Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASGC/igAyeNAd3KamAJPWBvgTtxSWplk.roa
File: igAyeNAd3KamAJPWBvgTtxSWplk.roa (raw, json)
Hash identifier: dFf7zJNx9Ty+YwmDA4kVBNpTTbaiU9mpCjHdw1dHPe0=
Subject key identifier: 8A:00:32:78:D0:1D:DC:A6:A6:00:93:D6:06:F8:13:B7:14:96:A6:59
Certificate issuer: /CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Certificate serial: 08AE
Authority key identifier: 76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/igAyeNAd3KamAJPWBvgTtxSWplk.roa
Signing time: Sun 07 Feb 2021 11:50:06 +0000
ROA not before: Sun 07 Feb 2021 11:50:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24167
IP address blocks: 117.103.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2222 (0x8ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Validity
Not Before: Feb 7 11:50:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8A003278D01DDCA6A60093D606F813B71496A659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:80:f0:41:02:d4:b7:10:c1:eb:7f:02:d7:58:
27:6e:45:ac:18:2e:c1:b5:ee:b6:8b:27:45:97:53:
2d:4a:1b:94:5e:2b:73:b3:84:cc:1a:c5:a0:b9:41:
96:00:92:4a:03:c8:43:85:c0:63:d4:a0:18:48:5f:
d6:db:ea:a5:dc:7e:04:43:f9:2e:d2:8e:29:06:c9:
7b:41:40:fa:9c:a3:b8:7a:1f:d2:6a:c5:a8:83:32:
58:a5:e8:ee:63:34:d7:27:1f:91:a4:d2:14:77:19:
15:7c:fa:ca:1c:cd:c3:bf:ab:d0:e1:ab:fb:4a:0f:
06:56:88:b4:ee:62:f6:6e:2c:30:de:32:d1:2d:a8:
51:5b:24:82:20:01:58:d1:6c:86:86:0e:69:2e:0a:
9f:c8:f4:20:33:b9:ce:63:6e:0f:fd:c5:19:df:a4:
a0:f7:c1:d1:e7:0c:40:f6:66:54:f9:c6:5e:20:60:
a7:6c:12:46:fe:e1:f0:d6:06:fd:94:c3:a7:16:9b:
46:3f:4d:07:0f:dc:cd:08:11:e2:49:66:e2:cc:21:
67:fd:0d:c7:0e:5a:42:28:32:de:4b:e4:95:63:58:
8d:78:01:d1:59:c2:3e:6a:2a:2e:a0:5a:58:88:2e:
50:e8:b0:7d:75:86:58:81:c0:a7:fb:03:57:f5:fb:
9c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:00:32:78:D0:1D:DC:A6:A6:00:93:D6:06:F8:13:B7:14:96:A6:59
X509v3 Authority Key Identifier:
keyid:76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/dg6p94M-3GNm_V4jpCa89iuwHmw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/igAyeNAd3KamAJPWBvgTtxSWplk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
117.103.96.0/20
Signature Algorithm: sha256WithRSAEncryption
2d:48:67:c1:59:0e:3e:48:bb:19:a6:10:f7:a3:45:19:a9:0e:
fe:39:bc:03:50:05:43:14:be:b5:a3:8a:93:7b:65:86:06:76:
4c:fb:21:7b:e0:a5:9a:cd:46:a0:0f:9a:cf:fe:d8:0f:b9:ae:
d8:d8:6d:50:0c:e0:4f:00:3f:82:fd:fe:c9:e1:e0:2e:e2:2e:
5c:77:5d:ac:bc:94:ac:de:64:84:50:4c:4a:30:3a:03:a4:fc:
32:de:7b:da:98:c0:8e:2c:0f:92:2c:e2:2e:f7:cc:d0:e0:f3:
5a:a4:c5:c8:39:a3:03:4d:8b:f8:96:c6:91:e8:56:61:fb:09:
87:ff:de:ab:4a:ff:00:ed:7b:91:73:20:92:98:8e:11:d5:cd:
56:53:5d:c4:8b:eb:ad:ec:cd:09:45:22:a7:09:61:2c:20:60:
51:93:bb:85:f4:f6:4a:16:4b:11:28:ff:f3:b4:06:3e:6a:b3:
ad:5f:77:e3:b5:08:74:10:d9:c4:99:39:64:60:03:14:d0:ac:
3a:9d:b4:52:9d:a0:70:dd:a1:5d:13:1a:9a:cd:16:00:a4:c3:
5f:23:56:3b:74:a5:df:54:e2:f7:0d:75:04:1c:f3:47:db:5e:
22:cf:a1:a9:10:f8:68:d0:31:d7:84:37:ec:01:4c:98:8d:7b:
ff:d1:d9:99
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCK4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzYw
RUE5Rjc4MzNFREM2MzY2RkQ1RTIzQTQyNkJDRjYyQkIwMUU2QzAeFw0yMTAyMDcx
MTUwMDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDhBMDAzMjc4RDAxRERD
QTZBNjAwOTNENjA2RjgxM0I3MTQ5NkE2NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDpgPBBAtS3EMHrfwLXWCduRawYLsG17raLJ0WXUy1KG5ReK3Oz
hMwaxaC5QZYAkkoDyEOFwGPUoBhIX9bb6qXcfgRD+S7SjikGyXtBQPqco7h6H9Jq
xaiDMlil6O5jNNcnH5Gk0hR3GRV8+soczcO/q9Dhq/tKDwZWiLTuYvZuLDDeMtEt
qFFbJIIgAVjRbIaGDmkuCp/I9CAzuc5jbg/9xRnfpKD3wdHnDED2ZlT5xl4gYKds
Ekb+4fDWBv2Uw6cWm0Y/TQcP3M0IEeJJZuLMIWf9DccOWkIoMt5L5JVjWI14AdFZ
wj5qKi6gWliILlDosH11hliBwKf7A1f1+5z/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUigAyeNAd3KamAJPWBvgTtxSWplkwHwYDVR0jBBgwFoAUdg6p94M+3GNm/V4j
pCa89iuwHmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNHQy9k
ZzZwOTRNLTNHTm1fVjRqcENhODlpdXdIbXcuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2RnNnA5NE0tM0dObV9WNGpwQ2E4OWl1d0htdy5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FTR0MvaWdBeWVOQWQzS2FtQUpQV0J2Z1R0
eFNXcGxrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHVnYDAN
BgkqhkiG9w0BAQsFAAOCAQEALUhnwVkOPki7GaYQ96NFGakO/jm8A1AFQxS+taOK
k3tlhgZ2TPshe+Clms1GoA+az/7YD7mu2NhtUAzgTwA/gv3+yeHgLuIuXHddrLyU
rN5khFBMSjA6A6T8Mt572pjAjiwPkiziLvfM0ODzWqTFyDmjA02L+JbGkehWYfsJ
h//eq0r/AO17kXMgkpiOEdXNVlNdxIvrrezNCUUipwlhLCBgUZO7hfT2ShZLESj/
87QGPmqzrV9347UIdBDZxJk5ZGADFNCsOp20Up2gcN2hXRMams0WAKTDXyNWO3Sl
31Ti9w11BBzzR9teIs+hqRD4aNAx14Q37AFMmI17/9HZmQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org