Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Oo5KNAi2cSkbu6FZI9DL2Xt-zxg.roa
File: Oo5KNAi2cSkbu6FZI9DL2Xt-zxg.roa (raw, json)
Hash identifier: yC/lXrsj1CZxb/Opm2XWCN7SsNLsDax3dDFPjhRmZeU=
Subject key identifier: 3A:8E:4A:34:08:B6:71:29:1B:BB:A1:59:23:D0:CB:D9:7B:7E:CF:18
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 08EA
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Oo5KNAi2cSkbu6FZI9DL2Xt-zxg.roa
Signing time: Sun 07 Feb 2021 05:56:09 +0000
ROA not before: Sun 07 Feb 2021 05:56:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 27.52.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2282 (0x8ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 7 05:56:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3A8E4A3408B671291BBBA15923D0CBD97B7ECF18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:83:3f:ac:57:63:e0:02:d8:8b:86:96:8b:56:
a0:3a:72:68:a7:9d:51:14:99:1b:a4:32:74:51:63:
85:1a:5d:e8:20:f5:38:ef:9c:8b:af:c8:36:36:6b:
b4:15:9e:bf:15:c1:b1:65:24:c9:3f:c7:ff:29:1d:
80:65:48:e9:4a:10:6e:99:a7:cd:1a:84:44:8f:d0:
c6:a1:62:00:dc:65:79:fb:df:82:4d:20:05:11:d0:
11:b2:ed:0a:69:ab:93:5f:2b:fe:ed:d7:4b:5e:eb:
68:a5:14:d8:32:7e:63:a4:33:00:b0:c3:f0:6e:0a:
9b:f2:1f:4f:84:18:10:df:80:91:74:71:92:40:fe:
bf:2d:11:b4:d6:31:dd:6a:3d:3e:9b:4a:a7:a6:38:
f3:07:10:6f:7a:52:f8:9a:ee:b6:bd:be:50:6d:90:
e7:c6:29:10:89:1e:39:f8:84:28:64:f3:1c:0d:2f:
e7:65:01:fc:ac:8c:6c:de:b9:99:d6:f8:08:e0:ff:
12:61:f1:5f:32:18:12:5e:30:9b:fc:dc:f0:9d:f5:
e8:5a:7f:47:b3:5e:a8:1e:8f:50:56:87:67:2b:64:
7a:45:a6:3a:8a:e1:8e:66:3d:50:ee:34:03:e7:0e:
ce:4c:6d:01:85:0d:5e:2e:86:f2:2d:56:48:50:b8:
26:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8E:4A:34:08:B6:71:29:1B:BB:A1:59:23:D0:CB:D9:7B:7E:CF:18
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Oo5KNAi2cSkbu6FZI9DL2Xt-zxg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.52.0.0/15
Signature Algorithm: sha256WithRSAEncryption
14:94:41:1c:4f:55:28:1e:97:6d:76:85:9a:10:83:2a:e5:19:
f4:30:18:ad:54:f7:df:08:6d:af:56:76:a4:5b:7c:21:91:26:
2d:97:51:f1:9b:b7:22:a4:75:12:12:f6:f6:69:74:f8:e7:24:
64:f9:ea:4c:b8:1f:3e:f5:22:6e:97:a1:d6:8c:f4:de:8a:6e:
0b:df:f5:f6:5f:8c:96:41:af:1c:2c:03:47:00:eb:d3:de:17:
37:ae:7c:aa:e7:50:ff:c6:80:4f:24:e8:dd:cf:53:da:7f:f9:
87:bd:77:3d:b9:f0:fd:62:4b:00:ef:bc:d3:50:bd:86:6d:11:
4d:03:39:c1:e0:4b:b3:7b:05:38:bb:f6:91:8f:f6:4e:2f:dd:
3f:73:3a:78:80:d5:c5:97:4b:4c:1b:07:97:1f:b0:d4:b0:e2:
5d:07:0d:ae:2b:92:1e:31:23:bd:1a:3b:e4:67:27:45:de:98:
5f:82:31:4a:15:df:e5:fc:f4:db:f0:57:55:17:9b:e8:96:89:
a8:86:b7:22:ed:fd:a3:b3:d4:bc:99:63:8b:fe:76:55:09:2d:
2a:c5:c9:34:16:f2:c6:33:c1:c0:c9:f2:86:68:7f:46:a8:43:
41:7f:5a:c0:44:79:c3:e3:c3:d9:e2:1a:fc:80:90:1b:19:fc:
12:99:3e:18
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICCOowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMTAyMDcw
NTU2MDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDNBOEU0QTM0MDhCNjcx
MjkxQkJCQTE1OTIzRDBDQkQ5N0I3RUNGMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDgz+sV2PgAtiLhpaLVqA6cminnVEUmRukMnRRY4UaXegg9Tjv
nIuvyDY2a7QVnr8VwbFlJMk/x/8pHYBlSOlKEG6Zp80ahESP0MahYgDcZXn734JN
IAUR0BGy7Qppq5NfK/7t10te62ilFNgyfmOkMwCww/BuCpvyH0+EGBDfgJF0cZJA
/r8tEbTWMd1qPT6bSqemOPMHEG96Uvia7ra9vlBtkOfGKRCJHjn4hChk8xwNL+dl
AfysjGzeuZnW+Ajg/xJh8V8yGBJeMJv83PCd9ehaf0ezXqgej1BWh2crZHpFpjqK
4Y5mPVDuNAPnDs5MbQGFDV4uhvItVkhQuCZ1AgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQUOo5KNAi2cSkbu6FZI9DL2Xt+zxgwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL09vNUtOQWkyY1NrYnU2RlpJOURMMlh0
LXp4Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwEbNDANBgkq
hkiG9w0BAQsFAAOCAQEAFJRBHE9VKB6XbXaFmhCDKuUZ9DAYrVT33whtr1Z2pFt8
IZEmLZdR8Zu3IqR1EhL29ml0+OckZPnqTLgfPvUibpeh1oz03opuC9/19l+MlkGv
HCwDRwDr094XN658qudQ/8aATyTo3c9T2n/5h713Pbnw/WJLAO+801C9hm0RTQM5
weBLs3sFOLv2kY/2Ti/dP3M6eIDVxZdLTBsHlx+w1LDiXQcNriuSHjEjvRo75Gcn
Rd6YX4IxShXf5fz02/BXVReb6JaJqIa3Iu39o7PUvJlji/52VQktKsXJNBbyxjPB
wMnyhmh/RqhDQX9awER5w+PD2eIa/ICQGxn8Epk+GA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org