Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/QLZW1RL8rzzldCvJcrXnOhTmDGE.roa
File: QLZW1RL8rzzldCvJcrXnOhTmDGE.roa (raw, json)
Hash identifier: NtVCMCXmVlZtWV7UYGPFVNpNJvLiDpqLgsjZnuEGMwQ=
Subject key identifier: 40:B6:56:D5:12:FC:AF:3C:E5:74:2B:C9:72:B5:E7:3A:14:E6:0C:61
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0B2A
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/QLZW1RL8rzzldCvJcrXnOhTmDGE.roa
Signing time: Thu 16 Dec 2021 06:53:33 +0000
ROA not before: Thu 16 Dec 2021 06:53:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 203.222.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2858 (0xb2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:53:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=40B656D512FCAF3CE5742BC972B5E73A14E60C61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:08:06:6d:15:65:c8:11:28:50:fe:c1:ce:ce:
65:63:be:c5:9d:ca:86:e8:5e:c6:3f:4e:fc:a0:ea:
54:6d:5e:98:97:bd:97:d3:b7:a3:d1:8c:ac:36:45:
eb:ec:c8:8f:50:f0:9c:71:c5:c8:b2:62:90:69:2a:
26:9b:0e:8e:e0:c2:c5:a0:e5:82:1c:fc:76:30:7f:
37:ac:20:5c:98:57:8c:d3:ec:85:25:95:0a:eb:7a:
96:5f:f4:8c:5b:01:15:28:30:cb:7f:ab:be:91:16:
2d:20:be:7c:12:e0:f5:ba:a0:15:9f:64:2e:a1:f3:
15:9a:05:96:67:53:3e:f7:1c:20:f9:0a:df:71:21:
f0:af:05:31:09:48:65:57:04:ef:4d:ff:7d:9a:47:
b4:7b:9e:ee:08:bf:7f:3b:56:37:90:74:c8:06:df:
e1:a5:44:84:ac:ae:c2:85:21:51:10:a9:92:20:75:
c4:cc:c1:ba:19:be:77:3d:1c:f7:15:1b:90:12:6b:
b4:df:dd:3e:6d:32:f4:b0:63:4d:34:7b:7a:c4:e0:
67:1b:87:b1:10:b2:0e:00:6e:dc:bc:b4:9c:cd:da:
4d:51:0d:2e:cf:68:12:7b:14:14:0d:df:78:a2:97:
cf:d0:a5:3e:95:4c:9b:01:54:4b:4e:ad:09:e2:18:
b0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B6:56:D5:12:FC:AF:3C:E5:74:2B:C9:72:B5:E7:3A:14:E6:0C:61
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/QLZW1RL8rzzldCvJcrXnOhTmDGE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.16.0/21
Signature Algorithm: sha256WithRSAEncryption
7d:b5:70:31:a6:b1:0e:22:34:58:af:dd:1c:21:9f:9e:c7:2d:
7b:7f:de:e6:ab:d1:c5:b7:3d:78:b1:59:fb:80:4b:34:33:bf:
dc:48:c7:69:8f:c6:26:41:54:f0:b9:3d:14:ff:49:a3:82:92:
62:6c:93:40:e2:2e:3e:94:d9:d3:c9:d4:80:01:b3:e5:37:3a:
88:23:7b:62:1f:db:7c:e6:6c:c4:25:6a:70:e2:27:68:6b:88:
9e:9c:3d:7a:cd:04:4f:35:ce:ef:40:f2:e0:cc:72:23:9e:6c:
aa:a8:69:01:dc:ca:e1:e8:4f:15:fa:b0:b9:91:b3:93:28:70:
29:2b:25:5f:07:27:84:ed:8d:cf:a9:37:dc:35:50:88:af:30:
a0:cb:fe:78:93:fc:12:5d:53:38:47:ae:cc:72:58:86:a4:e0:
92:2c:0b:bd:ee:ef:e7:3e:f0:c8:9a:d7:bb:7b:f9:f1:6f:3d:
31:d8:ef:7b:84:0a:c6:5b:37:35:14:1c:c2:9b:cf:59:83:1e:
6c:ce:e0:21:08:86:f0:0e:7f:c7:19:60:7d:93:75:6f:b4:a2:
52:39:11:21:93:19:2f:d3:5d:3c:ca:17:72:c3:16:dc:1a:cc:
01:b0:67:d5:ee:0e:7b:00:71:8f:d6:2d:e0:ff:dd:81:02:eb:
8e:97:7b:55
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCyowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMTEyMTYw
NjUzMzNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDQwQjY1NkQ1MTJGQ0FG
M0NFNTc0MkJDOTcyQjVFNzNBMTRFNjBDNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrCAZtFWXIEShQ/sHOzmVjvsWdyoboXsY/Tvyg6lRtXpiXvZfT
t6PRjKw2RevsyI9Q8JxxxciyYpBpKiabDo7gwsWg5YIc/HYwfzesIFyYV4zT7IUl
lQrrepZf9IxbARUoMMt/q76RFi0gvnwS4PW6oBWfZC6h8xWaBZZnUz73HCD5Ct9x
IfCvBTEJSGVXBO9N/32aR7R7nu4Iv387VjeQdMgG3+GlRISsrsKFIVEQqZIgdcTM
wboZvnc9HPcVG5ASa7Tf3T5tMvSwY000e3rE4Gcbh7EQsg4Abty8tJzN2k1RDS7P
aBJ7FBQN33iil8/QpT6VTJsBVEtOrQniGLDNAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUQLZW1RL8rzzldCvJcrXnOhTmDGEwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvUUxaVzFSTDhyenpsZEN2SmNyWG5P
aFRtREdFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8veEDAN
BgkqhkiG9w0BAQsFAAOCAQEAfbVwMaaxDiI0WK/dHCGfnscte3/e5qvRxbc9eLFZ
+4BLNDO/3EjHaY/GJkFU8Lk9FP9Jo4KSYmyTQOIuPpTZ08nUgAGz5Tc6iCN7Yh/b
fOZsxCVqcOInaGuInpw9es0ETzXO70Dy4MxyI55sqqhpAdzK4ehPFfqwuZGzkyhw
KSslXwcnhO2Nz6k33DVQiK8woMv+eJP8El1TOEeuzHJYhqTgkiwLve7v5z7wyJrX
u3v58W89Mdjve4QKxls3NRQcwpvPWYMebM7gIQiG8A5/xxlgfZN1b7SiUjkRIZMZ
L9NdPMoXcsMW3BrMAbBn1e4OewBxj9Yt4P/dgQLrjpd7VQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org