Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/P5XlRhCffAte9Peq-UN2XSwhVzM.roa
File: P5XlRhCffAte9Peq-UN2XSwhVzM.roa (raw, json)
Hash identifier: s/zYq1JPTfp6ugljmEFvxGzEZ4vLhJ5C0cUd0UHOaiY=
Subject key identifier: 3F:95:E5:46:10:9F:7C:0B:5E:F4:F7:AA:F9:43:76:5D:2C:21:57:33
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0B75
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/P5XlRhCffAte9Peq-UN2XSwhVzM.roa
Signing time: Tue 01 Aug 2023 08:16:52 +0000
ROA not before: Tue 01 Aug 2023 08:16:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18412
IP address blocks: 39.12.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2933 (0xb75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 1 08:16:52 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3F95E546109F7C0B5EF4F7AAF943765D2C215733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:12:fc:6a:88:11:80:66:0a:89:ed:c5:7b:1f:
e1:5f:91:9e:a2:ec:58:ea:14:30:67:76:1b:8b:be:
d0:ab:91:68:f6:bb:34:2b:4e:11:c0:97:db:84:ec:
f2:60:05:97:1f:10:68:17:86:4f:78:9e:a5:f7:37:
4f:ec:61:ae:31:64:65:dc:a6:18:a6:eb:f1:a8:86:
7f:dd:13:3f:91:0d:b5:44:1e:27:9d:64:04:b4:61:
39:ef:b5:da:b3:e3:0c:7a:0c:61:77:b8:8b:02:e1:
7d:f6:ce:3a:83:07:7e:da:f5:a5:4d:ff:4d:70:09:
1c:27:6b:48:c6:08:e1:60:b8:7a:db:2f:b7:f3:db:
5f:73:65:45:6b:30:a9:60:b2:28:71:7a:76:5b:f8:
45:73:f3:6d:b3:35:a0:64:20:61:18:5b:2e:9f:24:
ed:20:07:f3:09:8c:28:d5:6c:79:1b:4e:6d:06:26:
9c:b0:b6:1a:f1:e9:8e:30:38:76:5e:1c:c4:f7:7b:
36:26:33:40:54:fc:3a:2b:ea:c0:e2:dd:bf:f4:38:
5e:c6:3b:ef:1d:45:f7:90:47:c2:e4:67:c4:fd:28:
5a:2a:b7:84:ac:c8:b5:35:81:dc:58:7b:c3:7d:02:
e4:8b:77:d3:ca:8b:0c:d5:e3:0c:2c:a7:33:6f:fa:
8a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:95:E5:46:10:9F:7C:0B:5E:F4:F7:AA:F9:43:76:5D:2C:21:57:33
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/P5XlRhCffAte9Peq-UN2XSwhVzM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.12.64.0/20
Signature Algorithm: sha256WithRSAEncryption
13:a1:70:9f:af:2c:0e:9e:72:4d:3d:10:75:9e:1b:40:6c:02:
6d:51:63:5a:b5:1c:e1:3b:bb:89:81:a3:93:1c:ed:17:87:99:
78:1f:ea:35:f4:f7:96:ff:c0:7a:34:54:8b:d6:1f:f7:75:42:
cb:4d:d8:4f:cc:10:a3:04:0c:d8:8f:d2:86:e1:12:9a:a6:6f:
58:9c:d3:c4:e1:7a:c9:35:aa:a5:ec:3a:bd:3a:46:5c:6d:29:
f9:d3:2c:01:bd:69:8f:2d:c2:36:3f:14:f1:65:f9:be:2f:14:
fd:b0:52:db:a7:20:2e:ab:4e:f2:cf:1f:4b:8a:c6:6f:fb:36:
1b:7a:74:ee:4c:92:9b:70:c8:c5:d6:dd:a8:e5:c5:b3:27:55:
57:41:ff:b3:79:00:c7:9d:91:08:0b:0c:70:4b:0f:2d:a9:53:
0b:7c:28:b7:e7:0e:2e:07:3a:33:65:9d:37:75:4e:46:37:c5:
9f:4d:a9:fa:b3:ac:0d:89:82:76:59:98:4d:85:5f:70:46:f4:
ad:a9:46:03:ea:77:8b:f3:d6:f5:18:45:ca:66:4c:20:9b:0f:
1f:5e:d0:32:3c:a8:cc:be:da:9d:e3:0d:34:77:f6:b6:84:ec:
3c:9d:ee:7d:50:1d:d6:4d:f7:a3:88:c6:ed:c8:2c:d1:d7:84:
ab:e9:e2:a8
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICC3UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA4MDEw
ODE2NTJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDNGOTVFNTQ2MTA5RjdD
MEI1RUY0RjdBQUY5NDM3NjVEMkMyMTU3MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAEvxqiBGAZgqJ7cV7H+FfkZ6i7FjqFDBndhuLvtCrkWj2uzQr
ThHAl9uE7PJgBZcfEGgXhk94nqX3N0/sYa4xZGXcphim6/Gohn/dEz+RDbVEHied
ZAS0YTnvtdqz4wx6DGF3uIsC4X32zjqDB37a9aVN/01wCRwna0jGCOFguHrbL7fz
219zZUVrMKlgsihxenZb+EVz822zNaBkIGEYWy6fJO0gB/MJjCjVbHkbTm0GJpyw
thrx6Y4wOHZeHMT3ezYmM0BU/Dor6sDi3b/0OF7GO+8dRfeQR8LkZ8T9KFoqt4Ss
yLU1gdxYe8N9AuSLd9PKiwzV4wwspzNv+oqHAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUP5XlRhCffAte9Peq+UN2XSwhVzMwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1A1WGxSaENmZkF0ZTlQZXEtVU4yWFN3
aFZ6TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQnDEAwDQYJ
KoZIhvcNAQELBQADggEBABOhcJ+vLA6eck09EHWeG0BsAm1RY1q1HOE7u4mBo5Mc
7ReHmXgf6jX095b/wHo0VIvWH/d1QstN2E/MEKMEDNiP0obhEpqmb1ic08Thesk1
qqXsOr06RlxtKfnTLAG9aY8twjY/FPFl+b4vFP2wUtunIC6rTvLPH0uKxm/7Nht6
dO5MkptwyMXW3ajlxbMnVVdB/7N5AMedkQgLDHBLDy2pUwt8KLfnDi4HOjNlnTd1
TkY3xZ9NqfqzrA2JgnZZmE2FX3BG9K2pRgPqd4vz1vUYRcpmTCCbDx9e0DI8qMy+
2p3jDTR39raE7Dyd7n1QHdZN96OIxu3ILNHXhKvp4qg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org