Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MTSmmoPB4Pg2voXD8tkEEB5UryE.roa
File: MTSmmoPB4Pg2voXD8tkEEB5UryE.roa (raw, json)
Hash identifier: afInN6rLzM7+wk3jI1XKtmXc41ofireKXfgojfNhoJg=
Subject key identifier: 31:34:A6:9A:83:C1:E0:F8:36:BE:85:C3:F2:D9:04:10:1E:54:AF:21
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AF8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MTSmmoPB4Pg2voXD8tkEEB5UryE.roa
Signing time: Sun 07 Feb 2021 12:59:26 +0000
ROA not before: Sun 07 Feb 2021 12:59:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 223.26.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2808 (0xaf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:59:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3134A69A83C1E0F836BE85C3F2D904101E54AF21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:50:3f:05:e3:c3:2c:63:86:1d:43:97:67:f7:
50:7d:da:31:2e:35:f0:76:13:1a:d5:45:b8:70:6c:
c5:fa:41:2b:2e:7c:fd:f8:1d:17:14:83:f1:3a:20:
ed:4a:0f:5a:56:65:fd:f8:48:7b:36:50:58:ed:82:
66:c9:a2:48:59:26:31:90:3a:a3:a6:ac:66:be:c5:
96:54:06:99:74:3a:cb:61:8d:6e:79:ed:b7:b0:5a:
bc:e5:79:45:9f:ac:8f:9d:33:e0:68:c5:ef:9d:c1:
e7:4a:18:6b:7d:74:d8:e4:10:7f:45:72:08:8e:22:
bd:9d:5d:cf:a6:53:b8:1f:2f:19:89:8b:ba:c4:f3:
7b:9e:2f:3d:84:b2:a7:c7:17:fe:f3:d2:cd:df:8d:
02:b0:45:0e:67:8b:59:ca:05:74:a0:38:c9:16:df:
5f:dd:14:36:3c:dd:95:53:7c:2d:f9:ed:e8:07:67:
b7:fc:e0:19:13:09:20:5d:6e:11:24:be:fb:08:d9:
29:03:22:79:23:a9:0f:7f:0e:94:79:34:70:c1:22:
a7:19:fb:f1:13:b6:ca:87:c5:6f:90:d2:a3:dd:95:
f5:8a:42:2d:00:60:91:f8:0f:cd:7d:b6:d1:94:4e:
e1:1e:7a:98:4f:d6:25:39:54:c7:a2:83:22:ab:2f:
d7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:34:A6:9A:83:C1:E0:F8:36:BE:85:C3:F2:D9:04:10:1E:54:AF:21
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MTSmmoPB4Pg2voXD8tkEEB5UryE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.80.0/22
Signature Algorithm: sha256WithRSAEncryption
36:36:9b:dc:e5:d9:08:cd:40:ff:29:e7:ef:ac:0e:c5:ad:0a:
bb:34:44:38:28:c3:e1:fb:95:39:cf:5d:c6:e1:c3:1a:99:7b:
ae:7f:16:8d:6d:7d:47:4d:53:87:fb:2c:95:c6:ac:3b:ef:64:
ed:75:4d:70:d4:4e:d6:d8:ec:fd:14:76:95:16:fb:3b:4e:ca:
25:a3:e9:e0:72:6c:1e:2b:67:ac:95:18:fd:06:07:fe:3e:62:
95:93:8a:95:e2:58:f4:b2:2a:e8:0d:22:42:e8:0b:6b:e4:76:
47:04:5f:1c:02:e2:38:18:47:ae:ed:d7:9b:1d:f3:e6:8b:26:
69:82:c4:58:2f:d3:e5:2f:f5:45:fe:b2:fb:e3:33:a0:e8:cc:
ca:ea:1a:26:57:95:99:83:5d:1a:60:1f:7a:d1:58:3a:84:c4:
de:b1:86:e1:12:59:f7:4a:29:b0:53:63:46:04:70:60:2c:30:
51:e7:a5:74:b8:4e:c0:12:ef:4b:94:3c:33:ce:a3:3c:c9:93:
c3:4f:5a:a9:86:19:63:8f:6a:7c:5c:a1:08:39:28:97:8a:4e:
45:4f:42:34:ae:08:f0:d4:e3:8b:df:d5:3a:4f:5a:bc:02:2d:
35:c8:29:0b:20:11:16:85:b2:a9:5c:c8:f9:a4:c1:a0:6b:a0:
c9:83:4d:3c
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCvgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTAyMDcx
MjU5MjZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDMxMzRBNjlBODNDMUUw
RjgzNkJFODVDM0YyRDkwNDEwMUU1NEFGMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDtUD8F48MsY4YdQ5dn91B92jEuNfB2ExrVRbhwbMX6QSsufP34
HRcUg/E6IO1KD1pWZf34SHs2UFjtgmbJokhZJjGQOqOmrGa+xZZUBpl0OsthjW55
7bewWrzleUWfrI+dM+Boxe+dwedKGGt9dNjkEH9FcgiOIr2dXc+mU7gfLxmJi7rE
83ueLz2EsqfHF/7z0s3fjQKwRQ5ni1nKBXSgOMkW31/dFDY83ZVTfC357egHZ7f8
4BkTCSBdbhEkvvsI2SkDInkjqQ9/DpR5NHDBIqcZ+/ETtsqHxW+Q0qPdlfWKQi0A
YJH4D819ttGUTuEeephP1iU5VMeigyKrL9d5AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUMTSmmoPB4Pg2voXD8tkEEB5UryEwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9NVFNtbW9QQjRQZzJ2
b1hEOHRrRUVCNVVyeUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQC3xpQMA0GCSqGSIb3DQEBCwUAA4IBAQA2Npvc5dkIzUD/KefvrA7FrQq7NEQ4
KMPh+5U5z13G4cMamXuufxaNbX1HTVOH+yyVxqw772TtdU1w1E7W2Oz9FHaVFvs7
Tsolo+ngcmweK2eslRj9Bgf+PmKVk4qV4lj0siroDSJC6Atr5HZHBF8cAuI4GEeu
7debHfPmiyZpgsRYL9PlL/VF/rL74zOg6MzK6homV5WZg10aYB960Vg6hMTesYbh
Eln3SimwU2NGBHBgLDBR56V0uE7AEu9LlDwzzqM8yZPDT1qphhljj2p8XKEIOSiX
ik5FT0I0rgjw1OOL39U6T1q8Ai01yCkLIBEWhbKpXMj5pMGga6DJg008
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org