Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/wGH5KFosrU4GBLsYD0YXf7GFns4.roa
File: wGH5KFosrU4GBLsYD0YXf7GFns4.roa (raw, json)
Hash identifier: rUGyyEbTLDIKHkWTbmyUyYykDhBrFrNruAu1qPqkeJs=
Subject key identifier: C0:61:F9:28:5A:2C:AD:4E:06:04:BB:18:0F:46:17:7F:B1:85:9E:CE
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0A8F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wGH5KFosrU4GBLsYD0YXf7GFns4.roa
Signing time: Thu 15 Sep 2022 02:42:15 +0000
ROA not before: Thu 15 Sep 2022 02:42:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9674
IP address blocks: 211.77.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 15 02:42:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C061F9285A2CAD4E0604BB180F46177FB1859ECE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:21:e8:84:a0:79:b2:6a:fb:f1:8e:dc:f2:50:
8d:2b:a0:84:7c:96:8b:e4:06:da:71:13:27:5b:55:
51:e1:00:3f:c7:ce:95:de:b1:11:b2:e2:cf:59:e5:
a4:d3:27:72:39:be:65:23:cc:5c:f1:a7:94:17:b0:
04:7a:fe:df:d0:a7:16:ba:8d:8d:86:9e:a4:c0:1f:
18:97:58:6c:6a:88:14:ba:c4:76:14:46:e6:16:93:
ca:f3:17:76:ec:e3:92:85:ff:cc:8b:99:6f:8c:27:
c1:e1:87:f0:7d:1d:41:eb:61:de:c8:90:fb:59:0b:
cd:58:d9:46:1d:d3:3b:5d:75:4a:4c:0e:83:02:b9:
53:22:9f:30:64:5b:f3:45:94:3b:df:22:5c:34:6a:
0b:e2:1a:f6:7a:c4:7f:0e:10:41:68:87:5e:e0:c5:
1f:07:e0:b2:0d:79:e3:8b:91:97:75:e6:06:51:03:
2f:51:d9:52:06:a2:99:06:0f:f6:13:e8:b6:6c:7e:
4d:dc:25:60:1d:14:2a:21:f8:3b:2d:a6:c6:ac:7e:
59:cf:e8:db:b0:5d:81:93:7c:3d:dd:22:1f:f3:bf:
6b:7d:66:98:4b:ef:96:7d:be:e1:80:95:82:e3:bb:
16:9d:4e:13:b8:9c:a8:a5:4e:43:51:40:65:af:9d:
69:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:61:F9:28:5A:2C:AD:4E:06:04:BB:18:0F:46:17:7F:B1:85:9E:CE
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wGH5KFosrU4GBLsYD0YXf7GFns4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.77.128.0/17
Signature Algorithm: sha256WithRSAEncryption
5d:1d:72:d5:a0:b0:4e:1b:aa:12:84:c9:22:fe:b5:c1:a6:1b:
e6:6d:be:20:4e:2b:0a:5e:ac:b5:85:7c:4d:30:b2:33:d9:ed:
b1:e3:f7:db:17:b0:ec:25:b7:01:b6:e6:25:11:fd:c8:55:c6:
dd:7d:c6:32:3f:08:40:77:2e:ab:3b:3a:89:4e:49:67:35:a8:
26:24:36:f6:e9:bf:3f:54:2f:aa:bd:07:4d:92:e7:fb:af:1d:
47:39:98:22:71:f8:56:c3:a1:18:5e:d7:4e:05:c2:6b:28:59:
7c:21:28:dd:a6:3e:22:ab:67:f0:3e:d7:80:94:85:3e:83:1c:
a8:01:a3:63:e7:59:00:53:bd:f3:bb:30:a3:3b:f8:2c:b6:7f:
f9:bf:21:02:bc:88:fc:90:db:38:84:48:f2:38:d9:72:ae:37:
9e:03:7d:3e:e0:b6:e8:20:a9:cf:4f:8f:87:07:53:39:fc:79:
66:9b:1c:8f:6e:3e:97:d9:8c:18:ad:43:49:14:3f:26:0d:44:
a7:52:b3:f2:46:09:c5:9b:75:d7:77:e7:08:22:26:77:4d:0b:
3d:65:17:33:7f:0c:39:22:65:bd:3b:a8:60:66:47:cb:ea:5c:
6b:84:62:8a:dc:45:82:8b:13:28:50:6a:35:24:55:e4:8b:3b:
48:a7:2c:69
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCo8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMjA5MTUw
MjQyMTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEMwNjFGOTI4NUEyQ0FE
NEUwNjA0QkIxODBGNDYxNzdGQjE4NTlFQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCIeiEoHmyavvxjtzyUI0roIR8lovkBtpxEydbVVHhAD/HzpXe
sRGy4s9Z5aTTJ3I5vmUjzFzxp5QXsAR6/t/Qpxa6jY2GnqTAHxiXWGxqiBS6xHYU
RuYWk8rzF3bs45KF/8yLmW+MJ8Hhh/B9HUHrYd7IkPtZC81Y2UYd0ztddUpMDoMC
uVMinzBkW/NFlDvfIlw0agviGvZ6xH8OEEFoh17gxR8H4LINeeOLkZd15gZRAy9R
2VIGopkGD/YT6LZsfk3cJWAdFCoh+DstpsasflnP6NuwXYGTfD3dIh/zv2t9ZphL
75Z9vuGAlYLjuxadThO4nKilTkNRQGWvnWltAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUwGH5KFosrU4GBLsYD0YXf7GFns4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3dHSDVLRm9zclU0R0JMc1lEMFlYZjdH
Rm5zNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfTTYAwDQYJ
KoZIhvcNAQELBQADggEBAF0dctWgsE4bqhKEySL+tcGmG+ZtviBOKwperLWFfE0w
sjPZ7bHj99sXsOwltwG25iUR/chVxt19xjI/CEB3Lqs7OolOSWc1qCYkNvbpvz9U
L6q9B02S5/uvHUc5mCJx+FbDoRhe104FwmsoWXwhKN2mPiKrZ/A+14CUhT6DHKgB
o2PnWQBTvfO7MKM7+Cy2f/m/IQK8iPyQ2ziESPI42XKuN54DfT7gtuggqc9Pj4cH
Uzn8eWabHI9uPpfZjBitQ0kUPyYNRKdSs/JGCcWbddd35wgiJndNCz1lFzN/DDki
Zb07qGBmR8vqXGuEYorcRYKLEyhQajUkVeSLO0inLGk=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:06:34 2025 by rpki-client