Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/z1XQW39NOmEUZ_EzZpPsNFpK6vQ.roa
File: z1XQW39NOmEUZ_EzZpPsNFpK6vQ.roa (raw, json)
Hash identifier: IUQi1le3O0bj18WmMW42gcoLBxKvleaQmx8B4DtJWJA=
Subject key identifier: CF:55:D0:5B:7F:4D:3A:61:14:67:F1:33:66:93:EC:34:5A:4A:EA:F4
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 099B
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/z1XQW39NOmEUZ_EzZpPsNFpK6vQ.roa
Signing time: Wed 29 Sep 2021 02:42:32 +0000
ROA not before: Wed 29 Sep 2021 02:42:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9674
IP address blocks: 211.73.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2459 (0x99b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 02:42:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CF55D05B7F4D3A611467F1336693EC345A4AEAF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:94:e1:21:57:95:f9:d1:02:cf:87:6b:d7:fa:
3b:94:95:2b:7d:b3:99:5e:9e:c1:a7:3b:53:87:3a:
e7:c4:a9:a0:cd:3d:c9:78:74:cf:71:98:7c:51:8b:
b3:8b:a2:df:e9:2b:4a:6e:2d:4e:d0:37:02:ff:eb:
e2:c4:d5:53:2e:92:1e:13:9d:68:d5:43:13:43:a1:
31:af:94:51:68:18:96:22:75:b7:66:56:89:2a:a9:
6a:52:e6:24:e8:88:91:7e:13:d4:b0:4c:51:df:7d:
6d:a1:d7:31:20:da:d7:03:3f:3d:c9:74:88:ae:66:
89:6d:52:3c:1f:b0:3c:7a:e5:cc:47:0b:ba:bd:ac:
0d:1c:7b:18:ee:b7:7f:58:d1:53:35:db:68:de:35:
53:c9:f1:79:3b:8f:fc:5a:28:0a:06:4f:a1:bc:e5:
b1:43:34:39:39:3b:a3:0b:da:0a:df:04:e1:8f:8f:
16:fa:a3:85:d7:de:85:02:1b:c2:ac:16:bc:c4:67:
30:1d:31:fb:ee:7f:20:fd:4e:c9:06:12:d6:df:b7:
be:b5:d0:e8:9e:b3:6f:81:74:86:89:bc:bd:5c:62:
8d:d9:9f:a9:3a:b2:f2:ad:78:37:9f:a2:c7:d1:ae:
e6:c3:11:79:ec:8f:97:99:70:9d:61:0a:af:42:d0:
78:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:55:D0:5B:7F:4D:3A:61:14:67:F1:33:66:93:EC:34:5A:4A:EA:F4
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/z1XQW39NOmEUZ_EzZpPsNFpK6vQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.128.0/19
Signature Algorithm: sha256WithRSAEncryption
78:a6:e6:5d:f3:b7:43:94:59:6c:cf:8b:e0:7e:b0:e0:d0:51:
f9:38:85:16:33:09:8d:1b:69:e7:13:db:19:04:22:01:c6:45:
bc:58:6f:d6:9f:45:3c:c0:87:7c:76:10:a8:e7:df:54:1a:9a:
e8:a7:57:93:b5:29:29:4c:a5:99:a8:ef:21:10:75:a5:4f:1c:
d1:c0:9e:ff:74:28:46:96:12:1d:ba:bd:e7:89:06:bf:0a:d5:
fa:dd:d7:f1:0d:97:6d:86:f8:8d:ef:44:1d:f6:94:08:fb:0c:
ef:c0:9c:f6:26:7e:a7:57:19:df:dc:a5:66:cb:80:5c:18:bd:
9e:7c:b1:7b:df:7b:a7:ca:93:d1:30:82:32:54:6a:bd:d6:f4:
8b:bd:bb:fd:b2:dc:e1:62:5c:1c:b5:d3:2b:14:0c:1a:17:86:
b2:17:e0:ad:3a:6d:d5:77:2a:35:30:16:08:b1:6b:26:b7:61:
ac:9b:3d:fa:60:db:59:fa:6f:5a:06:ac:74:fb:4a:cc:c6:64:
ae:20:ee:70:de:3d:e7:69:31:f2:93:ec:c6:3f:6c:fb:7e:67:
1b:b3:23:d4:33:5f:ea:70:0a:c0:42:61:60:1b:ac:86:19:f9:
2c:e0:b2:a7:54:38:7a:5c:41:a4:1e:c2:29:7a:42:8c:55:39:
22:be:11:c9
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCZswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMTA5Mjkw
MjQyMzJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKENGNTVEMDVCN0Y0RDNB
NjExNDY3RjEzMzY2OTNFQzM0NUE0QUVBRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxlOEhV5X50QLPh2vX+juUlSt9s5lensGnO1OHOufEqaDNPcl4
dM9xmHxRi7OLot/pK0puLU7QNwL/6+LE1VMukh4TnWjVQxNDoTGvlFFoGJYidbdm
VokqqWpS5iToiJF+E9SwTFHffW2h1zEg2tcDPz3JdIiuZoltUjwfsDx65cxHC7q9
rA0cexjut39Y0VM122jeNVPJ8Xk7j/xaKAoGT6G85bFDNDk5O6ML2grfBOGPjxb6
o4XX3oUCG8KsFrzEZzAdMfvufyD9TskGEtbft7610Oies2+BdIaJvL1cYo3Zn6k6
svKteDefosfRrubDEXnsj5eZcJ1hCq9C0HgpAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUz1XQW39NOmEUZ/EzZpPsNFpK6vQwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3oxWFFXMzlOT21FVVpfRXpacFBzTkZw
SzZ2US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXTSYAwDQYJ
KoZIhvcNAQELBQADggEBAHim5l3zt0OUWWzPi+B+sODQUfk4hRYzCY0baecT2xkE
IgHGRbxYb9afRTzAh3x2EKjn31QamuinV5O1KSlMpZmo7yEQdaVPHNHAnv90KEaW
Eh26veeJBr8K1frd1/ENl22G+I3vRB32lAj7DO/AnPYmfqdXGd/cpWbLgFwYvZ58
sXvfe6fKk9EwgjJUar3W9Iu9u/2y3OFiXBy10ysUDBoXhrIX4K06bdV3KjUwFgix
aya3YaybPfpg21n6b1oGrHT7SszGZK4g7nDePedpMfKT7MY/bPt+ZxuzI9QzX+pw
CsBCYWAbrIYZ+SzgsqdUOHpcQaQewil6QoxVOSK+Eck=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:39:04 2025 by rpki-client