Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/DDbvhmrhLQaBX0581I6be8AN4PQ.roa
File: DDbvhmrhLQaBX0581I6be8AN4PQ.roa (raw, json)
Hash identifier: l0Ef6kU/D0RGBBFdVVH0qidoLRfLMfQazPYzs01tCYw=
Subject key identifier: 0C:36:EF:86:6A:E1:2D:06:81:5F:4E:7C:D4:8E:9B:7B:C0:0D:E0:F4
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0780
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/DDbvhmrhLQaBX0581I6be8AN4PQ.roa
Signing time: Tue 29 Sep 2020 09:51:33 +0000
ROA not before: Tue 29 Sep 2020 09:51:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 210.241.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1920 (0x780)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 09:51:33 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0C36EF866AE12D06815F4E7CD48E9B7BC00DE0F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:17:32:de:e6:d4:fa:a0:7a:aa:0c:aa:95:ec:
62:61:e8:d2:50:76:42:71:83:aa:4c:0d:07:da:e4:
6e:35:a4:e9:91:3a:c0:06:77:c8:30:b6:46:85:85:
73:f5:3b:e7:49:37:49:9b:88:40:2c:c1:5e:ad:6e:
ee:94:d6:2a:d3:b6:51:92:ae:ba:eb:68:34:c5:48:
bc:af:d2:cd:d6:28:3d:fa:c6:7c:9e:47:9c:b2:ba:
dc:dc:14:d3:2a:dc:53:51:19:8f:4e:d4:9b:d5:6a:
9f:be:67:08:3e:29:bf:26:c7:10:84:8a:b3:e4:b2:
18:9e:b1:2c:df:53:8d:44:4b:c1:00:a5:db:ad:82:
85:3b:83:1b:90:6d:70:7b:27:f6:17:d6:24:1f:fe:
f8:92:24:b3:95:cf:4b:94:8f:be:36:2d:a5:90:ce:
4d:3e:a4:d9:16:3a:5f:d2:00:cc:23:0e:df:0f:b2:
fc:ca:7d:ed:a5:fe:ec:53:1e:b8:b4:be:67:08:fb:
b6:94:c9:65:a0:1c:1b:40:a5:04:a4:38:84:f4:3f:
46:c4:9d:82:4b:26:dd:48:dd:5a:d7:1a:32:c8:d1:
de:d6:f1:02:73:18:50:71:23:8b:2b:20:8b:0c:6f:
78:6f:4c:f3:41:49:75:18:6c:85:9d:2e:81:03:ef:
69:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:36:EF:86:6A:E1:2D:06:81:5F:4E:7C:D4:8E:9B:7B:C0:0D:E0:F4
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/DDbvhmrhLQaBX0581I6be8AN4PQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.192.0/19
Signature Algorithm: sha256WithRSAEncryption
60:6a:3b:ff:57:ee:b2:ad:bd:8d:e7:b4:71:22:22:62:46:69:
64:ea:a3:1c:f0:cb:f7:89:c6:8e:bf:62:42:f8:24:17:f7:3a:
12:e7:d0:7f:bc:75:8f:57:fe:c1:4a:b3:2c:dd:79:95:d3:2f:
69:63:b8:86:3f:07:e8:0f:96:49:8c:99:7d:ec:bf:54:61:fb:
3b:96:98:52:e5:62:4e:d3:5b:2e:1b:f1:c0:cd:7e:9c:32:a2:
af:cf:85:ad:bd:dd:17:23:a3:5c:03:41:df:35:55:2a:68:8e:
22:b5:8e:84:d9:4a:20:15:5e:a3:c3:69:4a:d8:ad:a8:81:15:
8f:e0:d1:ad:70:2c:d0:09:1f:c0:bf:4d:e0:e2:e6:b6:2a:3b:
8f:7b:8e:93:7b:32:15:c2:1a:09:16:13:2f:42:d2:c3:6b:2e:
9b:3c:0b:65:b2:86:50:c4:33:bd:8a:ee:0f:47:cf:ce:96:0a:
cb:56:77:f1:83:13:77:6e:41:45:bd:ca:2d:fa:50:53:bf:60:
0c:28:8e:03:44:9d:b5:b9:02:3c:aa:43:ac:fa:93:b8:67:60:
97:5b:3c:24:1c:0d:20:a2:e9:1e:ad:72:28:c6:6a:45:a0:b1:
44:e6:14:f0:e2:fd:6d:dc:d0:26:5a:03:cd:04:31:09:8c:e7:
95:6e:b6:fe
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICB4AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMDA5Mjkw
OTUxMzNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDBDMzZFRjg2NkFFMTJE
MDY4MTVGNEU3Q0Q0OEU5QjdCQzAwREUwRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDvFzLe5tT6oHqqDKqV7GJh6NJQdkJxg6pMDQfa5G41pOmROsAG
d8gwtkaFhXP1O+dJN0mbiEAswV6tbu6U1irTtlGSrrrraDTFSLyv0s3WKD36xnye
R5yyutzcFNMq3FNRGY9O1JvVap++Zwg+Kb8mxxCEirPkshiesSzfU41ES8EApdut
goU7gxuQbXB7J/YX1iQf/viSJLOVz0uUj742LaWQzk0+pNkWOl/SAMwjDt8PsvzK
fe2l/uxTHri0vmcI+7aUyWWgHBtApQSkOIT0P0bEnYJLJt1I3VrXGjLI0d7W8QJz
GFBxI4srIIsMb3hvTPNBSXUYbIWdLoED72lZAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUDDbvhmrhLQaBX0581I6be8AN4PQwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0REYnZobXJoTFFhQlgwNTgxSTZiZThB
TjRQUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXS8cAwDQYJ
KoZIhvcNAQELBQADggEBAGBqO/9X7rKtvY3ntHEiImJGaWTqoxzwy/eJxo6/YkL4
JBf3OhLn0H+8dY9X/sFKsyzdeZXTL2ljuIY/B+gPlkmMmX3sv1Rh+zuWmFLlYk7T
Wy4b8cDNfpwyoq/Pha293Rcjo1wDQd81VSpojiK1joTZSiAVXqPDaUrYraiBFY/g
0a1wLNAJH8C/TeDi5rYqO497jpN7MhXCGgkWEy9C0sNrLps8C2WyhlDEM72K7g9H
z86WCstWd/GDE3duQUW9yi36UFO/YAwojgNEnbW5AjyqQ6z6k7hnYJdbPCQcDSCi
6R6tcijGakWgsUTmFPDi/W3c0CZaA80EMQmM55Vutv4=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:02 2023 by rpki-client on console-fra.rpki-client.org