Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/_HMCrurh9Ysb2uDoIjS37ZP6Tcg.roa
File: _HMCrurh9Ysb2uDoIjS37ZP6Tcg.roa (raw, json)
Hash identifier: ydI91ScqrvS8sxOBwz9yXCRjkrCD/AR1dFe1OnDOMa4=
Subject key identifier: FC:73:02:AE:EA:E1:F5:8B:1B:DA:E0:E8:22:34:B7:ED:93:FA:4D:C8
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A9C
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_HMCrurh9Ysb2uDoIjS37ZP6Tcg.roa
Signing time: Wed 29 Sep 2021 02:41:26 +0000
ROA not before: Wed 29 Sep 2021 02:41:26 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17716
IP address blocks: 140.112.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2716 (0xa9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:26 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FC7302AEEAE1F58B1BDAE0E82234B7ED93FA4DC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bb:7a:ba:5c:e2:94:23:97:69:79:17:48:29:
02:2c:a0:60:a7:99:44:8b:c3:63:68:5f:e7:64:59:
8f:c3:56:fa:aa:1f:cc:a8:7b:47:e7:68:e9:ed:bf:
2e:a8:a7:ca:2d:e5:f0:c1:aa:d5:21:70:d5:60:00:
c6:0b:51:bb:66:c8:0d:3e:45:54:e3:ce:6f:06:11:
17:e2:81:86:bf:b3:60:8f:f3:d7:b4:22:e7:d0:82:
28:bc:2c:71:e4:18:aa:b8:91:67:29:fb:b2:83:61:
ca:3b:01:d4:3b:36:70:66:97:72:3a:8f:e0:16:35:
2f:8a:33:2e:a6:fc:48:96:08:d6:32:2e:4f:c5:80:
f9:44:bd:ce:f1:ec:d6:e0:ac:41:10:8c:3f:75:c7:
68:02:71:73:d1:9d:1d:db:7e:3e:61:48:91:89:94:
f3:93:0e:b3:e3:1c:94:a7:bc:a4:31:18:13:93:2d:
11:97:77:47:d7:96:8f:ab:52:4b:52:aa:f7:a2:c9:
ab:5d:f4:8b:77:0d:5b:24:8d:bb:1e:a0:db:db:9b:
c3:7f:b8:0c:33:80:27:f8:c6:e0:5b:4c:d4:f5:b7:
cb:27:c4:8c:64:05:79:6d:c7:10:ee:11:da:9d:38:
d4:7e:29:97:0c:9b:90:28:be:dc:83:60:b4:17:00:
be:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:73:02:AE:EA:E1:F5:8B:1B:DA:E0:E8:22:34:B7:ED:93:FA:4D:C8
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_HMCrurh9Ysb2uDoIjS37ZP6Tcg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.112.0.0/16
Signature Algorithm: sha256WithRSAEncryption
76:dd:27:71:4d:5b:74:cb:25:e9:26:4c:16:f9:e6:37:83:65:
58:ce:eb:ac:2d:8e:75:c4:03:87:bb:31:94:86:69:7f:3c:39:
47:44:38:58:18:99:72:b4:07:a7:59:7a:20:0e:9d:73:01:5c:
32:84:cd:8d:7e:5c:b9:4a:f8:8a:17:5e:3c:3c:99:9a:d1:39:
35:59:40:dc:8a:17:76:56:4e:cc:8f:48:95:f5:9f:21:56:d5:
f8:73:6f:f8:59:85:5c:b7:ef:43:a4:ae:71:7d:df:88:34:0f:
0c:69:f2:f6:4e:8f:4b:b1:8f:47:77:ce:48:93:32:80:11:f9:
27:fd:a0:ff:23:0b:c0:8d:3e:e9:5a:4a:46:b3:5e:a5:cf:0d:
48:0b:10:ea:9d:41:bb:b5:7b:76:96:ea:26:b0:a3:f7:99:97:
80:6c:88:67:33:87:e8:6d:dd:bb:cc:24:e8:98:20:1e:d7:12:
96:ec:21:6b:5e:6f:d0:2a:39:2e:8c:44:23:b9:26:c9:66:f5:
85:20:d3:cb:1a:c8:2c:db:4c:ee:fe:cb:d4:0d:c7:0c:f8:82:
f5:9d:73:18:6f:ae:68:dc:40:e1:8e:0e:3d:f8:9c:5e:4f:d3:
d0:c4:15:7b:24:8f:01:53:a6:f6:06:a5:0f:53:6a:38:2c:41:
ee:45:f1:34
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCpwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMTA5Mjkw
MjQxMjZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEZDNzMwMkFFRUFFMUY1
OEIxQkRBRTBFODIyMzRCN0VEOTNGQTREQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGu3q6XOKUI5dpeRdIKQIsoGCnmUSLw2NoX+dkWY/DVvqqH8yo
e0fnaOntvy6op8ot5fDBqtUhcNVgAMYLUbtmyA0+RVTjzm8GERfigYa/s2CP89e0
IufQgii8LHHkGKq4kWcp+7KDYco7AdQ7NnBml3I6j+AWNS+KMy6m/EiWCNYyLk/F
gPlEvc7x7NbgrEEQjD91x2gCcXPRnR3bfj5hSJGJlPOTDrPjHJSnvKQxGBOTLRGX
d0fXlo+rUktSqveiyatd9It3DVskjbseoNvbm8N/uAwzgCf4xuBbTNT1t8snxIxk
BXltxxDuEdqdONR+KZcMm5AovtyDYLQXAL5PAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU/HMCrurh9Ysb2uDoIjS37ZP6TcgwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9fSE1DcnVyaDlZc2IydURvSWpT
MzdaUDZUY2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHAw
DQYJKoZIhvcNAQELBQADggEBAHbdJ3FNW3TLJekmTBb55jeDZVjO66wtjnXEA4e7
MZSGaX88OUdEOFgYmXK0B6dZeiAOnXMBXDKEzY1+XLlK+IoXXjw8mZrROTVZQNyK
F3ZWTsyPSJX1nyFW1fhzb/hZhVy370OkrnF934g0Dwxp8vZOj0uxj0d3zkiTMoAR
+Sf9oP8jC8CNPulaSkazXqXPDUgLEOqdQbu1e3aW6iawo/eZl4BsiGczh+ht3bvM
JOiYIB7XEpbsIWteb9AqOS6MRCO5Jslm9YUg08sayCzbTO7+y9QNxwz4gvWdcxhv
rmjcQOGODj34nF5P09DEFXskjwFTpvYGpQ9TajgsQe5F8TQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org