86:3d:62:6d:8e:05:96:70:9e:b4:9e:6f:a7:93:79:84:23:f3:
a4:42:10:22:40:6b:80:1f:de:9f:b7:58:0f:5a:89:72:5d:24:
ec:1f:18:d1:54:21:04:80:74:8b:5f:bb:c4:02:c3:e0:29:48:
25:b3:f5:99:1e:f9:19:05:e0:b4:9b:f7:32:55:25:cd:2b:6e:
58:a2:ac:87:1d:31:7a:4d:e3:a2:af:5d:7c:09:e2:06:16:98:
f3:c3:cd:17:98:66:85:95:76:54:ac:22:db:ee:12:38:ea:23:
f1:25:18:47:66:ad:67:79:b8:cb:b7:28:b8:79:20:f6:9f:1e:
1b:7e:ce:e2
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICC/QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUwNDJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEMxMjUxN0Y1NjBCQjI3
MjVFMkI1RjNFQTFBOEY2N0ZCQzE4MjY0QjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDS46+nHIWCDuVdvQymwpIwATz6NYS08x1xKtoaNcH7dnaRQcsF
LhNA4N9mjD/DLY2roCxstPVXy1fbFyycUAl+WFLncNrJiVX9qBwuqnKGCdEWmU/8
HvTtwj51gNIxt/BKUud0Fvlo1FGamxAo7StEza3njJTlMIifJ9uh4tfbIfSwDgEF
rV0IolxlatERjgf3x47ByUAEXr+gv/To+n2Sjx7w5s58TxC3XAplFP7wtyd/plHs
vcSp7rcqeZZnBLFUY9sycmJSWszPGoNePrxznzjXOfR8eK3o/T4PDyuJJ6SKZ99C
7PRMSkDUqNAr8maAMUIIk6Pblh+HW3I5+DENAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUwSUX9WC7JyXitfPqGo9n+8GCZLIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC93U1VYOVdDN0p5WGl0ZlBxR285
bi04R0NaTEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUFy0p1
gDANBgkqhkiG9w0BAQsFAAOCAQEAJRVsljRQW/iW5LtNvuuM/gP+VCz9kJbxiF7h
kP9P2O5RYpuQZs/7Cln+/u6mI8weGjA0QprldcIIgbp5+kmy5FJsNUYaJc9blUar
CaBE/AUujvZJGFLzoSu5S0Y/4tJFYanopiE2/dixu+mMMx65bDj7ISk4Pb5t8Xa5
iPjshj1ibY4FlnCetJ5vp5N5hCPzpEIQIkBrgB/en7dYD1qJcl0k7B8Y0VQhBIB0
i1+7xALD4ClIJbP1mR75GQXgtJv3MlUlzStuWKKshx0xek3joq9dfAniBhaY88PN
F5hmhZV2VKwi2+4SOOoj8SUYR2atZ3m4y7couHkg9p8eG37O4g==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:46:06 2025 by rpki-client