Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/99bTRS9vxJbF_iwvaHfloi4-NS8.roa
File: 99bTRS9vxJbF_iwvaHfloi4-NS8.roa (raw, json)
Hash identifier: ZPJeiA8r5kfSefIg3ajsXNQVhjL+0z/jfh4rtgDxGeE=
Subject key identifier: F7:D6:D3:45:2F:6F:C4:96:C5:FE:2C:2F:68:77:E5:A2:2E:3E:35:2F
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0781
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/99bTRS9vxJbF_iwvaHfloi4-NS8.roa
Signing time: Tue 29 Sep 2020 09:51:33 +0000
ROA not before: Tue 29 Sep 2020 09:51:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 27.240.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1921 (0x781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 09:51:33 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F7D6D3452F6FC496C5FE2C2F6877E5A22E3E352F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bb:b1:1a:58:a2:f2:c2:47:71:96:ed:e0:61:
74:27:2e:aa:d2:5d:c4:f7:ba:70:7f:91:20:f9:00:
aa:7f:b1:1c:b9:bb:33:e4:54:e0:47:6a:52:34:62:
92:41:76:84:8c:4a:5d:43:58:a0:08:b3:c8:07:dc:
bf:d1:d3:e8:c1:bd:06:3e:57:ba:ec:02:a7:0b:f7:
ce:5f:25:88:a5:a4:8f:f5:1a:e8:84:9e:e0:9f:b8:
5d:c4:cf:bc:12:8d:01:fb:e8:7c:ed:ea:06:0d:39:
3b:74:3d:28:8d:1d:bd:90:f4:fc:7e:4c:25:40:26:
bb:c7:58:0e:5e:46:93:f6:5b:de:21:7e:55:68:d3:
2e:ce:a8:d6:1a:b5:49:c6:27:c5:28:25:a0:bb:6b:
a6:41:85:2d:ae:25:b3:82:c0:da:58:49:97:20:71:
07:ba:89:e2:1c:ab:37:53:a3:8a:cd:c6:7a:89:50:
de:a8:0a:5e:63:50:37:03:2e:7e:95:a6:32:cc:c6:
48:4e:aa:76:b1:b6:90:3e:65:72:ca:34:19:98:57:
f3:76:2b:a5:04:ea:53:da:55:48:57:e7:e1:0f:0d:
38:14:ec:65:78:2d:6d:4d:67:a6:2c:7c:db:06:1b:
50:34:79:b1:58:fb:ac:7c:99:1c:0c:2e:f7:fb:f5:
d1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D6:D3:45:2F:6F:C4:96:C5:FE:2C:2F:68:77:E5:A2:2E:3E:35:2F
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/99bTRS9vxJbF_iwvaHfloi4-NS8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.240.0.0/13
Signature Algorithm: sha256WithRSAEncryption
51:c8:dc:c2:c8:34:57:a6:90:e5:42:07:94:a4:54:12:a6:86:
e3:f0:ab:72:0a:45:0d:d3:85:10:99:3b:6c:37:8b:85:52:55:
2a:c9:a5:7d:0e:05:99:a6:a8:9c:94:b6:cb:ec:4f:4b:b3:1d:
96:26:75:2e:3f:77:a4:11:cf:22:c3:10:11:c7:57:f0:d5:20:
a6:e2:71:eb:d9:3e:91:96:94:67:e5:97:ab:a8:6d:ec:cf:56:
b4:fb:af:b6:61:b0:cc:61:0e:5b:ef:1d:e9:ce:b7:15:44:2c:
b5:0c:b7:27:04:06:6d:44:d7:9e:ae:64:d7:8b:57:51:78:96:
47:8a:1e:45:6b:05:6f:6f:97:0e:e5:7e:9d:82:6d:d6:be:44:
39:64:a1:27:73:1c:5f:29:6a:68:8d:79:c3:77:1b:5a:ec:63:
93:b1:d4:ae:e4:41:52:1e:49:c5:d5:dc:df:f6:32:2f:3a:dd:
4f:52:7a:49:fb:8b:d3:67:e8:ea:88:4b:29:3e:78:54:43:80:
2f:f2:ad:3d:af:da:f8:7a:eb:9d:36:04:a7:08:c8:56:64:93:
65:f6:8d:a6:83:2d:ee:75:c4:62:9d:51:97:e3:e3:6d:59:af:
24:ca:9c:24:55:6f:73:21:49:f6:cf:db:6d:98:89:3a:0c:09:
4c:97:7a:39
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICB4EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMDA5Mjkw
OTUxMzNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEY3RDZEMzQ1MkY2RkM0
OTZDNUZFMkMyRjY4NzdFNUEyMkUzRTM1MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9u7EaWKLywkdxlu3gYXQnLqrSXcT3unB/kSD5AKp/sRy5uzPk
VOBHalI0YpJBdoSMSl1DWKAIs8gH3L/R0+jBvQY+V7rsAqcL985fJYilpI/1GuiE
nuCfuF3Ez7wSjQH76Hzt6gYNOTt0PSiNHb2Q9Px+TCVAJrvHWA5eRpP2W94hflVo
0y7OqNYatUnGJ8UoJaC7a6ZBhS2uJbOCwNpYSZcgcQe6ieIcqzdTo4rNxnqJUN6o
Cl5jUDcDLn6VpjLMxkhOqnaxtpA+ZXLKNBmYV/N2K6UE6lPaVUhX5+EPDTgU7GV4
LW1NZ6YsfNsGG1A0ebFY+6x8mRwMLvf79dFdAgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQU99bTRS9vxJbF/iwvaHfloi4+NS8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzk5YlRSUzl2eEpiRl9pd3ZhSGZsb2k0
LU5TOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwMb8DANBgkq
hkiG9w0BAQsFAAOCAQEAUcjcwsg0V6aQ5UIHlKRUEqaG4/CrcgpFDdOFEJk7bDeL
hVJVKsmlfQ4FmaaonJS2y+xPS7MdliZ1Lj93pBHPIsMQEcdX8NUgpuJx69k+kZaU
Z+WXq6ht7M9WtPuvtmGwzGEOW+8d6c63FUQstQy3JwQGbUTXnq5k14tXUXiWR4oe
RWsFb2+XDuV+nYJt1r5EOWShJ3McXylqaI15w3cbWuxjk7HUruRBUh5JxdXc3/Yy
LzrdT1J6SfuL02fo6ohLKT54VEOAL/KtPa/a+HrrnTYEpwjIVmSTZfaNpoMt7nXE
Yp1Rl+PjbVmvJMqcJFVvcyFJ9s/bbZiJOgwJTJd6OQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org