Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/JzUMjy9-H0IoSlXHQ0VQ0FrVK5w.roa
File: JzUMjy9-H0IoSlXHQ0VQ0FrVK5w.roa (raw, json)
Hash identifier: pcuTN3bFoHLzLu3+LJnI/SaeAbs1bJn+Dd5K9zMoAs0=
Subject key identifier: 27:35:0C:8F:2F:7E:1F:42:28:4A:55:C7:43:45:50:D0:5A:D5:2B:9C
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 0A49
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/JzUMjy9-H0IoSlXHQ0VQ0FrVK5w.roa
Signing time: Thu 15 Sep 2022 02:42:00 +0000
ROA not before: Thu 15 Sep 2022 02:42:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18411
IP address blocks: 119.30.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2633 (0xa49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 15 02:42:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=27350C8F2F7E1F42284A55C7434550D05AD52B9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:75:2e:aa:fb:a8:a5:b2:c5:b9:c0:68:cc:33:
8e:51:b1:8c:b2:dd:23:7b:99:b8:43:af:7d:ae:53:
c0:88:4f:54:ba:d2:94:c9:3a:4d:a5:ca:06:59:f8:
4f:1e:6f:4a:23:91:b5:6c:af:87:b3:f1:05:21:61:
26:cc:ea:87:d7:18:98:33:f6:2b:05:3b:bd:78:dc:
b2:ab:9e:27:64:4c:43:31:c9:e3:0d:61:60:0d:24:
f7:03:b8:d3:99:e5:00:c2:6b:66:01:a2:e9:a2:1a:
62:1b:39:05:b0:9b:f7:2c:4a:ae:68:aa:6d:c0:ba:
67:35:78:8e:c2:6e:9a:93:50:94:00:f2:08:ea:e4:
40:8e:94:bd:82:ba:ed:2a:a4:63:08:cb:13:df:16:
c5:df:1f:1b:72:17:dd:50:4e:f5:b3:32:6a:d6:fd:
d7:05:19:40:76:79:e6:7a:94:46:86:dc:60:02:e4:
ff:3f:ac:78:8c:94:30:3d:6d:6c:c7:dc:f8:70:d8:
6c:53:29:ec:27:2a:00:c1:fb:98:c3:ae:6b:00:e5:
3e:bf:fc:83:9b:c3:31:6a:67:cf:2d:f7:ea:80:19:
4f:22:0d:6f:bf:3a:e5:e4:a8:1f:32:19:40:4c:63:
69:00:16:95:08:89:77:6e:98:80:ee:11:ee:fd:bc:
78:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:35:0C:8F:2F:7E:1F:42:28:4A:55:C7:43:45:50:D0:5A:D5:2B:9C
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/JzUMjy9-H0IoSlXHQ0VQ0FrVK5w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.30.16.0/20
Signature Algorithm: sha256WithRSAEncryption
28:13:67:b7:5d:4e:b3:60:aa:8c:be:13:02:0a:c4:2e:03:93:
a4:c7:d4:f8:29:cf:64:ca:ee:79:91:18:26:3a:f5:99:f8:47:
d6:bf:ff:8c:1f:fc:59:ca:69:a4:79:ce:bc:24:c3:5e:4a:f4:
8c:15:27:2a:22:a7:b9:60:31:a4:8d:e9:bc:39:1b:5d:c6:cd:
b8:01:20:f2:cc:33:d8:a8:41:1f:e6:48:c0:5f:1e:30:7a:b4:
ef:b1:4a:18:33:3a:3c:c2:1d:2a:9c:a4:54:5a:71:3c:d2:ce:
d6:86:bb:68:46:53:e8:56:bf:e2:72:99:05:7d:20:f1:df:57:
49:92:57:6a:77:e4:9b:24:91:63:7a:de:2a:1d:26:ef:8a:2d:
85:48:0f:85:3f:e5:e8:1c:a1:5a:61:d6:a7:f7:fb:23:da:f6:
56:23:47:73:f0:23:44:a7:30:aa:cc:2a:94:70:ae:73:ed:eb:
ac:8d:35:30:f6:dd:b6:8c:8f:69:5d:bc:07:7d:1d:ff:cf:82:
d5:e7:61:d5:0b:da:8f:ff:27:c6:41:98:4d:d4:33:11:4a:8a:
a2:58:6b:f4:3b:39:48:45:51:a7:0c:13:32:33:52:dd:ab:50:
7c:95:b1:07:66:6b:2a:93:15:fe:3b:31:ea:ce:ee:d2:d0:18:
6c:ac:29:43
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCkkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD
NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yMjA5MTUw
MjQyMDBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDI3MzUwQzhGMkY3RTFG
NDIyODRBNTVDNzQzNDU1MEQwNUFENTJCOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCdS6q+6ilssW5wGjMM45RsYyy3SN7mbhDr32uU8CIT1S60pTJ
Ok2lygZZ+E8eb0ojkbVsr4ez8QUhYSbM6ofXGJgz9isFO7143LKrnidkTEMxyeMN
YWANJPcDuNOZ5QDCa2YBoumiGmIbOQWwm/csSq5oqm3Aumc1eI7CbpqTUJQA8gjq
5ECOlL2Cuu0qpGMIyxPfFsXfHxtyF91QTvWzMmrW/dcFGUB2eeZ6lEaG3GAC5P8/
rHiMlDA9bWzH3Phw2GxTKewnKgDB+5jDrmsA5T6//IObwzFqZ88t9+qAGU8iDW+/
OuXkqB8yGUBMY2kAFpUIiXdumIDuEe79vHjFAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUJzUMjy9+H0IoSlXHQ0VQ0FrVK5wwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ
pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv
bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9KelVNank5LUgwSW9TbFhIUTBW
UTBGclZLNXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEdx4Q
MA0GCSqGSIb3DQEBCwUAA4IBAQAoE2e3XU6zYKqMvhMCCsQuA5Okx9T4Kc9kyu55
kRgmOvWZ+EfWv/+MH/xZymmkec68JMNeSvSMFScqIqe5YDGkjem8ORtdxs24ASDy
zDPYqEEf5kjAXx4werTvsUoYMzo8wh0qnKRUWnE80s7WhrtoRlPoVr/icpkFfSDx
31dJkldqd+SbJJFjet4qHSbvii2FSA+FP+XoHKFaYdan9/sj2vZWI0dz8CNEpzCq
zCqUcK5z7eusjTUw9t22jI9pXbwHfR3/z4LV52HVC9qP/yfGQZhN1DMRSoqiWGv0
OzlIRVGnDBMyM1Ldq1B8lbEHZmsqkxX+OzHqzu7S0BhsrClD
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org