Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/XZm2BK0YD8Phda6ieC0p-DU9Q14.roa
File: XZm2BK0YD8Phda6ieC0p-DU9Q14.roa (raw, json)
Hash identifier: K0WoA6hqPfLNwCVvYvilKSsIV/LZTVNKIx8/6JQAG1o=
Subject key identifier: 5D:99:B6:04:AD:18:0F:C3:E1:75:AE:A2:78:2D:29:F8:35:3D:43:5E
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 0961
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/XZm2BK0YD8Phda6ieC0p-DU9Q14.roa
Signing time: Wed 29 Sep 2021 02:52:37 +0000
ROA not before: Wed 29 Sep 2021 02:52:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 180.92.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2401 (0x961)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Sep 29 02:52:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5D99B604AD180FC3E175AEA2782D29F8353D435E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a6:10:75:9a:c3:0e:6a:af:5d:eb:14:d2:9f:
d1:c4:7f:c3:6a:c8:f1:89:90:f1:cb:71:5b:ee:f7:
fb:a9:7e:29:94:96:16:ce:03:83:5b:b0:45:af:db:
c1:d5:81:38:78:98:26:08:fc:87:6a:6f:c7:a8:dc:
a0:87:cb:35:13:23:23:54:18:9c:d2:86:48:ee:49:
28:a5:4d:37:f7:34:2e:52:3c:61:a0:9d:45:81:98:
75:d2:60:b4:d2:a8:b5:0d:c2:af:a7:af:0f:2e:ee:
1e:ca:be:1c:93:8b:1d:ac:f3:76:e4:c4:e2:b6:a0:
d6:02:64:0a:aa:29:c2:55:c0:df:c1:e4:ac:64:ce:
05:a1:7f:52:2d:fd:91:0a:ef:ae:c6:33:59:43:87:
33:3a:80:d6:d6:b4:d7:51:85:f6:88:47:f2:5f:14:
c8:10:93:32:a9:e7:a1:26:77:d1:76:76:44:8c:d7:
e2:df:af:38:30:82:49:e9:a6:6a:7b:33:bd:6d:ef:
26:78:db:ee:ba:bc:36:72:fa:4d:8a:e1:06:7f:7c:
a1:60:c4:e6:bb:8a:a6:4e:09:82:48:f1:76:1a:48:
62:ff:ed:80:be:24:14:68:90:16:46:8f:00:2e:6d:
0c:08:1a:b0:af:e5:82:d1:93:26:dc:ca:83:da:ef:
2d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:99:B6:04:AD:18:0F:C3:E1:75:AE:A2:78:2D:29:F8:35:3D:43:5E
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/XZm2BK0YD8Phda6ieC0p-DU9Q14.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.92.0.0/20
Signature Algorithm: sha256WithRSAEncryption
28:6b:80:d3:f6:d3:dc:79:23:cc:06:14:b3:82:1b:c7:08:39:
ca:be:62:48:d3:10:49:10:94:b0:18:13:a2:fe:53:1c:72:4e:
2c:95:43:20:a6:49:18:2c:18:de:d4:39:71:f1:a0:16:34:e4:
12:1e:95:ea:09:71:d3:7d:f7:b3:5b:bd:5f:24:73:34:88:1b:
9a:8a:29:3e:9b:e5:64:f7:91:67:84:c5:ce:d9:11:87:8b:3f:
aa:c1:86:21:f2:ee:6e:cc:0d:18:46:1c:19:14:52:75:c4:2e:
ca:6d:fc:5d:89:e2:54:5d:76:bf:9e:e7:f7:ed:dc:89:ff:36:
a7:bd:12:16:45:35:93:33:14:6f:20:72:b6:8c:6d:14:ab:74:
9f:c5:77:bb:fd:84:05:6e:19:d5:6c:10:93:2d:9e:16:85:de:
1c:a2:f2:1d:4c:3f:67:2c:fa:a3:c6:68:dc:3a:1e:37:13:12:
b3:0b:50:5b:09:34:5e:96:b8:ea:e4:51:d9:c4:7e:4b:2f:b8:
ba:5e:70:1b:62:96:97:87:b5:18:31:17:27:db:46:58:89:c3:
af:21:53:b5:b8:4a:c3:c4:6d:cc:91:3d:d0:c1:cf:34:0e:82:
6f:0d:22:79:b1:61:03:a6:06:e6:96:c0:a3:ff:4e:9f:ed:cd:
ea:78:4b:b7
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE
RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yMTA5Mjkw
MjUyMzdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDVEOTlCNjA0QUQxODBG
QzNFMTc1QUVBMjc4MkQyOUY4MzUzRDQzNUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIphB1msMOaq9d6xTSn9HEf8NqyPGJkPHLcVvu9/upfimUlhbO
A4NbsEWv28HVgTh4mCYI/Idqb8eo3KCHyzUTIyNUGJzShkjuSSilTTf3NC5SPGGg
nUWBmHXSYLTSqLUNwq+nrw8u7h7KvhyTix2s83bkxOK2oNYCZAqqKcJVwN/B5Kxk
zgWhf1It/ZEK767GM1lDhzM6gNbWtNdRhfaIR/JfFMgQkzKp56Emd9F2dkSM1+Lf
rzgwgknppmp7M71t7yZ42+66vDZy+k2K4QZ/fKFgxOa7iqZOCYJI8XYaSGL/7YC+
JBRokBZGjwAubQwIGrCv5YLRkybcyoPa7y1pAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUXZm2BK0YD8Phda6ieC0p+DU9Q14wHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv
+/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU
Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvWFptMkJLMFlEOFBoZGE2
aWVDMHAtRFU5UTE0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BLRcADANBgkqhkiG9w0BAQsFAAOCAQEAKGuA0/bT3HkjzAYUs4Ibxwg5yr5iSNMQ
SRCUsBgTov5THHJOLJVDIKZJGCwY3tQ5cfGgFjTkEh6V6glx0333s1u9XyRzNIgb
moopPpvlZPeRZ4TFztkRh4s/qsGGIfLubswNGEYcGRRSdcQuym38XYniVF12v57n
9+3cif82p70SFkU1kzMUbyBytoxtFKt0n8V3u/2EBW4Z1WwQky2eFoXeHKLyHUw/
Zyz6o8Zo3DoeNxMSswtQWwk0Xpa46uRR2cR+Sy+4ul5wG2KWl4e1GDEXJ9tGWInD
ryFTtbhKw8RtzJE90MHPNA6Cbw0iebFhA6YG5pbAo/9On+3N6nhLtw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:59 2023 by rpki-client on console-fra.rpki-client.org