Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/2j8MGeWR5nGZUI4iVsRUUrCGd5E.roa
File: 2j8MGeWR5nGZUI4iVsRUUrCGd5E.roa (raw, json)
Hash identifier: WybOq4irGkRKfvu+MVZne9F2xSY6tujNupb/rH5q8Yw=
Subject key identifier: DA:3F:0C:19:E5:91:E6:71:99:50:8E:22:56:C4:54:52:B0:86:77:91
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 097C
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/2j8MGeWR5nGZUI4iVsRUUrCGd5E.roa
Signing time: Wed 29 Sep 2021 02:52:23 +0000
ROA not before: Wed 29 Sep 2021 02:52:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18046
IP address blocks: 101.0.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2428 (0x97c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Sep 29 02:52:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DA3F0C19E591E67199508E2256C45452B0867791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ac:21:92:a6:63:01:6c:30:7d:ba:8e:5b:f8:
31:93:e7:0b:7b:34:1f:0c:38:ea:db:24:f7:00:56:
9c:9f:be:7e:be:32:c0:bb:61:c4:f9:2a:06:72:97:
03:43:a9:d6:93:38:84:70:62:74:a3:55:d0:3e:19:
fe:29:1b:67:7d:fa:9a:4e:ea:75:1c:f7:1f:79:dd:
53:3f:49:5a:b6:6b:de:9e:42:e0:1b:17:60:f1:45:
12:9f:d1:02:e8:83:0e:e5:ef:6a:e0:99:46:88:a2:
9b:42:14:09:5f:77:ad:32:33:c9:81:02:8b:36:0f:
62:44:ca:64:99:6e:06:30:1c:5c:ef:35:42:9e:d0:
81:91:a4:8c:7f:a0:40:45:9d:02:9b:e0:3c:b3:d1:
bf:21:f1:3f:a4:01:f5:f0:0c:b6:ef:70:59:fc:26:
d9:34:76:45:25:cb:6f:d0:9c:8c:48:35:0e:36:2f:
70:d3:c9:11:5f:1d:66:b5:e3:d0:4f:8b:26:3f:33:
69:91:4a:81:4c:97:28:3b:23:9d:f4:fb:80:1c:b5:
cc:2e:c4:e2:18:b8:53:11:6c:8c:77:fa:d0:18:e1:
a8:ce:6f:1a:9e:7a:1f:45:6c:7a:d9:01:ba:bc:9b:
0d:b8:cd:15:12:e0:df:d2:00:63:1d:7d:f4:f6:58:
42:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:3F:0C:19:E5:91:E6:71:99:50:8E:22:56:C4:54:52:B0:86:77:91
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/2j8MGeWR5nGZUI4iVsRUUrCGd5E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.0.224.0/21
Signature Algorithm: sha256WithRSAEncryption
3b:79:a2:70:fe:4c:b8:d5:06:93:52:ab:90:bc:46:27:47:95:
d2:00:bf:02:c0:2d:4d:a3:00:4a:98:63:f7:1f:ca:55:6a:a5:
c2:fb:26:63:9b:7b:12:86:be:0c:7b:c4:18:81:3d:87:c4:45:
b1:96:2f:38:a2:29:0a:2f:af:92:ae:97:0a:e6:c3:15:5f:9e:
15:5d:b3:6e:63:a9:98:39:62:a9:96:2a:f1:b8:ec:c6:54:75:
e2:a1:1b:a7:60:63:b9:be:65:3f:4f:f4:dc:fd:39:31:9c:f8:
7c:02:af:c8:f7:5b:06:44:b1:c4:82:94:d8:76:76:e7:03:9e:
63:20:b2:13:9d:32:1c:3e:53:12:1d:9a:8e:1b:85:77:92:07:
bb:1f:7a:58:2e:88:7a:00:06:5f:2f:b2:f3:d8:77:87:81:3f:
dd:f0:8e:63:a5:84:fd:f8:22:d9:5f:dc:41:76:e9:a0:9d:54:
28:bf:25:8a:66:e9:5d:96:79:4c:6b:bd:e1:fb:0e:07:73:23:
41:73:e2:01:5e:3c:c3:e5:56:c8:1d:56:40:2d:5d:e8:ea:8f:
b7:e8:30:44:71:d7:f3:cc:88:85:d1:eb:bc:98:f4:08:b0:6e:
7f:a7:b5:8e:0d:f1:c4:e9:22:dc:cd:48:97:c3:2a:f0:92:22:
0c:19:e2:42
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICCXwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1
NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yMTA5Mjkw
MjUyMjNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERBM0YwQzE5RTU5MUU2
NzE5OTUwOEUyMjU2QzQ1NDUyQjA4Njc3OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+rCGSpmMBbDB9uo5b+DGT5wt7NB8MOOrbJPcAVpyfvn6+MsC7
YcT5KgZylwNDqdaTOIRwYnSjVdA+Gf4pG2d9+ppO6nUc9x953VM/SVq2a96eQuAb
F2DxRRKf0QLogw7l72rgmUaIoptCFAlfd60yM8mBAos2D2JEymSZbgYwHFzvNUKe
0IGRpIx/oEBFnQKb4Dyz0b8h8T+kAfXwDLbvcFn8Jtk0dkUly2/QnIxINQ42L3DT
yRFfHWa149BPiyY/M2mRSoFMlyg7I530+4ActcwuxOIYuFMRbIx3+tAY4ajObxqe
eh9FbHrZAbq8mw24zRUS4N/SAGMdffT2WEItAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQU2j8MGeWR5nGZUI4iVsRUUrCGd5EwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU
LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t
Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vMmo4TUdlV1I1
bkdaVUk0aVZzUlVVckNHZDVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEA2UA4DANBgkqhkiG9w0BAQsFAAOCAQEAO3micP5MuNUGk1KrkLxGJ0eV
0gC/AsAtTaMASphj9x/KVWqlwvsmY5t7Eoa+DHvEGIE9h8RFsZYvOKIpCi+vkq6X
CubDFV+eFV2zbmOpmDliqZYq8bjsxlR14qEbp2Bjub5lP0/03P05MZz4fAKvyPdb
BkSxxIKU2HZ25wOeYyCyE50yHD5TEh2ajhuFd5IHux96WC6IegAGXy+y89h3h4E/
3fCOY6WE/fgi2V/cQXbpoJ1UKL8limbpXZZ5TGu94fsOB3MjQXPiAV48w+VWyB1W
QC1d6OqPt+gwRHHX88yIhdHrvJj0CLBuf6e1jg3xxOki3M1Il8Mq8JIiDBniQg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org