Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VVrJ8WUxCTvsoRFc633s4z0Wbrk.roa
File: VVrJ8WUxCTvsoRFc633s4z0Wbrk.roa (raw, json)
Hash identifier: MEn6QxsqCzP/QASXtIL4rRDVWhx+5onQyaVFTiGMjFw=
Subject key identifier: 55:5A:C9:F1:65:31:09:3B:EC:A1:11:5C:EB:7D:EC:E3:3D:16:6E:B9
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0860
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VVrJ8WUxCTvsoRFc633s4z0Wbrk.roa
Signing time: Tue 29 Sep 2020 10:02:23 +0000
ROA not before: Tue 29 Sep 2020 10:02:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 203.163.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2144 (0x860)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=555AC9F16531093BECA1115CEB7DECE33D166EB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f6:b9:26:17:1e:3f:d8:e6:44:6d:3b:88:3d:
d7:5e:39:79:ee:74:ef:4b:99:1c:78:64:57:5e:6e:
f4:a9:e8:f8:b4:68:d6:22:82:fa:56:ad:c1:a4:10:
ea:40:26:45:33:3d:e2:4d:07:45:de:ca:15:fb:bd:
31:c0:99:64:46:36:41:dd:65:c6:a6:c2:72:e6:0e:
97:c2:34:91:3e:e9:f6:3e:ed:bd:86:a0:54:74:bf:
8d:70:54:c0:9c:47:0a:f1:93:f7:c7:c3:7a:e5:46:
6f:3b:f7:ea:a9:63:cd:cd:9d:91:2e:b9:24:a2:a3:
98:70:8b:10:76:bd:fa:67:95:a7:6a:b7:9a:24:af:
3a:94:21:13:fe:2d:aa:c7:f2:97:04:b1:3b:72:f4:
04:f2:ef:0f:d8:4a:09:2f:c6:aa:e9:85:85:3c:f5:
14:1f:93:97:0a:20:d7:fc:d6:14:4a:6e:3c:54:d4:
8d:03:de:78:98:4e:55:47:15:ba:cf:f1:af:52:87:
30:6e:bb:8a:29:36:b2:0f:3b:19:1c:1e:35:92:dd:
d5:d9:f7:6e:65:c5:73:62:f8:41:7a:07:fd:6e:4d:
dd:8a:cd:c1:dc:5d:93:50:37:17:74:94:6b:84:7d:
5d:3d:f1:58:02:bf:01:af:2d:5b:9a:a4:d6:ba:8b:
33:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:5A:C9:F1:65:31:09:3B:EC:A1:11:5C:EB:7D:EC:E3:3D:16:6E:B9
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VVrJ8WUxCTvsoRFc633s4z0Wbrk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.214.0/24
Signature Algorithm: sha256WithRSAEncryption
21:33:b5:d8:1d:35:07:e0:18:ec:6e:7e:d8:f7:13:28:a7:3b:
67:d3:f8:0d:dc:2f:7c:e1:d0:c5:6f:9e:a6:e1:d5:05:3b:b1:
46:23:8c:f1:4e:8c:d9:56:07:ca:3f:89:41:ae:39:05:48:28:
d5:31:82:f2:14:b0:97:83:0d:bc:92:81:7d:13:ae:05:6d:6f:
d7:0f:ec:5c:d2:e7:a1:64:89:22:74:6c:7d:5d:49:8d:02:39:
e5:12:2d:da:3b:c4:f2:81:3f:80:a2:6f:f5:3e:c9:7a:c1:34:
8a:3d:ba:7a:0a:c9:3c:4e:c1:e9:94:24:75:5b:98:5a:47:f7:
dd:b3:6b:a0:f0:e1:a2:b0:c8:5a:24:1c:a1:43:e5:75:10:e4:
c9:1d:7b:c5:b2:0b:a1:4f:c2:2b:44:d1:ba:1e:af:8d:b9:95:
ae:78:d9:5f:66:87:64:0f:88:b5:84:d8:e9:33:dc:d9:ec:83:
e4:c5:6a:b9:56:79:b5:3a:fd:64:3f:d9:45:9c:41:c2:cc:e8:
a3:14:b4:f1:74:f4:07:69:f9:36:a3:45:32:b1:1d:9f:89:67:
63:a6:a1:01:9b:72:93:a8:68:19:f6:18:12:a4:65:e9:77:32:
64:b3:72:4e:88:2b:86:d8:8a:c8:66:f9:e1:da:4d:2e:59:64:
0c:fe:dd:0f
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCGAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDA5Mjkx
MDAyMjNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDU1NUFDOUYxNjUzMTA5
M0JFQ0ExMTE1Q0VCN0RFQ0UzM0QxNjZFQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDB9rkmFx4/2OZEbTuIPddeOXnudO9LmRx4ZFdebvSp6Pi0aNYi
gvpWrcGkEOpAJkUzPeJNB0XeyhX7vTHAmWRGNkHdZcamwnLmDpfCNJE+6fY+7b2G
oFR0v41wVMCcRwrxk/fHw3rlRm879+qpY83NnZEuuSSio5hwixB2vfpnladqt5ok
rzqUIRP+LarH8pcEsTty9ATy7w/YSgkvxqrphYU89RQfk5cKINf81hRKbjxU1I0D
3niYTlVHFbrP8a9ShzBuu4opNrIPOxkcHjWS3dXZ925lxXNi+EF6B/1uTd2KzcHc
XZNQNxd0lGuEfV098VgCvwGvLVuapNa6izOdAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUVVrJ8WUxCTvsoRFc633s4z0WbrkwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9WVnJKOFdVeENUdnNv
UkZjNjMzczR6MFdicmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAy6PWMA0GCSqGSIb3DQEBCwUAA4IBAQAhM7XYHTUH4Bjsbn7Y9xMopztn0/gN
3C984dDFb56m4dUFO7FGI4zxTozZVgfKP4lBrjkFSCjVMYLyFLCXgw28koF9E64F
bW/XD+xc0uehZIkidGx9XUmNAjnlEi3aO8TygT+Aom/1Psl6wTSKPbp6Csk8TsHp
lCR1W5haR/fds2ug8OGisMhaJByhQ+V1EOTJHXvFsguhT8IrRNG6Hq+NuZWueNlf
ZodkD4i1hNjpM9zZ7IPkxWq5Vnm1Ov1kP9lFnEHCzOijFLTxdPQHafk2o0UysR2f
iWdjpqEBm3KTqGgZ9hgSpGXpdzJks3JOiCuG2IrIZvnh2k0uWWQM/t0P
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org