Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zOeoNTyEOVmANZfzwoue83Mny7g.roa
File: zOeoNTyEOVmANZfzwoue83Mny7g.roa (raw, json)
Hash identifier: DfBvz6NJTOPvpsM0H5WcZ1lJ6N2zVicS+tCbB8uCRSM=
Subject key identifier: CC:E7:A8:35:3C:84:39:59:80:35:97:F3:C2:8B:9E:F3:73:27:CB:B8
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E32
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zOeoNTyEOVmANZfzwoue83Mny7g.roa
Signing time: Thu 12 Jan 2023 03:28:33 +0000
ROA not before: Thu 12 Jan 2023 03:28:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 137263
IP address blocks: 113.21.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3634 (0xe32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Jan 12 03:28:33 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CCE7A8353C843959803597F3C28B9EF37327CBB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cf:f4:b1:81:77:9d:9a:ab:d8:16:66:0c:ef:
29:61:0d:61:a9:0c:45:ab:cc:5d:32:d8:66:07:c2:
3b:6a:e4:9c:da:f1:05:0d:5f:43:56:7b:19:7e:f7:
ee:d2:cf:7d:10:b1:3e:d1:84:b8:8a:d9:80:69:8b:
dd:4d:ba:16:0d:ca:d2:5f:dd:a0:5e:64:ae:4f:08:
b5:e2:52:61:2c:ef:20:3e:5c:15:f1:ee:21:a7:40:
d1:ea:57:e1:6e:1c:c2:25:49:c3:9a:51:1d:df:09:
46:39:5b:11:23:99:9c:58:d1:9a:0c:4d:fe:8a:36:
b1:3b:c1:cf:b6:c1:62:88:87:8b:06:32:dc:84:3f:
b2:cf:30:55:6d:ad:ba:8c:30:5a:ee:4b:21:b7:f1:
58:2a:10:fa:c9:05:ea:1a:c3:22:af:4a:ca:0c:69:
d1:c0:e2:f0:ce:a1:6b:f0:71:26:bd:50:5f:ad:6e:
bb:86:0f:53:12:b5:49:38:92:2a:d1:c0:93:d8:4e:
16:b5:ae:d0:1b:1a:63:5f:7c:cf:c1:de:c5:5a:79:
eb:8b:07:44:32:09:32:67:a2:d4:62:76:1f:0b:eb:
e0:95:f7:7f:6c:8b:e9:f9:02:87:1d:89:1c:88:08:
9e:54:9a:08:b9:99:a1:4d:fe:7e:49:4a:93:11:e4:
e3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E7:A8:35:3C:84:39:59:80:35:97:F3:C2:8B:9E:F3:73:27:CB:B8
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zOeoNTyEOVmANZfzwoue83Mny7g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.92.0/24
Signature Algorithm: sha256WithRSAEncryption
72:20:97:f9:d9:48:5c:6c:89:bc:d4:86:b4:53:0c:30:31:95:
d7:ae:f5:2f:da:1a:5b:11:cd:a4:19:17:ef:54:95:b5:ba:6b:
c7:82:81:1a:16:86:17:f6:85:6e:f8:70:4c:28:b5:a6:7c:71:
89:9e:ad:da:1e:4f:9e:6b:a3:99:e6:60:f2:e8:b4:31:0e:ee:
d2:75:f9:22:17:98:c4:f2:7c:bf:b4:3a:0b:fb:e8:df:2f:8e:
e5:fa:4b:07:08:6e:34:25:0c:39:b8:ed:a0:31:b5:da:9f:c6:
76:ee:15:42:86:03:6a:e9:18:71:f9:52:14:75:97:44:24:20:
68:57:cb:de:84:d9:a6:99:c0:85:59:3a:ca:e5:bf:28:a9:5d:
06:3e:0d:20:a6:d4:4f:00:79:bb:8d:06:36:16:6e:23:51:9f:
26:5d:09:72:e4:76:36:42:bb:c1:a7:7d:58:6d:1c:d5:4b:91:
17:2d:ab:e0:65:79:a0:a9:7d:3a:86:1c:10:d9:ef:7d:35:81:
50:0a:91:d6:c5:11:15:20:c6:c3:df:bd:cc:10:09:82:e7:a4:
52:fa:0a:ec:c4:f5:c1:0f:32:f2:16:c6:ac:71:45:30:c5:ac:
f3:ea:e6:bd:2b:db:91:ee:40:65:40:e8:d2:19:d0:b7:fb:18:
77:7a:1c:46
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDjIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzAxMTIw
MzI4MzNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKENDRTdBODM1M0M4NDM5
NTk4MDM1OTdGM0MyOEI5RUYzNzMyN0NCQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNz/SxgXedmqvYFmYM7ylhDWGpDEWrzF0y2GYHwjtq5Jza8QUN
X0NWexl+9+7Sz30QsT7RhLiK2YBpi91NuhYNytJf3aBeZK5PCLXiUmEs7yA+XBXx
7iGnQNHqV+FuHMIlScOaUR3fCUY5WxEjmZxY0ZoMTf6KNrE7wc+2wWKIh4sGMtyE
P7LPMFVtrbqMMFruSyG38VgqEPrJBeoawyKvSsoMadHA4vDOoWvwcSa9UF+tbruG
D1MStUk4kirRwJPYTha1rtAbGmNffM/B3sVaeeuLB0QyCTJnotRidh8L6+CV939s
i+n5AocdiRyICJ5Umgi5maFN/n5JSpMR5OMbAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUzOeoNTyEOVmANZfzwoue83Mny7gwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy96T2VvTlR5RU9WbUFO
WmZ6d291ZTgzTW55N2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAcRVcMA0GCSqGSIb3DQEBCwUAA4IBAQByIJf52UhcbIm81Ia0UwwwMZXXrvUv
2hpbEc2kGRfvVJW1umvHgoEaFoYX9oVu+HBMKLWmfHGJnq3aHk+ea6OZ5mDy6LQx
Du7SdfkiF5jE8ny/tDoL++jfL47l+ksHCG40JQw5uO2gMbXan8Z27hVChgNq6Rhx
+VIUdZdEJCBoV8vehNmmmcCFWTrK5b8oqV0GPg0gptRPAHm7jQY2Fm4jUZ8mXQly
5HY2QrvBp31YbRzVS5EXLavgZXmgqX06hhwQ2e99NYFQCpHWxREVIMbD373MEAmC
56RS+grsxPXBDzLyFsascUUwxazz6ua9K9uR7kBlQOjSGdC3+xh3ehxG
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org