Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCTV/rp4SqZC019BsLJm3-uL3fBYkbs0.roa
File: rp4SqZC019BsLJm3-uL3fBYkbs0.roa (raw, json)
Hash identifier: By85PqtBLNTrMVRDpV0IuPQ47Jr60M3/Xy7HxYcY+hs=
Subject key identifier: AE:9E:12:A9:90:B4:D7:D0:6C:2C:99:B7:FA:E2:F7:7C:16:24:6E:CD
Certificate issuer: /CN=A6FE5D1C93127E4AAEFF100F3A5C330F2DD1ABC0
Certificate serial: 0945
Authority key identifier: A6:FE:5D:1C:93:12:7E:4A:AE:FF:10:0F:3A:5C:33:0F:2D:D1:AB:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/rp4SqZC019BsLJm3-uL3fBYkbs0.roa
Signing time: Wed 29 Sep 2021 02:45:14 +0000
ROA not before: Wed 29 Sep 2021 02:45:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131607
IP address blocks: 27.0.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2373 (0x945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6FE5D1C93127E4AAEFF100F3A5C330F2DD1ABC0
Validity
Not Before: Sep 29 02:45:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AE9E12A990B4D7D06C2C99B7FAE2F77C16246ECD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:78:89:38:f2:db:77:9f:0b:22:4e:a8:57:16:
96:71:b1:b1:f5:68:6f:c1:21:9e:f5:08:61:13:06:
46:4e:26:1e:59:36:ea:87:c5:f6:e2:00:df:ad:0c:
ad:e5:00:97:8d:de:e9:94:97:1b:b5:2f:68:29:e3:
36:8d:e1:c5:f4:9f:ed:80:cc:46:72:61:aa:bb:5e:
8c:97:fe:89:c8:b3:d1:42:2d:03:7d:85:ab:12:57:
52:c0:e6:b8:4f:84:c0:a3:38:e6:d9:d7:06:d3:c6:
ac:c4:84:d7:13:06:c9:77:f4:e8:09:fa:93:df:ab:
e6:f7:6d:0b:1b:9c:c1:55:6b:19:7d:1b:74:27:ac:
d3:f4:ec:13:1c:aa:9c:d7:4f:22:12:e7:da:08:4c:
f8:c5:52:8c:cc:9b:a0:25:bb:5a:e0:8e:39:1d:10:
e7:12:95:95:c6:46:d9:56:cb:c9:f0:f7:01:ca:42:
06:76:d9:6c:06:26:bf:ad:e9:39:8e:c9:16:46:ed:
ce:9b:80:96:f5:57:89:fe:b9:e3:35:a6:1b:60:50:
22:c8:8d:63:42:00:75:c9:f2:10:aa:de:22:9e:38:
50:cf:b2:26:0c:88:25:1b:89:b9:9b:2d:3c:73:52:
ef:a9:5d:1d:57:e1:7e:6a:9f:81:89:9c:6a:d8:76:
3d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:9E:12:A9:90:B4:D7:D0:6C:2C:99:B7:FA:E2:F7:7C:16:24:6E:CD
X509v3 Authority Key Identifier:
keyid:A6:FE:5D:1C:93:12:7E:4A:AE:FF:10:0F:3A:5C:33:0F:2D:D1:AB:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pv5dHJMSfkqu_xAPOlwzDy3Rq8A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCTV/rp4SqZC019BsLJm3-uL3fBYkbs0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.0.152.0/22
Signature Algorithm: sha256WithRSAEncryption
60:cf:87:5d:61:3f:45:e9:03:f5:39:71:16:ee:da:51:76:69:
