Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HLCATV/JoO0VKcLZkKgLPOgW52FYo_39Vg.roa
File: JoO0VKcLZkKgLPOgW52FYo_39Vg.roa (raw, json)
Hash identifier: ahAHatK6hazdKn0DP8uv9FaHBwKa1S3fJFhP8iKkUhU=
Subject key identifier: 26:83:B4:54:A7:0B:66:42:A0:2C:F3:A0:5B:9D:85:62:8F:F7:F5:58
Certificate issuer: /CN=28CB5CCFC90738D224CAEAC15E1C251000446BAA
Certificate serial: 09B7
Authority key identifier: 28:CB:5C:CF:C9:07:38:D2:24:CA:EA:C1:5E:1C:25:10:00:44:6B:AA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/JoO0VKcLZkKgLPOgW52FYo_39Vg.roa
Signing time: Tue 02 Aug 2022 07:16:45 +0000
ROA not before: Tue 02 Aug 2022 07:16:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 211.76.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2487 (0x9b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28CB5CCFC90738D224CAEAC15E1C251000446BAA
Validity
Not Before: Aug 2 07:16:45 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2683B454A70B6642A02CF3A05B9D85628FF7F558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d1:df:ef:03:a6:e5:23:ca:5c:49:00:9a:db:
04:fe:f0:c5:30:48:35:7c:01:7d:da:10:d5:2d:44:
cf:ea:5d:7f:74:aa:b7:d5:87:a2:f5:41:02:0a:2c:
23:e7:2b:f6:2e:13:ae:2b:da:67:97:86:2e:fb:a1:
f3:8a:00:5a:50:c3:2f:48:05:95:d5:64:a5:68:56:
21:c1:de:c4:a5:c3:eb:de:31:e5:b2:28:13:06:ee:
ea:f4:db:05:f9:df:e0:8f:9c:4f:9c:55:a1:0c:d0:
a7:18:92:8d:e9:b4:a9:87:a0:be:fe:8d:7d:6d:3b:
ed:04:ab:ea:66:be:5e:95:f7:bc:66:27:60:e3:b9:
67:e7:f7:0b:5e:13:0e:41:3e:25:1a:d9:78:80:0c:
d8:d8:6b:bc:c7:7f:2b:bd:16:d8:ca:68:da:72:b8:
c9:c7:4f:b7:9c:f5:47:6d:9e:c8:51:23:2b:81:48:
50:6f:d0:45:b2:5c:8a:6b:36:9b:84:fa:62:e4:a9:
e3:41:10:96:c7:8f:01:7a:f1:ab:d8:bb:dc:90:b4:
3c:0e:5e:e0:bb:63:d0:66:6d:ec:53:f7:31:02:09:
ad:76:13:b7:b8:e0:e0:53:b9:de:dd:07:83:9c:fc:
b2:f9:94:c4:8c:cf:52:9e:97:f9:51:95:e7:5b:2d:
e9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:83:B4:54:A7:0B:66:42:A0:2C:F3:A0:5B:9D:85:62:8F:F7:F5:58
X509v3 Authority Key Identifier:
keyid:28:CB:5C:CF:C9:07:38:D2:24:CA:EA:C1:5E:1C:25:10:00:44:6B:AA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/KMtcz8kHONIkyurBXhwlEABEa6o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/JoO0VKcLZkKgLPOgW52FYo_39Vg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.80.0/20
Signature Algorithm: sha256WithRSAEncryption
4f:67:06:f0:d7:c7:37:1e:bd:77:5f:67:f7:96:ce:0b:18:59:
96:3f:c1:ed:59:1c:a6:8f:43:91:21:fe:45:aa:76:ae:23:6c:
d9:4d:66:96:de:89:97:d0:17:f0:db:f1:e3:6d:8a:a6:fb:86:
0f:ca:a0:62:07:95:a1:92:5c:d2:2a:55:de:2f:e5:eb:1f:45:
dd:d4:5d:19:a5:79:13:76:41:91:c0:3c:8e:26:77:fe:ac:cb:
82:16:a2:69:e6:5f:54:5a:4e:b1:8b:65:0a:4b:7d:ea:45:2a:
4f:29:47:82:79:d0:86:5c:73:9a:ad:04:1f:e2:b6:bf:70:48:
55:21:91:b7:68:73:61:bc:d5:2c:2e:7a:8d:1f:4e:86:4e:ce:
bd:9d:8d:ad:1a:72:d1:d0:94:7a:4c:d3:3e:18:72:31:3c:7f:
da:a7:a8:85:47:8e:3b:94:92:5f:54:9b:e3:9a:5c:09:68:35:
f4:aa:63:24:12:ce:1b:a5:b9:0e:0b:62:a4:06:30:26:aa:e6:
ec:20:e6:3e:6b:28:20:90:76:b8:2a:bb:18:58:45:70:04:5e:
84:e1:f5:fe:03:c5:ce:10:41:a4:82:f5:00:d3:e5:70:54:ed:
26:e0:9a:bc:f2:f8:87:56:d0:af:35:23:66:dc:6b:ba:c7:88:
96:04:f7:8b
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCbcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjhD
QjVDQ0ZDOTA3MzhEMjI0Q0FFQUMxNUUxQzI1MTAwMDQ0NkJBQTAeFw0yMjA4MDIw
NzE2NDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDI2ODNCNDU0QTcwQjY2
NDJBMDJDRjNBMDVCOUQ4NTYyOEZGN0Y1NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC90d/vA6blI8pcSQCa2wT+8MUwSDV8AX3aENUtRM/qXX90qrfV
h6L1QQIKLCPnK/YuE64r2meXhi77ofOKAFpQwy9IBZXVZKVoViHB3sSlw+veMeWy
KBMG7ur02wX53+CPnE+cVaEM0KcYko3ptKmHoL7+jX1tO+0Eq+pmvl6V97xmJ2Dj
uWfn9wteEw5BPiUa2XiADNjYa7zHfyu9FtjKaNpyuMnHT7ec9UdtnshRIyuBSFBv
0EWyXIprNpuE+mLkqeNBEJbHjwF68avYu9yQtDwOXuC7Y9BmbexT9zECCa12E7e4
4OBTud7dB4Oc/LL5lMSMz1Kel/lRledbLenTAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUJoO0VKcLZkKgLPOgW52FYo/39VgwHwYDVR0jBBgwFoAUKMtcz8kHONIkyurB
XhwlEABEa6owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSExDQVRW
L0tNdGN6OGtIT05Ja3l1ckJYaHdsRUFCRWE2by5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvS010Y3o4a0hPTklreXVyQlhod2xFQUJFYTZvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSExDQVRWL0pvTzBWS2NMWmtLZ0xQT2dX
NTJGWW9fMzlWZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATT
TFAwDQYJKoZIhvcNAQELBQADggEBAE9nBvDXxzcevXdfZ/eWzgsYWZY/we1ZHKaP
Q5Eh/kWqdq4jbNlNZpbeiZfQF/Db8eNtiqb7hg/KoGIHlaGSXNIqVd4v5esfRd3U
XRmleRN2QZHAPI4md/6sy4IWomnmX1RaTrGLZQpLfepFKk8pR4J50IZcc5qtBB/i
tr9wSFUhkbdoc2G81Swueo0fToZOzr2dja0actHQlHpM0z4YcjE8f9qnqIVHjjuU
kl9Um+OaXAloNfSqYyQSzhuluQ4LYqQGMCaq5uwg5j5rKCCQdrgquxhYRXAEXoTh
9f4Dxc4QQaSC9QDT5XBU7Sbgmrzy+IdW0K81I2bca7rHiJYE94s=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org