Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/bQGsDCIXygXT-ocFGFdyMdSzZJo.roa
File: bQGsDCIXygXT-ocFGFdyMdSzZJo.roa (raw, json)
Hash identifier: VK/pj0FQgPqtkTbWyUW8H8LN1TeT4ag6zhlCxypqKww=
Subject key identifier: 6D:01:AC:0C:22:17:CA:05:D3:FA:87:05:18:57:72:31:D4:B3:64:9A
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/bQGsDCIXygXT-ocFGFdyMdSzZJo.roa
Signing time: Thu 15 Sep 2022 02:37:28 +0000
ROA not before: Thu 15 Sep 2022 02:37:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.222.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6D01AC0C2217CA05D3FA870518577231D4B3649A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:61:a4:24:60:6b:3b:cd:8e:a4:e6:f6:2b:99:
35:36:57:a3:44:97:ea:36:b6:81:e8:19:64:2e:09:
47:65:de:3f:82:cb:db:db:8a:f0:14:1b:1a:fd:82:
e9:72:63:bf:6d:94:4c:49:a5:12:e8:3f:f3:0a:78:
d7:d9:aa:d3:a4:2a:51:13:f4:c5:69:51:60:dc:3a:
8a:72:ad:bc:80:4a:1d:80:4b:31:67:7a:8f:48:ba:
d0:60:d6:d9:15:09:e4:44:dc:98:ea:14:21:1a:f1:
44:39:8a:1a:3f:98:96:22:0b:e4:ab:08:f8:40:65:
de:fa:d0:d4:77:fa:19:a5:47:45:3c:48:47:c2:94:
c7:11:b3:b1:6a:d0:3f:95:96:1d:ce:da:4a:92:10:
3a:cc:a3:21:7c:42:f5:81:e3:85:83:92:ae:41:57:
d0:bd:23:f3:87:2e:fa:2d:c7:8a:d1:31:fe:e1:0b:
6b:db:d1:ad:64:bf:78:b3:84:fe:28:ec:5a:ee:66:
8e:77:42:5f:fd:59:3f:dc:fc:96:53:05:45:c2:0c:
a1:34:b0:f7:5d:11:fe:ba:f3:2e:de:a2:fe:6e:46:
99:eb:21:6d:7c:e7:44:ce:ad:f7:74:bf:67:ad:d4:
53:a1:03:f4:90:8a:92:93:c6:db:d8:23:2a:64:03:
a6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:01:AC:0C:22:17:CA:05:D3:FA:87:05:18:57:72:31:D4:B3:64:9A
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/bQGsDCIXygXT-ocFGFdyMdSzZJo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.16.0/21
Signature Algorithm: sha256WithRSAEncryption
87:a0:cc:e4:8e:35:4b:80:52:49:c2:63:20:c7:af:d1:02:8d:
93:e8:e9:a8:0d:5e:17:ac:c3:3b:d8:dc:96:52:89:31:40:63:
ba:a7:12:40:7b:bd:9d:f0:ad:40:89:03:4c:f2:ba:af:48:15:
2d:2e:48:c9:69:01:75:35:71:18:da:22:9d:4b:d3:3a:de:80:
85:57:72:4a:2c:9f:91:33:92:e8:2d:81:d7:d2:00:f5:0b:ad:
7b:0f:c1:0d:04:15:53:a1:ac:c5:6a:a8:3e:44:14:ec:81:44:
17:e6:1a:1b:ae:5b:e1:e3:82:7c:1e:3f:6f:91:9f:5e:35:11:
0a:5a:a3:fa:45:d9:5d:3b:60:38:bc:8c:c8:bd:8e:c1:74:6f:
b6:26:10:8e:6c:57:e4:09:b7:93:9b:c6:af:cf:9a:a3:07:50:
ad:2a:fb:a9:90:bc:24:1c:67:1b:92:ea:cc:3a:4d:55:c8:23:
de:c0:6c:53:bc:4d:9e:62:0b:d5:96:24:77:09:57:80:a2:03:
a8:22:c3:f0:1a:06:ec:71:9a:3c:ea:a0:aa:a4:0d:e5:05:a8:
a9:66:c5:c9:6a:4f:41:cb:93:f6:eb:2c:26:32:8a:b9:ca:dd:
69:7b:84:de:51:4b:00:fd:fa:d4:b2:89:90:30:29:f2:2d:03:
70:98:98:ff
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC/wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMjA5MTUw
MjM3MjhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDZEMDFBQzBDMjIxN0NB
MDVEM0ZBODcwNTE4NTc3MjMxRDRCMzY0OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQYaQkYGs7zY6k5vYrmTU2V6NEl+o2toHoGWQuCUdl3j+Cy9vb
ivAUGxr9gulyY79tlExJpRLoP/MKeNfZqtOkKlET9MVpUWDcOopyrbyASh2ASzFn
eo9IutBg1tkVCeRE3JjqFCEa8UQ5iho/mJYiC+SrCPhAZd760NR3+hmlR0U8SEfC
lMcRs7Fq0D+Vlh3O2kqSEDrMoyF8QvWB44WDkq5BV9C9I/OHLvotx4rRMf7hC2vb
0a1kv3izhP4o7FruZo53Ql/9WT/c/JZTBUXCDKE0sPddEf668y7eov5uRpnrIW18
50TOrfd0v2et1FOhA/SQipKTxtvYIypkA6aPAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUbQGsDCIXygXT+ocFGFdyMdSzZJowHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvYlFHc0RDSVh5Z1hULW9jRkdGZHlN
ZFN6WkpvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8veEDAN
BgkqhkiG9w0BAQsFAAOCAQEAh6DM5I41S4BSScJjIMev0QKNk+jpqA1eF6zDO9jc
llKJMUBjuqcSQHu9nfCtQIkDTPK6r0gVLS5IyWkBdTVxGNoinUvTOt6AhVdySiyf
kTOS6C2B19IA9Qutew/BDQQVU6GsxWqoPkQU7IFEF+YaG65b4eOCfB4/b5GfXjUR
Clqj+kXZXTtgOLyMyL2OwXRvtiYQjmxX5Am3k5vGr8+aowdQrSr7qZC8JBxnG5Lq
zDpNVcgj3sBsU7xNnmIL1ZYkdwlXgKIDqCLD8BoG7HGaPOqgqqQN5QWoqWbFyWpP
QcuT9ussJjKKucrdaXuE3lFLAP361LKJkDAp8i0DcJiY/w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org