Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/H1BsNo0cg__MP3e2K1fu9VWcM0E.roa
File: H1BsNo0cg__MP3e2K1fu9VWcM0E.roa (raw, json)
Hash identifier: 8w/KUC7zoSlTKRdcIhDb9Ixl2XauvY45SLpb2rRP2ag=
Subject key identifier: 1F:50:6C:36:8D:1C:83:FF:CC:3F:77:B6:2B:57:EE:F5:55:9C:33:41
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 0B15
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/H1BsNo0cg__MP3e2K1fu9VWcM0E.roa
Signing time: Tue 11 Jul 2023 04:22:44 +0000
ROA not before: Tue 11 Jul 2023 04:22:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18411
IP address blocks: 119.30.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2837 (0xb15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Jul 11 04:22:44 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1F506C368D1C83FFCC3F77B62B57EEF5559C3341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a9:3d:90:eb:7a:f1:34:05:f9:c3:a9:a5:24:
96:de:e2:76:e3:35:f6:84:b6:be:c7:7e:d4:5a:bf:
9b:bb:9f:7d:28:ff:42:0d:73:a4:13:23:12:61:9d:
ba:39:50:c2:dd:10:2e:90:ec:b7:16:94:db:a0:1b:
0e:f2:3d:57:7a:91:c5:99:ad:96:c1:85:c8:27:70:
14:f7:03:f9:d7:cf:51:ed:bb:e2:f7:46:dc:e8:66:
61:ce:a6:38:98:22:60:a3:a2:41:b0:11:56:66:bf:
22:4b:e6:69:49:da:7f:6f:91:2f:0e:f1:de:52:33:
83:05:70:5e:04:46:ad:b7:da:d0:28:c8:51:ae:c7:
e6:1b:2d:44:51:ef:97:49:33:d7:e7:07:24:05:f2:
fa:7b:fe:37:29:46:86:29:39:4b:43:db:d3:4c:e5:
36:5c:09:a9:24:89:8d:b5:ab:8b:f5:3a:93:50:7e:
af:76:bf:fc:e9:aa:d0:67:1e:bc:f8:ab:71:ba:92:
c6:f9:c0:54:31:bd:2b:ed:74:fe:0f:14:61:0e:42:
04:e7:ff:2a:1f:cd:cd:56:53:01:70:e0:2c:01:09:
b6:f4:74:c7:ca:12:f8:6e:da:e7:d9:d2:ca:c5:93:
22:a2:a7:f8:ed:d5:87:fd:16:b9:5f:61:4c:18:3b:
0f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:50:6C:36:8D:1C:83:FF:CC:3F:77:B6:2B:57:EE:F5:55:9C:33:41
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/H1BsNo0cg__MP3e2K1fu9VWcM0E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.30.16.0/20
Signature Algorithm: sha256WithRSAEncryption
38:82:af:6b:ca:ca:ee:4a:8b:d3:dc:20:6f:23:4b:6c:63:20:
6c:22:d8:2b:08:86:fa:d3:c5:85:5e:87:26:0b:32:f0:fa:c4:
eb:b7:59:65:27:a7:85:21:73:14:8f:b5:45:72:dd:3e:40:d8:
80:d7:c1:d5:a0:5b:b8:9f:96:f3:fd:86:e2:38:43:3e:d3:92:
74:a7:4d:5f:9e:e2:b7:22:c0:fb:0d:cd:b2:d2:b9:2b:b6:72:
f5:bd:d4:f7:1a:07:24:cf:31:75:a1:a3:8d:4a:bb:ba:89:b0:
12:c7:8f:69:f6:83:1c:6d:7e:cc:a7:5c:09:8f:96:f9:df:74:
09:8c:d8:e5:a3:a3:de:47:a2:4f:c3:13:92:63:27:e6:e2:c0:
77:ab:6e:3c:43:a8:e2:0b:cd:dd:e3:64:e4:87:68:a1:fe:94:
41:9c:33:47:3f:9d:3a:7c:a8:5d:f7:c5:ce:b2:ef:71:ae:55:
40:1a:0a:b1:ca:67:95:7a:a3:12:29:00:63:2f:10:3a:7a:89:
8c:69:54:25:87:d8:3c:52:1e:8a:bf:ed:56:e1:13:21:7e:e1:
f4:33:c5:c5:bf:94:d1:bd:73:2b:83:b6:a7:4d:bb:8c:90:0d:
76:08:63:78:67:11:36:28:6f:4d:1f:3d:db:32:f8:39:19:82:
10:94:7e:29
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCxUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD
NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yMzA3MTEw
NDIyNDRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFGNTA2QzM2OEQxQzgz
RkZDQzNGNzdCNjJCNTdFRUY1NTU5QzMzNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMqT2Q63rxNAX5w6mlJJbe4nbjNfaEtr7HftRav5u7n30o/0IN
c6QTIxJhnbo5UMLdEC6Q7LcWlNugGw7yPVd6kcWZrZbBhcgncBT3A/nXz1Htu+L3
RtzoZmHOpjiYImCjokGwEVZmvyJL5mlJ2n9vkS8O8d5SM4MFcF4ERq232tAoyFGu
x+YbLURR75dJM9fnByQF8vp7/jcpRoYpOUtD29NM5TZcCakkiY21q4v1OpNQfq92
v/zpqtBnHrz4q3G6ksb5wFQxvSvtdP4PFGEOQgTn/yofzc1WUwFw4CwBCbb0dMfK
Evhu2ufZ0srFkyKip/jt1Yf9FrlfYUwYOw/BAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUH1BsNo0cg//MP3e2K1fu9VWcM0EwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ
pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv
bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9IMUJzTm8wY2dfX01QM2UySzFm
dTlWV2NNMEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEdx4Q
MA0GCSqGSIb3DQEBCwUAA4IBAQA4gq9rysruSovT3CBvI0tsYyBsItgrCIb608WF
XocmCzLw+sTrt1llJ6eFIXMUj7VFct0+QNiA18HVoFu4n5bz/YbiOEM+05J0p01f
nuK3IsD7Dc2y0rkrtnL1vdT3GgckzzF1oaONSru6ibASx49p9oMcbX7Mp1wJj5b5
33QJjNjlo6PeR6JPwxOSYyfm4sB3q248Q6jiC83d42Tkh2ih/pRBnDNHP506fKhd
98XOsu9xrlVAGgqxymeVeqMSKQBjLxA6eomMaVQlh9g8Uh6Kv+1W4RMhfuH0M8XF
v5TRvXMrg7anTbuMkA12CGN4ZxE2KG9NHz3bMvg5GYIQlH4p
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org