Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/W3KR0wf1KCj3e3IwkAfJElK_SR4.roa
File: W3KR0wf1KCj3e3IwkAfJElK_SR4.roa (raw, json)
Hash identifier: FEXfCAOxRD5AJDfNfwcm0i1VuSus5oXhgQhbs1zXmg4=
Subject key identifier: 5B:72:91:D3:07:F5:28:28:F7:7B:72:30:90:07:C9:12:52:BF:49:1E
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 0787
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/W3KR0wf1KCj3e3IwkAfJElK_SR4.roa
Signing time: Tue 29 Sep 2020 09:59:42 +0000
ROA not before: Tue 29 Sep 2020 09:59:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 122.200.152.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1927 (0x787)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Sep 29 09:59:42 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5B7291D307F52828F77B72309007C91252BF491E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:01:7f:01:a0:43:6f:eb:1d:2c:81:73:53:f0:
16:77:d0:2c:a1:98:24:1c:91:ea:aa:a6:f4:f3:c2:
b6:f3:7e:98:9a:ba:22:b9:b0:8f:ca:8b:0d:41:6e:
c1:23:47:04:7d:0f:6b:72:f6:ca:60:07:05:67:e0:
ec:83:48:a3:6e:1b:0c:37:14:3b:24:da:b7:51:ee:
7e:e6:87:ef:d6:a0:9a:8d:44:80:41:8e:bb:14:f3:
2b:59:0f:06:10:d3:33:58:7c:1c:15:10:80:3e:e3:
cf:fb:ed:35:8a:84:2d:dc:88:7c:cd:42:1f:63:75:
97:05:e9:51:bb:54:e1:47:d3:7b:90:d6:5a:16:ce:
31:ae:07:c2:f4:76:a5:12:c9:18:4b:2f:b5:b4:2b:
02:56:94:d7:c6:38:02:15:dd:30:38:d2:71:76:4e:
c9:e2:20:00:5a:b5:48:d4:c9:25:19:63:cb:7b:b0:
3e:ed:c7:ef:3e:a6:72:53:89:7d:4d:5c:b0:2f:71:
e4:c3:bb:ec:1e:b3:3a:be:c8:65:3b:b8:28:0b:b2:
74:9e:99:b5:2a:90:7b:82:49:36:52:8a:ea:1c:d8:
aa:a1:4d:57:9b:b5:67:92:a6:21:d7:62:d2:79:eb:
e5:b0:50:bb:db:bc:0e:62:53:b4:5d:f2:a3:0c:42:
46:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:72:91:D3:07:F5:28:28:F7:7B:72:30:90:07:C9:12:52:BF:49:1E
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/W3KR0wf1KCj3e3IwkAfJElK_SR4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.200.152.0/21
Signature Algorithm: sha256WithRSAEncryption
2f:fe:c0:06:f9:68:d3:a8:ab:92:d9:46:25:0b:b0:cb:f1:ee:
be:22:da:90:50:49:b1:ae:9e:85:6e:3c:b0:e6:c1:98:a9:97:
47:75:73:e3:77:c4:85:39:28:1c:7b:64:b8:08:70:fd:34:15:
b9:87:8f:32:5b:10:f8:85:93:b7:ec:05:24:80:fe:4f:97:be:
22:b8:bc:a6:78:e2:a4:d6:1d:06:69:73:b1:48:a2:a0:72:51:
70:e9:62:db:74:69:ed:bc:3a:75:cf:cb:f6:ad:5f:be:77:e8:
8c:c5:eb:15:e2:92:81:69:30:e3:53:c4:56:a9:45:77:26:80:
b8:cc:0e:a0:be:8c:fb:fc:8f:4b:3e:50:2e:a1:f6:c5:be:bc:
b5:17:e9:16:f6:6e:da:d0:6d:02:85:e6:69:4e:b8:3a:b4:c9:
a4:ba:21:30:da:ef:5a:cd:82:5e:be:13:fd:6e:83:d9:ee:16:
47:67:85:0b:c7:10:2a:95:1d:3a:da:27:3f:53:d1:d0:71:6f:
52:7d:53:2f:f5:49:f2:9d:d0:ec:3f:b0:e0:45:95:c4:ad:c0:
a2:16:81:88:36:20:54:44:c5:e4:e2:d0:91:3f:a3:f9:ad:ce:
c6:e0:db:13:67:e8:7d:f1:6c:72:22:95:bc:93:e5:9c:ed:ba:
b1:70:88:dc
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICB4cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1
NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yMDA5Mjkw
OTU5NDJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDVCNzI5MUQzMDdGNTI4
MjhGNzdCNzIzMDkwMDdDOTEyNTJCRjQ5MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+AX8BoENv6x0sgXNT8BZ30CyhmCQckeqqpvTzwrbzfpiauiK5
sI/Kiw1BbsEjRwR9D2ty9spgBwVn4OyDSKNuGww3FDsk2rdR7n7mh+/WoJqNRIBB
jrsU8ytZDwYQ0zNYfBwVEIA+48/77TWKhC3ciHzNQh9jdZcF6VG7VOFH03uQ1loW
zjGuB8L0dqUSyRhLL7W0KwJWlNfGOAIV3TA40nF2TsniIABatUjUySUZY8t7sD7t
x+8+pnJTiX1NXLAvceTDu+weszq+yGU7uCgLsnSembUqkHuCSTZSiuoc2KqhTVeb
tWeSpiHXYtJ56+WwULvbvA5iU7Rd8qMMQkZLAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUW3KR0wf1KCj3e3IwkAfJElK/SR4wHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU
LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t
Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vVzNLUjB3ZjFL
Q2ozZTNJd2tBZkpFbEtfU1I0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEA3rImDANBgkqhkiG9w0BAQsFAAOCAQEAL/7ABvlo06irktlGJQuwy/Hu
viLakFBJsa6ehW48sObBmKmXR3Vz43fEhTkoHHtkuAhw/TQVuYePMlsQ+IWTt+wF
JID+T5e+Iri8pnjipNYdBmlzsUiioHJRcOli23Rp7bw6dc/L9q1fvnfojMXrFeKS
gWkw41PEVqlFdyaAuMwOoL6M+/yPSz5QLqH2xb68tRfpFvZu2tBtAoXmaU64OrTJ
pLohMNrvWs2CXr4T/W6D2e4WR2eFC8cQKpUdOtonP1PR0HFvUn1TL/VJ8p3Q7D+w
4EWVxK3AohaBiDYgVETF5OLQkT+j+a3OxuDbE2foffFsciKVvJPlnO26sXCI3A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org