Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EBT/qJPjM37v44wKW04b3Y5KctUSol8.roa
File: qJPjM37v44wKW04b3Y5KctUSol8.roa (raw, json)
Hash identifier: cRn634qr1oCu/oHnDx8zPPZlqr0iUaXlF5V2l3AUKto=
Subject key identifier: A8:93:E3:33:7E:EF:E3:8C:0A:5B:4E:1B:DD:8E:4A:72:D5:12:A2:5F
Certificate issuer: /CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Certificate serial: 08B5
Authority key identifier: 2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/qJPjM37v44wKW04b3Y5KctUSol8.roa
Signing time: Sun 07 Feb 2021 11:36:05 +0000
ROA not before: Sun 07 Feb 2021 11:36:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 211.76.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2229 (0x8b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Validity
Not Before: Feb 7 11:36:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A893E3337EEFE38C0A5B4E1BDD8E4A72D512A25F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ba:0b:d9:93:94:cc:16:aa:eb:1b:63:7c:83:
45:b1:ec:66:cf:ee:e3:ca:1d:e8:2c:6d:5d:19:fc:
40:a8:84:4d:07:f1:e1:c5:88:d5:23:b5:e1:bb:52:
c0:c1:46:c6:b9:ae:68:18:44:cb:27:e2:27:24:05:
e8:3d:e4:37:35:81:ae:4b:11:eb:c1:d0:79:7b:f8:
6f:87:72:c5:93:3e:e0:5e:27:1b:1e:eb:b1:04:9c:
77:c3:3c:db:62:f6:cb:a5:49:3e:86:07:e7:8d:94:
b4:cf:d8:61:05:ff:81:b4:a2:88:31:d8:d0:5d:8f:
05:fd:78:72:a3:d2:31:92:35:ac:bc:b2:4c:06:7a:
16:cd:4e:5a:e9:fe:e9:50:d0:f9:ff:f5:e0:7b:3c:
2d:bf:41:8b:2b:88:8a:76:54:df:6f:c0:b2:b9:2b:
d6:06:e2:cd:6d:c0:bf:36:c6:e1:58:17:43:17:fd:
56:40:c9:2d:95:4c:38:8f:35:cf:66:69:e0:01:c0:
8d:81:3a:90:3e:4d:b2:45:ed:53:34:92:80:0e:94:
a3:f4:ca:8a:62:0b:92:65:ee:a8:4e:70:d0:02:05:
ee:9d:b9:f5:bf:d5:21:9b:31:35:89:be:9c:b1:82:
f6:7e:c9:50:d0:46:e9:c9:6b:0f:48:cc:2c:88:7f:
2c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:93:E3:33:7E:EF:E3:8C:0A:5B:4E:1B:DD:8E:4A:72:D5:12:A2:5F
X509v3 Authority Key Identifier:
keyid:2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/LYTKJpMg4lYhai3uLqOBowRSarQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/qJPjM37v44wKW04b3Y5KctUSol8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.106.0/24
Signature Algorithm: sha256WithRSAEncryption
42:3c:ea:b6:0f:c9:a2:ac:a9:29:1b:58:4d:b7:32:e7:9e:55:
b5:4c:80:3d:ee:b1:59:9d:9c:cc:f7:cf:a5:32:27:0b:ed:6d:
9d:81:9b:73:94:1e:bb:e6:2e:2d:3a:75:b6:c3:a6:01:1e:e5:
b8:f5:df:86:d0:b0:92:e4:44:a4:b2:b3:b4:11:63:87:ab:a0:
c4:d1:14:fb:13:09:90:d5:54:9d:4c:76:76:c6:d2:85:23:74:
36:ff:02:96:26:21:1c:38:39:c3:02:55:ea:0b:2d:2e:70:a0:
6f:9a:64:9f:1a:10:8e:03:8f:31:b6:21:57:9e:0a:4a:e3:7e:
2e:2b:b4:af:9d:d5:4b:fa:98:1f:28:6f:9c:90:e2:5d:10:84:
4b:b4:41:72:35:d5:ea:62:a3:cf:40:4e:e5:d1:fb:ed:3a:21:
8d:de:06:28:19:73:58:9f:de:1e:e5:83:e2:7b:f8:00:16:72:
0e:85:ff:ab:7b:b0:fc:93:57:b4:73:c2:ad:b4:9e:af:d0:6e:
90:63:74:cb:a8:7c:de:2d:cf:7b:df:8a:07:ce:19:32:07:73:
29:9b:3d:91:7b:52:a8:4a:b9:64:6d:48:56:96:4a:34:2e:01:
e9:f4:30:b4:c7:3a:09:b2:b5:d3:85:19:da:1d:0f:c5:38:03:
0d:d9:34:9b
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCLUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkQ4
NENBMjY5MzIwRTI1NjIxNkEyREVFMkVBMzgxQTMwNDUyNkFCNDAeFw0yMTAyMDcx
MTM2MDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEE4OTNFMzMzN0VFRkUz
OEMwQTVCNEUxQkREOEU0QTcyRDUxMkEyNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDXugvZk5TMFqrrG2N8g0Wx7GbP7uPKHegsbV0Z/ECohE0H8eHF
iNUjteG7UsDBRsa5rmgYRMsn4ickBeg95Dc1ga5LEevB0Hl7+G+HcsWTPuBeJxse
67EEnHfDPNti9sulST6GB+eNlLTP2GEF/4G0oogx2NBdjwX9eHKj0jGSNay8skwG
ehbNTlrp/ulQ0Pn/9eB7PC2/QYsriIp2VN9vwLK5K9YG4s1twL82xuFYF0MX/VZA
yS2VTDiPNc9maeABwI2BOpA+TbJF7VM0koAOlKP0yopiC5Jl7qhOcNACBe6dufW/
1SGbMTWJvpyxgvZ+yVDQRunJaw9IzCyIfyylAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUqJPjM37v44wKW04b3Y5KctUSol8wHwYDVR0jBBgwFoAULYTKJpMg4lYhai3u
LqOBowRSarQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUJUL0xZ
VEtKcE1nNGxZaGFpM3VMcU9Cb3dSU2FyUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TFlUS0pwTWc0bFloYWkzdUxxT0Jvd1JTYXJRLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRUJUL3FKUGpNMzd2NDR3S1cwNGIzWTVLY3RV
U29sOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADTTGowDQYJ
KoZIhvcNAQELBQADggEBAEI86rYPyaKsqSkbWE23MueeVbVMgD3usVmdnMz3z6Uy
JwvtbZ2Bm3OUHrvmLi06dbbDpgEe5bj134bQsJLkRKSys7QRY4eroMTRFPsTCZDV
VJ1MdnbG0oUjdDb/ApYmIRw4OcMCVeoLLS5woG+aZJ8aEI4DjzG2IVeeCkrjfi4r
tK+d1Uv6mB8ob5yQ4l0QhEu0QXI11epio89ATuXR++06IY3eBigZc1if3h7lg+J7
+AAWcg6F/6t7sPyTV7Rzwq20nq/QbpBjdMuofN4tz3vfigfOGTIHcymbPZF7UqhK
uWRtSFaWSjQuAen0MLTHOgmytdOFGdodD8U4Aw3ZNJs=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:52 2023 by rpki-client on console-ams.rpki-client.org