Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/b-oa6-ZIBvLUqhQB0O56j5oywk4.roa
File: b-oa6-ZIBvLUqhQB0O56j5oywk4.roa (raw, json)
Hash identifier: VxN2xj+MK56kSkZ7oQtV7adwRRWJtPzLO1ccpBuMbKo=
Subject key identifier: 6F:EA:1A:EB:E6:48:06:F2:D4:AA:14:01:D0:EE:7A:8F:9A:32:C2:4E
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 09B6
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/b-oa6-ZIBvLUqhQB0O56j5oywk4.roa
Signing time: Tue 01 Dec 2020 06:21:19 +0000
ROA not before: Tue 01 Dec 2020 06:21:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 21859
IP address blocks: 223.26.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2486 (0x9b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 1 06:21:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6FEA1AEBE64806F2D4AA1401D0EE7A8F9A32C24E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:bb:04:ea:29:fc:c7:58:ff:ce:92:ea:30:59:
30:5e:4c:fc:00:c7:1c:36:eb:88:e6:91:57:7d:45:
3a:a7:7f:19:c6:09:72:ca:06:eb:72:34:66:e6:0c:
80:ab:36:bd:bb:8a:2a:98:56:15:dc:12:b5:ba:5f:
f6:35:5d:21:fb:a1:b4:be:bf:a4:c4:cf:9d:24:47:
c1:2f:74:ae:44:bf:09:40:31:e4:df:80:6c:ac:35:
a0:a5:28:c7:e2:b9:e8:03:55:5c:32:03:69:8d:56:
7b:65:22:98:57:b2:4d:7b:dc:53:b8:c9:64:b7:39:
20:68:b7:a3:8e:fe:ba:8a:33:bb:1f:93:cb:88:98:
a3:71:ba:69:b9:a7:b6:60:d7:33:48:12:e0:87:17:
17:69:26:53:46:6e:65:64:e8:ab:11:81:b0:69:9b:
bb:cc:7f:1e:d6:3a:f8:76:bf:60:15:e4:c2:06:10:
c4:ec:4d:17:be:61:58:fe:92:13:7a:53:e7:45:15:
d2:5e:60:8b:fe:8b:44:a9:d2:c2:a2:f7:20:b9:fe:
8c:a4:26:69:7c:6e:78:7c:ff:e6:db:da:cd:3c:07:
0e:20:ec:af:61:77:23:65:ce:37:88:a3:18:3f:a6:
3d:cf:30:a2:b2:7a:67:6b:27:69:96:31:72:12:df:
c3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:EA:1A:EB:E6:48:06:F2:D4:AA:14:01:D0:EE:7A:8F:9A:32:C2:4E
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/b-oa6-ZIBvLUqhQB0O56j5oywk4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.72.0/22
Signature Algorithm: sha256WithRSAEncryption
03:33:91:28:13:1e:26:81:99:76:eb:08:c8:0e:aa:45:49:9d:
c1:3f:2d:ad:78:15:b5:96:b7:bc:71:d4:b3:61:a7:6a:3d:a0:
b1:0a:2e:cd:12:f1:93:23:54:8c:0f:6d:81:4f:f2:d0:1d:52:
4d:dc:2d:90:c8:70:73:0e:7b:4f:36:21:0a:8d:51:f5:e7:dc:
3d:b8:7a:b3:a2:d3:99:74:4a:37:a8:6b:26:d0:35:1b:31:bb:
bf:4b:46:d0:2e:ea:65:a4:56:11:cf:23:38:ea:86:3a:6a:9b:
19:00:41:c5:4b:e0:32:4a:56:92:ac:e1:98:68:c5:2e:d0:01:
7f:fd:e1:fb:0d:27:e2:7a:00:e7:30:1d:e7:b9:79:50:6a:69:
8f:60:8c:04:33:2b:9f:64:27:cb:f7:9e:f3:f1:64:4c:d2:0b:
d1:bd:72:7c:69:a6:05:0b:11:36:bb:09:95:36:17:65:fe:2f:
7c:97:0a:57:c5:2b:b4:98:ad:08:c3:82:04:e7:37:6b:41:56:
9a:6c:d9:7c:4d:01:d2:74:9b:7c:bc:33:a1:41:fe:eb:5a:a8:
3e:a9:44:27:f7:42:72:bc:70:91:b1:10:08:79:af:4c:ce:a5:
43:63:0d:9e:2b:be:bd:cf:2f:ce:dc:b2:3f:44:5b:27:3e:80:
f7:f6:28:3b
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCbYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDEyMDEw
NjIxMTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDZGRUExQUVCRTY0ODA2
RjJENEFBMTQwMUQwRUU3QThGOUEzMkMyNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCguwTqKfzHWP/OkuowWTBeTPwAxxw264jmkVd9RTqnfxnGCXLK
ButyNGbmDICrNr27iiqYVhXcErW6X/Y1XSH7obS+v6TEz50kR8EvdK5EvwlAMeTf
gGysNaClKMfiuegDVVwyA2mNVntlIphXsk173FO4yWS3OSBot6OO/rqKM7sfk8uI
mKNxumm5p7Zg1zNIEuCHFxdpJlNGbmVk6KsRgbBpm7vMfx7WOvh2v2AV5MIGEMTs
TRe+YVj+khN6U+dFFdJeYIv+i0Sp0sKi9yC5/oykJml8bnh8/+bb2s08Bw4g7K9h
dyNlzjeIoxg/pj3PMKKyemdrJ2mWMXIS38P9AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUb+oa6+ZIBvLUqhQB0O56j5oywk4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9iLW9hNi1aSUJ2TFVx
aFFCME81Nmo1b3l3azQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQC3xpIMA0GCSqGSIb3DQEBCwUAA4IBAQADM5EoEx4mgZl26wjIDqpFSZ3BPy2t
eBW1lre8cdSzYadqPaCxCi7NEvGTI1SMD22BT/LQHVJN3C2QyHBzDntPNiEKjVH1
59w9uHqzotOZdEo3qGsm0DUbMbu/S0bQLuplpFYRzyM46oY6apsZAEHFS+AySlaS
rOGYaMUu0AF//eH7DSfiegDnMB3nuXlQammPYIwEMyufZCfL957z8WRM0gvRvXJ8
aaYFCxE2uwmVNhdl/i98lwpXxSu0mK0Iw4IE5zdrQVaabNl8TQHSdJt8vDOhQf7r
Wqg+qUQn90JyvHCRsRAIea9MzqVDYw2eK769zy/O3LI/RFsnPoD39ig7
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org