Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/if7IpmFpeq4MCiRRfeI44bT0EQI.roa
File: if7IpmFpeq4MCiRRfeI44bT0EQI.roa (raw, json)
Hash identifier: s7Dn2Dj+O9TiVr0bkVGunD6hFmuXYkt831/LuxU3y+k=
Subject key identifier: 89:FE:C8:A6:61:69:7A:AE:0C:0A:24:51:7D:E2:38:E1:B4:F4:11:02
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0786
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/if7IpmFpeq4MCiRRfeI44bT0EQI.roa
Signing time: Tue 29 Sep 2020 09:51:35 +0000
ROA not before: Tue 29 Sep 2020 09:51:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 211.77.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1926 (0x786)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 09:51:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=89FEC8A661697AAE0C0A24517DE238E1B4F41102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:6d:09:43:34:93:5d:23:0c:87:d9:5a:06:47:
af:f7:44:62:5e:33:e4:b4:0a:d7:0d:0d:ec:1b:77:
2d:cd:33:8b:91:e1:ad:65:66:85:7c:8f:52:72:1b:
74:00:af:cd:f9:49:73:0c:22:95:82:d3:a9:7f:84:
52:53:85:b6:2b:4d:01:c8:95:f1:fb:70:ff:f5:97:
03:7f:fa:d2:0c:4f:54:7d:e9:e9:1e:70:d2:58:aa:
84:e1:02:75:8c:7b:1f:a0:38:4c:60:0a:f2:27:22:
43:bc:89:10:26:f2:32:36:d7:60:69:00:f4:58:ac:
d8:05:60:47:ae:ea:ef:a4:a6:92:42:f8:a1:33:f4:
68:a2:ae:53:eb:9e:d4:57:55:e2:c8:e2:fd:cc:9d:
2d:4c:f4:63:29:24:f2:bc:a4:2f:62:00:07:66:a0:
c2:4f:c3:7a:5a:29:7e:97:54:2c:50:66:42:96:ed:
4c:de:c0:f8:2a:69:a7:79:0a:01:79:af:91:89:3d:
c3:b1:71:95:ec:e6:13:5e:86:1d:87:ee:3f:59:7e:
bb:1c:cc:04:01:64:5f:0e:cc:0b:2e:5b:ea:20:fb:
3f:4b:a3:a6:b9:44:72:be:31:a9:e9:b0:7e:ec:4b:
cb:31:84:d1:71:dd:15:76:19:9a:79:8c:2f:2c:6c:
c7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:FE:C8:A6:61:69:7A:AE:0C:0A:24:51:7D:E2:38:E1:B4:F4:11:02
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/if7IpmFpeq4MCiRRfeI44bT0EQI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.77.64.0/18
Signature Algorithm: sha256WithRSAEncryption
25:95:e9:c8:1b:ca:f3:82:24:17:3a:fd:36:8e:95:31:04:cd:
32:ae:bb:3a:7a:09:ce:d6:63:86:ce:83:8d:d6:cb:2a:15:04:
3d:1d:79:96:e2:16:a2:35:ca:f4:87:4b:dc:f1:1a:bf:e4:c5:
86:9d:d1:0b:15:60:6d:77:7f:5c:a4:ec:f5:b1:bf:8c:d1:78:
91:05:9c:09:f1:f8:21:78:fa:95:5d:70:97:c5:cd:2b:f9:ad:
58:9d:78:d7:f3:3c:58:e1:be:27:57:f5:2a:b6:4f:8d:52:02:
25:d7:1e:d8:8f:ca:52:2d:05:f5:be:80:d1:cf:71:53:cb:06:
8a:c9:13:18:6d:ac:9f:1b:c3:66:e8:20:a5:c6:b0:21:82:3e:
03:ce:c9:3b:ba:13:71:f6:21:28:56:99:cc:44:91:c2:59:f5:
7d:99:2b:7d:d8:4a:f6:30:2f:b7:f1:af:81:3c:72:9f:95:8e:
7c:97:85:70:56:60:ba:d7:c5:0f:5a:17:63:ba:30:7b:03:e9:
2b:82:bb:fa:58:bf:ed:b1:bd:b7:48:b5:50:0a:71:ce:06:42:
65:87:d2:3f:b0:0f:19:fc:a3:6d:bd:7f:4e:50:33:91:7d:d2:
53:56:20:dc:43:ba:ce:a1:d7:fb:1f:c7:68:e0:4d:df:a5:12:
c6:c5:f1:46
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICB4YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMDA5Mjkw
OTUxMzVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDg5RkVDOEE2NjE2OTdB
QUUwQzBBMjQ1MTdERTIzOEUxQjRGNDExMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDybQlDNJNdIwyH2VoGR6/3RGJeM+S0CtcNDewbdy3NM4uR4a1l
ZoV8j1JyG3QAr835SXMMIpWC06l/hFJThbYrTQHIlfH7cP/1lwN/+tIMT1R96eke
cNJYqoThAnWMex+gOExgCvInIkO8iRAm8jI212BpAPRYrNgFYEeu6u+kppJC+KEz
9GiirlPrntRXVeLI4v3MnS1M9GMpJPK8pC9iAAdmoMJPw3paKX6XVCxQZkKW7Uze
wPgqaad5CgF5r5GJPcOxcZXs5hNehh2H7j9ZfrsczAQBZF8OzAsuW+og+z9Lo6a5
RHK+ManpsH7sS8sxhNFx3RV2GZp5jC8sbMcTAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUif7IpmFpeq4MCiRRfeI44bT0EQIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2lmN0lwbUZwZXE0TUNpUlJmZUk0NGJU
MEVRSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbTTUAwDQYJ
KoZIhvcNAQELBQADggEBACWV6cgbyvOCJBc6/TaOlTEEzTKuuzp6Cc7WY4bOg43W
yyoVBD0deZbiFqI1yvSHS9zxGr/kxYad0QsVYG13f1yk7PWxv4zReJEFnAnx+CF4
+pVdcJfFzSv5rVideNfzPFjhvidX9Sq2T41SAiXXHtiPylItBfW+gNHPcVPLBorJ
ExhtrJ8bw2boIKXGsCGCPgPOyTu6E3H2IShWmcxEkcJZ9X2ZK33YSvYwL7fxr4E8
cp+VjnyXhXBWYLrXxQ9aF2O6MHsD6SuCu/pYv+2xvbdItVAKcc4GQmWH0j+wDxn8
o229f05QM5F90lNWINxDus6h1/sfx2jgTd+lEsbF8UY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org