Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/L4zKWmqxznv4xIyrhF51TscNoeE.roa
File: L4zKWmqxznv4xIyrhF51TscNoeE.roa (raw, json)
Hash identifier: mLTuC75Y8TWTi3M0DBU3DZx8LqyLmlpXYZzFRbWaVR4=
Subject key identifier: 2F:8C:CA:5A:6A:B1:CE:7B:F8:C4:8C:AB:84:5E:75:4E:C7:0D:A1:E1
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0998
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/L4zKWmqxznv4xIyrhF51TscNoeE.roa
Signing time: Wed 29 Sep 2021 02:42:31 +0000
ROA not before: Wed 29 Sep 2021 02:42:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9674
IP address blocks: 27.51.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2456 (0x998)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 02:42:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2F8CCA5A6AB1CE7BF8C48CAB845E754EC70DA1E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3c:e9:df:0f:78:ad:b2:d3:46:41:5a:14:b1:
35:08:eb:63:78:cd:d3:27:d3:b6:bb:ba:a0:18:80:
e3:1d:7b:a1:64:79:52:9b:28:86:e5:dc:54:07:88:
40:05:5e:69:25:08:ce:d1:cd:50:08:3d:6b:b2:f5:
ed:df:1c:56:e6:62:37:30:73:cb:87:28:14:cc:24:
e6:a4:56:ed:54:a7:9d:f0:60:1d:f0:5d:0b:eb:fe:
93:55:33:c0:89:1c:4a:ac:60:15:2c:43:27:1b:c8:
5d:d1:f4:77:9d:33:d0:8b:75:cb:e5:e1:11:9d:4b:
0a:51:32:fe:97:56:38:4b:d4:08:00:54:d8:fa:53:
5b:66:70:e2:f5:9c:11:78:07:31:d3:54:f1:7a:87:
48:aa:5d:e6:d5:f7:bc:26:56:09:1d:77:0a:4b:5c:
a3:81:38:52:aa:da:de:ba:3e:8a:58:2a:7e:10:90:
18:c1:4a:c2:eb:f8:cd:97:26:98:23:26:99:ad:cf:
a6:c1:ec:4b:34:20:c5:61:c0:62:dc:5e:62:ec:8c:
2e:fb:71:4f:65:e9:cd:9e:52:6c:b9:1d:ac:0b:47:
e3:d9:e9:90:9c:30:ae:c1:77:65:68:aa:63:fa:02:
80:4a:0b:27:a6:c8:b0:63:17:14:73:72:fe:ae:00:
9d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:8C:CA:5A:6A:B1:CE:7B:F8:C4:8C:AB:84:5E:75:4E:C7:0D:A1:E1
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/L4zKWmqxznv4xIyrhF51TscNoeE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.51.0.0/16
Signature Algorithm: sha256WithRSAEncryption
26:51:2f:0e:2d:49:db:ae:05:2a:b3:1e:fa:04:13:37:a0:78:
21:f8:16:3c:ea:47:ad:1b:b1:43:50:6d:e8:f9:0b:12:4f:36:
0c:cb:db:ba:66:9d:05:01:02:05:5e:1c:60:b3:db:a0:93:99:
5c:0e:c8:04:d3:dd:c5:e0:4b:4a:84:8e:5f:10:16:11:5f:21:
f9:c7:ef:7d:41:57:33:2f:c1:ad:59:4b:33:48:08:f7:21:9b:
b0:6e:dd:69:21:94:19:54:32:0c:2e:01:0f:99:18:0d:40:82:
c5:8e:d9:99:be:03:ac:7e:a7:5c:1a:85:9e:c1:49:35:af:a6:
c3:73:95:08:11:c1:b9:28:8c:23:ce:03:f0:c9:ea:28:9a:84:
a4:c5:76:f4:c4:a8:89:b1:3c:89:22:0f:2c:cc:d6:f1:a0:45:
c8:26:30:ad:de:4c:75:bc:c7:46:22:a9:7c:b8:51:3e:30:26:
25:9f:13:be:db:d7:6f:68:d0:dc:ba:fb:c1:98:bb:86:16:b7:
4f:ad:83:1c:93:db:99:be:14:86:71:f7:a7:ef:21:52:79:43:
3f:0f:ed:ad:a9:dc:0b:3b:92:66:b7:9a:51:34:fc:56:cb:25:
f0:05:79:b3:df:32:11:02:3f:47:e1:b0:33:1d:c4:9d:f7:6b:
e7:75:26:bf
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICCZgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMTA5Mjkw
MjQyMzFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDJGOENDQTVBNkFCMUNF
N0JGOEM0OENBQjg0NUU3NTRFQzcwREExRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7POnfD3itstNGQVoUsTUI62N4zdMn07a7uqAYgOMde6FkeVKb
KIbl3FQHiEAFXmklCM7RzVAIPWuy9e3fHFbmYjcwc8uHKBTMJOakVu1Up53wYB3w
XQvr/pNVM8CJHEqsYBUsQycbyF3R9HedM9CLdcvl4RGdSwpRMv6XVjhL1AgAVNj6
U1tmcOL1nBF4BzHTVPF6h0iqXebV97wmVgkddwpLXKOBOFKq2t66PopYKn4QkBjB
SsLr+M2XJpgjJpmtz6bB7Es0IMVhwGLcXmLsjC77cU9l6c2eUmy5HawLR+PZ6ZCc
MK7Bd2VoqmP6AoBKCyemyLBjFxRzcv6uAJ3nAgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQUL4zKWmqxznv4xIyrhF51TscNoeEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0w0ektXbXF4em52NHhJeXJoRjUxVHNj
Tm9lRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwAbMzANBgkq
hkiG9w0BAQsFAAOCAQEAJlEvDi1J264FKrMe+gQTN6B4IfgWPOpHrRuxQ1Bt6PkL
Ek82DMvbumadBQECBV4cYLPboJOZXA7IBNPdxeBLSoSOXxAWEV8h+cfvfUFXMy/B
rVlLM0gI9yGbsG7daSGUGVQyDC4BD5kYDUCCxY7Zmb4DrH6nXBqFnsFJNa+mw3OV
CBHBuSiMI84D8MnqKJqEpMV29MSoibE8iSIPLMzW8aBFyCYwrd5MdbzHRiKpfLhR
PjAmJZ8TvtvXb2jQ3Lr7wZi7hha3T62DHJPbmb4UhnH3p+8hUnlDPw/trancCzuS
ZreaUTT8Vssl8AV5s98yEQI/R+GwMx3Enfdr53Umvw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org