72:2b:02:53:0d:84:00:5a:25:93:0d:16:13:07:03:5c:1b:14:
b8:05:b3:19:bf:02:96:cc:12:38:f5:6e:ef:f3:c4:df:07:28:
b8:09:68:e3:c7:1e:08:3d:d7:a3:bb:41:91:7e:30:a4:b1:ce:
78:e5:9f:85:6d:b7:be:2a:68:88:b8:3e:02:08:3c:62:1f:94:
d3:82:e3:0c:c4:44:83:2c:39:35:ff:ba:0a:71:28:c7:77:66:
3e:79:a1:75:9d:5b:aa:d8:d9:e8:83:6c:8e:de:65:37:5d:91:
b9:5e:9e:66:93:35:ac:45:0b:37:d3:2b:d3:ab:54:5c:16:e1:
29:53:cf:4e:8f:54:46:ef:eb:42:f9:1e:8a:69:45:f8:97:a4:
09:2b:28:cb:a4:82:25:5a:f4:6d:16:56:2b:a2:2b:25:26:e0:
3b:85:92:a4:20:f1:c8:8f:da:fe:c7:77:f1:7a:88:93:8b:c4:
ae:14:7d:0a:18:0a:d3:07:87:11:21:56:be:3a:b8:1c:c2:07:
47:44:61:b2:19:03:bb:f9:65:34:f3:c1:ce:3f:ff:0f:7e:e7:
e6:0e:85:95:89:f1:2f:38:a7:90:7c:69:3c:2d:60:2f:94:e0:
e3:d1:d0:20
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCUUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZG
RTVEMUM5MzEyN0U0QUFFRkYxMDBGM0E1QzMzMEYyREQxQUJDMDAeFw0yMTA5Mjkw
MjQ1MTRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEFFOUUxMkE5OTBCNEQ3
RDA2QzJDOTlCN0ZBRTJGNzdDMTYyNDZFQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCweIk48tt3nwsiTqhXFpZxsbH1aG/BIZ71CGETBkZOJh5ZNuqH
xfbiAN+tDK3lAJeN3umUlxu1L2gp4zaN4cX0n+2AzEZyYaq7XoyX/onIs9FCLQN9
hasSV1LA5rhPhMCjOObZ1wbTxqzEhNcTBsl39OgJ+pPfq+b3bQsbnMFVaxl9G3Qn
rNP07BMcqpzXTyIS59oITPjFUozMm6Alu1rgjjkdEOcSlZXGRtlWy8nw9wHKQgZ2
2WwGJr+t6TmOyRZG7c6bgJb1V4n+ueM1phtgUCLIjWNCAHXJ8hCq3iKeOFDPsiYM
iCUbibmbLTxzUu+pXR1X4X5qn4GJnGrYdj1/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUrp4SqZC019BsLJm3+uL3fBYkbs0wHwYDVR0jBBgwFoAUpv5dHJMSfkqu/xAP
OlwzDy3Rq8AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRENUVi9w
djVkSEpNU2ZrcXVfeEFQT2x3ekR5M1JxOEEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3B2NWRISk1TZmtxdV94QVBPbHd6RHkzUnE4QS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0RDVFYvcnA0U3FaQzAxOUJzTEptMy11TDNm
QllrYnMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhsAmDAN
BgkqhkiG9w0BAQsFAAOCAQEAYM+HXWE/RekD9TlxFu7aUXZpcisCUw2EAFolkw0W
EwcDXBsUuAWzGb8ClswSOPVu7/PE3wcouAlo48ceCD3Xo7tBkX4wpLHOeOWfhW23
vipoiLg+Agg8Yh+U04LjDMREgyw5Nf+6CnEox3dmPnmhdZ1bqtjZ6INsjt5lN12R
uV6eZpM1rEULN9Mr06tUXBbhKVPPTo9URu/rQvkeimlF+JekCSsoy6SCJVr0bRZW
K6IrJSbgO4WSpCDxyI/a/sd38XqIk4vErhR9ChgK0weHESFWvjq4HMIHR0RhshkD
u/llNPPBzj//D37n5g6FlYnxLzinkHxpPC1gL5Tg49HQIA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org