Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HYA/hIhCHkF1hVskmXP7s7dzFRFie6k.roa
File: hIhCHkF1hVskmXP7s7dzFRFie6k.roa (raw, json)
Hash identifier: itZzC9jsw01/7/RpRhGHfOVqgCyltC0FB+Nrq2WoVNU=
Subject key identifier: 84:88:42:1E:41:75:85:5B:24:99:73:FB:B3:B7:73:15:11:62:7B:A9
Certificate issuer: /CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Certificate serial: 0771
Authority key identifier: 0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/hIhCHkF1hVskmXP7s7dzFRFie6k.roa
Signing time: Tue 29 Sep 2020 09:59:15 +0000
ROA not before: Tue 29 Sep 2020 09:59:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 103.252.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1905 (0x771)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Validity
Not Before: Sep 29 09:59:15 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8488421E4175855B249973FBB3B7731511627BA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2e:3f:2a:d8:a8:2f:7e:4a:f7:1f:3b:cc:3e:
47:1b:ad:85:60:87:60:3e:75:84:5c:54:c5:13:bd:
36:70:8d:cd:c9:1d:59:5a:fc:d6:93:32:97:e7:b7:
b4:12:5f:69:ca:13:a2:0b:fc:8d:13:fd:0b:e5:03:
c2:cd:15:17:59:5f:c4:4e:10:99:e5:ed:20:70:10:
58:37:03:c7:f3:39:d6:8a:1a:39:13:d7:31:ec:c5:
ff:f0:56:66:30:6e:ad:c6:84:d6:3f:62:8d:5d:6b:
3a:e6:65:91:00:f8:55:9a:98:ca:02:10:b2:0a:cd:
9e:33:9d:c1:68:e9:d8:d6:14:3f:da:4d:10:64:8b:
f6:08:ac:5c:e8:5f:d6:56:ed:70:0b:c7:c6:98:c5:
8d:3e:22:c1:d4:72:78:56:f6:9a:99:ab:34:fa:29:
3a:a7:d6:d1:1e:3b:bf:2b:75:44:5e:fe:fb:25:c3:
bd:46:62:93:c0:bd:86:68:21:5f:a0:e9:93:d7:ae:
8d:09:ef:e3:b6:57:39:a9:f7:d6:3e:e7:ee:27:05:
ab:fd:03:8c:08:26:a8:40:70:38:6f:35:3c:5d:2e:
95:23:05:22:40:ca:8a:fb:9a:a1:d5:1d:95:83:d6:
d7:4d:54:99:47:fd:0a:5a:85:76:04:c2:52:e1:b7:
e0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:88:42:1E:41:75:85:5B:24:99:73:FB:B3:B7:73:15:11:62:7B:A9
X509v3 Authority Key Identifier:
keyid:0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/hIhCHkF1hVskmXP7s7dzFRFie6k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.252.128.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:1d:c3:e1:d2:49:ea:9f:fd:20:bb:83:56:9a:42:ab:ba:d3:
88:f1:21:5e:b0:c8:b0:e2:a2:c5:c8:36:ff:6e:d6:a4:05:b2:
a6:13:b0:82:f6:d6:c2:6f:1b:82:da:89:b4:dc:dd:53:8e:3e:
de:bb:03:10:ff:54:b6:d4:ef:73:98:48:03:3f:2c:48:7f:66:
71:7c:79:b7:fa:a5:94:47:31:36:9c:4f:99:12:38:09:38:7e:
75:d9:0c:75:78:24:6a:c7:43:8c:80:ef:90:03:d3:90:1a:fd:
8b:8e:82:5d:64:ab:a8:63:82:ff:62:ea:e9:a3:c4:ba:81:52:
c9:51:de:4e:75:4a:db:5f:28:71:74:4d:fb:c8:e0:ce:f4:e6:
ec:73:98:35:26:49:0e:3c:0b:c1:e2:16:a4:d0:16:be:20:0e:
ed:90:20:a9:64:a7:fb:80:68:23:73:6c:97:85:ef:bb:24:9e:
c7:cc:ef:3b:8d:78:87:fc:d6:52:38:64:e7:4b:fd:1b:7f:69:
94:9c:0c:06:0e:be:a7:86:50:64:7a:ff:2e:72:21:19:84:50:
7d:d3:1a:b7:77:1d:d7:0d:d7:65:a4:3c:72:7a:1f:67:3f:e2:
5e:e6:39:87:7f:40:44:d7:e5:a8:f9:3d:52:63:37:74:40:cc:
57:42:97:b9
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICB3EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEVB
RTJEMzMxRjJDNDI4MEMxNkFBOEJBRkUxNkZERENDRTM3MTVCNDAeFw0yMDA5Mjkw
OTU5MTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDg0ODg0MjFFNDE3NTg1
NUIyNDk5NzNGQkIzQjc3MzE1MTE2MjdCQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNLj8q2Kgvfkr3HzvMPkcbrYVgh2A+dYRcVMUTvTZwjc3JHVla
/NaTMpfnt7QSX2nKE6IL/I0T/QvlA8LNFRdZX8ROEJnl7SBwEFg3A8fzOdaKGjkT
1zHsxf/wVmYwbq3GhNY/Yo1dazrmZZEA+FWamMoCELIKzZ4zncFo6djWFD/aTRBk
i/YIrFzoX9ZW7XALx8aYxY0+IsHUcnhW9pqZqzT6KTqn1tEeO78rdURe/vslw71G
YpPAvYZoIV+g6ZPXro0J7+O2Vzmp99Y+5+4nBav9A4wIJqhAcDhvNTxdLpUjBSJA
yor7mqHVHZWD1tdNVJlH/QpahXYEwlLht+BjAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUhIhCHkF1hVskmXP7s7dzFRFie6kwHwYDVR0jBBgwFoAUDq4tMx8sQoDBaqi6
/hb93M43FbQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFlBL0Rx
NHRNeDhzUW9EQmFxaTZfaGI5M000M0ZiUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
RHE0dE14OHNRb0RCYXFpNl9oYjkzTTQzRmJRLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvSFlBL2hJaENIa0YxaFZza21YUDdzN2R6RlJG
aWU2ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn/IAwDQYJ
KoZIhvcNAQELBQADggEBAK0dw+HSSeqf/SC7g1aaQqu604jxIV6wyLDiosXINv9u
1qQFsqYTsIL21sJvG4LaibTc3VOOPt67AxD/VLbU73OYSAM/LEh/ZnF8ebf6pZRH
MTacT5kSOAk4fnXZDHV4JGrHQ4yA75AD05Aa/YuOgl1kq6hjgv9i6umjxLqBUslR
3k51SttfKHF0TfvI4M705uxzmDUmSQ48C8HiFqTQFr4gDu2QIKlkp/uAaCNzbJeF
77sknsfM7zuNeIf81lI4ZOdL/Rt/aZScDAYOvqeGUGR6/y5yIRmEUH3TGrd3HdcN
12WkPHJ6H2c/4l7mOYd/QETX5aj5PVJjN3RAzFdCl7k=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:53 2025 by rpki-client