Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/pK7QvKTV93MB3z3in6n7h3QwND0.roa
File: pK7QvKTV93MB3z3in6n7h3QwND0.roa (raw, json)
Hash identifier: mYTCz9x8DzyfaTPY6mM0oo+Ne3wPnp7DT3sW3GrgGu8=
Subject key identifier: A4:AE:D0:BC:A4:D5:F7:73:01:DF:3D:E2:9F:A9:FB:87:74:30:34:3D
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0A8F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/pK7QvKTV93MB3z3in6n7h3QwND0.roa
Signing time: Thu 15 Sep 2022 02:42:12 +0000
ROA not before: Thu 15 Sep 2022 02:42:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9674
IP address blocks: 110.24.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 15 02:42:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A4AED0BCA4D5F77301DF3DE29FA9FB877430343D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:09:96:0a:e9:ec:79:1f:a6:6e:15:7c:55:c9:
69:b5:57:40:b8:3a:92:f5:55:ba:c8:c7:db:96:0f:
df:5c:5e:6c:8b:a2:b6:9b:ea:b6:f2:fc:cb:2f:e3:
b3:f7:a7:e4:5e:05:da:c0:99:05:43:dd:6f:00:c6:
c6:60:de:a2:e9:39:54:1e:3e:4a:b6:ee:5e:9a:a8:
bb:08:b2:b8:d4:5e:50:bb:0f:c8:11:9b:72:d9:7e:
31:0a:65:e4:8e:40:0b:c7:09:db:e6:39:21:3e:32:
88:58:61:a4:53:f5:6c:53:83:40:69:79:59:89:09:
50:fa:48:f0:f9:52:96:05:be:c2:4a:94:26:f0:31:
cf:8d:b9:00:d7:24:0d:ea:6b:02:74:7a:cf:52:f7:
12:7d:24:3b:fe:92:03:06:c5:ec:2f:e4:5d:9f:a6:
d9:06:ba:e8:0b:6e:3e:d8:fa:97:8a:b9:67:e3:4d:
8c:d2:03:1c:48:6f:3e:57:fe:65:d8:e2:9f:5d:a3:
75:84:7e:66:e5:40:bf:1f:de:a2:43:8e:cd:47:03:
9e:f7:0a:73:81:a0:76:43:7a:fa:51:a9:5e:17:cc:
09:f4:91:45:3c:8e:f7:61:6c:81:3a:94:f0:ff:bd:
3a:12:9f:b0:ae:98:0d:1b:b2:2f:8f:52:e7:15:33:
4a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:AE:D0:BC:A4:D5:F7:73:01:DF:3D:E2:9F:A9:FB:87:74:30:34:3D
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/pK7QvKTV93MB3z3in6n7h3QwND0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
110.24.0.0/13
Signature Algorithm: sha256WithRSAEncryption
b3:ab:6f:f0:ca:35:50:fa:6a:80:ab:44:93:3c:10:f8:6b:9f:
99:51:db:4f:4f:b9:54:5b:61:d6:65:34:68:ec:8c:10:7d:48:
bd:69:89:b3:97:83:0c:d9:23:46:13:63:04:1d:2d:92:b7:1f:
9e:ba:d9:86:57:ef:06:92:1a:32:2b:df:c8:c0:1d:bb:ba:55:
72:53:93:5d:54:e3:71:5a:9e:40:a0:01:3a:02:94:34:3c:ed:
b5:1f:f1:25:d0:a9:de:aa:62:e8:ac:52:27:15:7e:6a:31:72:
77:82:38:55:24:12:98:ce:ec:d0:09:c3:b3:a9:8f:8f:e0:93:
af:bf:41:bc:ec:98:e4:70:cc:e2:e2:f7:3c:62:58:24:b8:f0:
e0:7d:ec:7b:eb:aa:d4:a4:34:37:f4:f5:5b:47:a5:57:c9:9c:
47:64:28:cb:26:51:c1:3c:30:f5:ee:20:a6:1c:3a:74:b4:6c:
e6:fa:f1:04:4c:7e:96:0d:2f:97:f8:85:3e:8b:de:2f:93:dd:
a6:66:0a:05:a1:43:67:d7:f0:31:e6:2f:57:c1:5b:68:6c:df:
99:27:10:bb:9f:d5:8f:80:51:37:a4:6b:d8:19:0f:6a:53:f4:
c0:47:a9:98:5d:06:43:23:48:a7:bc:fd:5a:da:4f:87:61:5e:
e4:28:e4:3e
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICCo8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMjA5MTUw
MjQyMTJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE0QUVEMEJDQTRENUY3
NzMwMURGM0RFMjlGQTlGQjg3NzQzMDM0M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDlCZYK6ex5H6ZuFXxVyWm1V0C4OpL1VbrIx9uWD99cXmyLorab
6rby/Msv47P3p+ReBdrAmQVD3W8AxsZg3qLpOVQePkq27l6aqLsIsrjUXlC7D8gR
m3LZfjEKZeSOQAvHCdvmOSE+MohYYaRT9WxTg0BpeVmJCVD6SPD5UpYFvsJKlCbw
Mc+NuQDXJA3qawJ0es9S9xJ9JDv+kgMGxewv5F2fptkGuugLbj7Y+peKuWfjTYzS
AxxIbz5X/mXY4p9do3WEfmblQL8f3qJDjs1HA573CnOBoHZDevpRqV4XzAn0kUU8
jvdhbIE6lPD/vToSn7CumA0bsi+PUucVM0pdAgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQUpK7QvKTV93MB3z3in6n7h3QwND0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3BLN1F2S1RWOTNNQjN6M2luNm43aDNR
d05EMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwNuGDANBgkq
hkiG9w0BAQsFAAOCAQEAs6tv8Mo1UPpqgKtEkzwQ+GufmVHbT0+5VFth1mU0aOyM
EH1IvWmJs5eDDNkjRhNjBB0tkrcfnrrZhlfvBpIaMivfyMAdu7pVclOTXVTjcVqe
QKABOgKUNDzttR/xJdCp3qpi6KxSJxV+ajFyd4I4VSQSmM7s0AnDs6mPj+CTr79B
vOyY5HDM4uL3PGJYJLjw4H3se+uq1KQ0N/T1W0elV8mcR2QoyyZRwTww9e4gphw6
dLRs5vrxBEx+lg0vl/iFPoveL5PdpmYKBaFDZ9fwMeYvV8FbaGzfmScQu5/Vj4BR
N6Rr2BkPalP0wEepmF0GQyNIp7z9WtpPh2Fe5CjkPg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org