Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/96KmdErcUihQgnM1i7Pt2sI0JM4.roa
File: 96KmdErcUihQgnM1i7Pt2sI0JM4.roa (raw, json)
Hash identifier: tV2PxP3xKV06vtUrcKu1bG3bpYV427B7r28Kdien0xQ=
Subject key identifier: F7:A2:A6:74:4A:DC:52:28:50:82:73:35:8B:B3:ED:DA:C2:34:24:CE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0861
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/96KmdErcUihQgnM1i7Pt2sI0JM4.roa
Signing time: Tue 29 Sep 2020 10:02:24 +0000
ROA not before: Tue 29 Sep 2020 10:02:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 203.163.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2145 (0x861)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:24 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F7A2A6744ADC5228508273358BB3EDDAC23424CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:6c:23:76:43:f7:74:b8:b0:bc:44:67:03:72:
bb:ac:ad:3e:2f:e2:3d:63:e2:fd:ba:45:11:e8:e9:
5c:ac:41:bc:24:58:f1:59:bc:5c:8f:9f:15:ef:b0:
ef:c6:7d:36:fb:b9:7a:64:70:5a:a6:09:e9:82:97:
dd:39:86:61:23:86:7e:18:0c:27:b8:4d:60:c0:f5:
9a:95:62:91:19:61:d4:5b:43:49:3c:4c:cf:e9:9f:
2c:cf:7c:a6:a6:95:d5:02:5d:d0:eb:0f:15:c5:fe:
09:40:51:4d:e0:85:d5:b9:a2:c1:20:e4:c8:22:67:
07:ff:fe:f0:80:bc:d6:a3:b7:09:e0:42:51:11:42:
ba:72:f2:af:67:e3:e8:d3:f0:d6:48:ec:14:59:2e:
18:2e:b8:f0:0b:fa:f9:c3:a9:90:a4:f4:92:39:ce:
e5:93:fb:92:8f:9c:93:7e:05:99:59:c0:cf:db:c9:
ec:57:8f:5f:b2:b4:98:1a:55:ff:ed:29:49:0e:b6:
51:67:24:2b:aa:1d:80:38:ae:6a:41:f0:58:eb:13:
b7:17:bf:04:36:b6:30:a7:fa:f7:f9:3b:cc:f3:d0:
53:25:ed:82:2c:71:2a:74:82:28:1f:f4:7b:11:64:
29:a8:97:11:a1:de:d8:39:f4:33:d8:2d:9f:28:65:
91:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:A2:A6:74:4A:DC:52:28:50:82:73:35:8B:B3:ED:DA:C2:34:24:CE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/96KmdErcUihQgnM1i7Pt2sI0JM4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.196.0/22
Signature Algorithm: sha256WithRSAEncryption
18:00:8a:12:79:f9:56:8e:5f:91:53:c4:75:12:ac:57:ab:90:
f9:2a:5f:e2:0d:d8:f2:7d:83:5e:92:30:e6:b2:15:92:86:99:
0d:40:b6:35:30:32:64:38:2d:69:6a:e9:b4:66:1d:1e:9f:b1:
07:0e:79:c2:08:e9:f7:4b:cb:e6:d7:60:74:6a:2a:42:d3:0b:
46:c1:23:ed:32:db:f4:7a:f4:81:e2:f3:21:08:b9:f9:4a:5a:
f3:56:91:22:ef:30:f7:e8:b7:8c:de:d3:80:36:e6:a1:11:a0:
eb:14:37:d2:ce:83:ea:af:85:2b:6e:90:ed:3c:cf:08:31:a6:
76:29:10:51:d0:e2:58:02:2e:58:7f:c2:23:a8:67:e5:cc:50:
18:ee:80:5d:77:3f:74:f6:6e:f2:07:3e:7c:ae:dc:dc:ea:ba:
09:6a:dc:bb:b6:14:2f:8e:35:5c:6f:b8:4d:95:e3:69:e0:b8:
35:98:92:a1:a9:f7:80:02:42:e7:91:5c:19:bc:68:6e:9c:bd:
ad:9f:15:0d:f3:a7:88:6e:a9:fe:1a:e1:bd:3c:fc:a4:e3:71:
14:93:02:e8:a9:d3:d5:ea:6c:34:1d:1e:52:6a:eb:ad:4c:aa:
61:b8:bb:92:b6:d0:59:65:11:53:71:7d:94:c8:71:76:2d:54:
35:67:29:90
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCGEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDA5Mjkx
MDAyMjRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEY3QTJBNjc0NEFEQzUy
Mjg1MDgyNzMzNThCQjNFRERBQzIzNDI0Q0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDibCN2Q/d0uLC8RGcDcrusrT4v4j1j4v26RRHo6VysQbwkWPFZ
vFyPnxXvsO/GfTb7uXpkcFqmCemCl905hmEjhn4YDCe4TWDA9ZqVYpEZYdRbQ0k8
TM/pnyzPfKamldUCXdDrDxXF/glAUU3ghdW5osEg5MgiZwf//vCAvNajtwngQlER
Qrpy8q9n4+jT8NZI7BRZLhguuPAL+vnDqZCk9JI5zuWT+5KPnJN+BZlZwM/byexX
j1+ytJgaVf/tKUkOtlFnJCuqHYA4rmpB8FjrE7cXvwQ2tjCn+vf5O8zz0FMl7YIs
cSp0gigf9HsRZCmolxGh3tg59DPYLZ8oZZGNAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU96KmdErcUihQgnM1i7Pt2sI0JM4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy85NkttZEVyY1VpaFFn
bk0xaTdQdDJzSTBKTTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCy6PEMA0GCSqGSIb3DQEBCwUAA4IBAQAYAIoSeflWjl+RU8R1EqxXq5D5Kl/i
DdjyfYNekjDmshWShpkNQLY1MDJkOC1paum0Zh0en7EHDnnCCOn3S8vm12B0aipC
0wtGwSPtMtv0evSB4vMhCLn5SlrzVpEi7zD36LeM3tOANuahEaDrFDfSzoPqr4Ur
bpDtPM8IMaZ2KRBR0OJYAi5Yf8IjqGflzFAY7oBddz909m7yBz58rtzc6roJaty7
thQvjjVcb7hNleNp4Lg1mJKhqfeAAkLnkVwZvGhunL2tnxUN86eIbqn+GuG9PPyk
43EUkwLoqdPV6mw0HR5SauutTKphuLuSttBZZRFTcX2UyHF2LVQ1ZymQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org