Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VxNf8C0w5C-kSVusYswceXdNttQ.roa
File: VxNf8C0w5C-kSVusYswceXdNttQ.roa (raw, json)
Hash identifier: Ny6M/gY7G2yfotXlYoxzKbn1DRkrV7kB7VW/KQcd/N8=
Subject key identifier: 57:13:5F:F0:2D:30:E4:2F:A4:49:5B:AC:62:CC:1C:79:77:4D:B6:D4
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0857
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VxNf8C0w5C-kSVusYswceXdNttQ.roa
Signing time: Tue 29 Sep 2020 10:02:21 +0000
ROA not before: Tue 29 Sep 2020 10:02:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 223.26.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2135 (0x857)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=57135FF02D30E42FA4495BAC62CC1C79774DB6D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c7:20:bc:f0:bc:c9:f9:38:2b:62:97:93:e7:
1b:9b:77:c9:ad:54:3f:6b:45:2f:ba:66:5c:fd:8c:
37:17:a4:24:2f:0e:31:96:e9:86:b3:3a:85:c4:4a:
84:8a:0a:92:31:41:98:e5:fa:b6:6a:c8:de:1a:35:
ec:8e:32:bf:df:fe:e5:68:94:49:fc:22:7b:c4:0d:
29:72:6e:6a:c0:8f:1e:08:3b:5f:3c:46:e8:06:02:
85:94:18:bd:ce:b7:22:88:45:3d:0e:2c:33:72:3f:
86:1a:1c:19:f8:be:2a:9e:b6:90:d3:b9:3c:a4:d6:
42:3e:c5:28:5b:e0:ff:fb:e0:01:4e:1e:96:23:1c:
26:0d:61:fa:7f:b1:7d:f0:f4:e6:38:1b:21:5c:87:
3f:6f:97:0b:ae:be:0c:3b:7d:f2:08:45:1b:74:96:
41:f2:8b:d1:a9:3b:1c:69:98:11:e6:3d:51:32:7a:
38:47:7e:97:82:1a:08:2f:c7:18:17:66:4f:87:5c:
3c:fb:29:cc:95:e9:f8:8b:e1:3c:c3:a1:ff:8b:d3:
02:1e:d7:b9:fe:cf:a0:13:f8:9c:27:8b:12:87:89:
62:fd:5b:5a:b3:2d:7d:69:84:fa:94:6d:82:d9:ab:
7b:9c:95:91:b2:2d:8b:57:f0:50:1d:c4:68:cc:95:
31:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:13:5F:F0:2D:30:E4:2F:A4:49:5B:AC:62:CC:1C:79:77:4D:B6:D4
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VxNf8C0w5C-kSVusYswceXdNttQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.108.0/22
Signature Algorithm: sha256WithRSAEncryption
07:24:78:54:21:55:e9:27:38:4d:47:9b:a9:9e:b3:04:38:cc:
16:ae:19:c4:35:7a:d6:2c:79:61:aa:09:5c:6b:40:f2:01:61:
ff:45:96:70:46:69:60:b3:68:f4:b3:02:52:4f:22:fa:e6:5f:
bb:ed:a7:ac:45:18:ee:e5:1b:ac:28:47:91:ce:35:e6:c4:a5:
9a:be:d0:99:7b:67:a8:1b:e0:ce:fd:bf:21:11:0b:2b:74:bb:
0d:da:03:10:7b:3d:55:09:d0:c4:66:0d:ae:1f:d9:e8:73:52:
97:1e:80:2c:44:46:1d:dd:56:88:3a:26:a4:6b:ab:32:f7:90:
a5:3d:1f:cc:df:cd:99:b4:2c:05:f3:c0:e4:c7:8c:1b:41:1e:
82:26:b1:86:9d:7e:8a:c6:cd:df:58:a4:65:7c:ea:e4:c9:b6:
b5:7c:ad:01:b7:ed:9b:1b:89:ed:f0:98:09:52:08:8a:37:78:
ce:23:7f:89:c4:49:19:44:89:0d:19:69:e8:bf:32:fe:01:45:
9e:8b:08:ed:8e:71:77:08:77:73:b7:a7:c3:54:c5:52:42:67:
0e:e7:7c:43:d3:c3:f2:bb:51:39:7f:7c:3a:b4:0c:8e:df:19:
b0:2e:7b:03:84:16:72:62:fc:d6:37:d9:08:90:47:28:76:90:
1b:88:a4:59
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCFcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDA5Mjkx
MDAyMjFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDU3MTM1RkYwMkQzMEU0
MkZBNDQ5NUJBQzYyQ0MxQzc5Nzc0REI2RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYxyC88LzJ+TgrYpeT5xubd8mtVD9rRS+6Zlz9jDcXpCQvDjGW
6YazOoXESoSKCpIxQZjl+rZqyN4aNeyOMr/f/uVolEn8InvEDSlybmrAjx4IO188
RugGAoWUGL3OtyKIRT0OLDNyP4YaHBn4viqetpDTuTyk1kI+xShb4P/74AFOHpYj
HCYNYfp/sX3w9OY4GyFchz9vlwuuvgw7ffIIRRt0lkHyi9GpOxxpmBHmPVEyejhH
fpeCGggvxxgXZk+HXDz7KcyV6fiL4TzDof+L0wIe17n+z6AT+JwnixKHiWL9W1qz
LX1phPqUbYLZq3uclZGyLYtX8FAdxGjMlTErAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUVxNf8C0w5C+kSVusYswceXdNttQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9WeE5mOEMwdzVDLWtT
VnVzWXN3Y2VYZE50dFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQC3xpsMA0GCSqGSIb3DQEBCwUAA4IBAQAHJHhUIVXpJzhNR5upnrMEOMwWrhnE
NXrWLHlhqglca0DyAWH/RZZwRmlgs2j0swJSTyL65l+77aesRRju5RusKEeRzjXm
xKWavtCZe2eoG+DO/b8hEQsrdLsN2gMQez1VCdDEZg2uH9noc1KXHoAsREYd3VaI
Oiaka6sy95ClPR/M382ZtCwF88Dkx4wbQR6CJrGGnX6Kxs3fWKRlfOrkyba1fK0B
t+2bG4nt8JgJUgiKN3jOI3+JxEkZRIkNGWnovzL+AUWeiwjtjnF3CHdzt6fDVMVS
QmcO53xD08Pyu1E5f3w6tAyO3xmwLnsDhBZyYvzWN9kIkEcodpAbiKRZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org