Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/7EtwlIeXAFG3-iqiS2bz3Zo4A3g.roa
File: 7EtwlIeXAFG3-iqiS2bz3Zo4A3g.roa (raw, json)
Hash identifier: /Q7O9q3nP5VOBOZzNFEWtGRXItlmpOXgUuZ4UKCmTzg=
Subject key identifier: EC:4B:70:94:87:97:00:51:B7:FA:2A:A2:4B:66:F3:DD:9A:38:03:78
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0B8D
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/7EtwlIeXAFG3-iqiS2bz3Zo4A3g.roa
Signing time: Fri 01 Sep 2023 08:54:48 +0000
ROA not before: Fri 01 Sep 2023 08:54:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4782
IP address blocks: 124.199.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2957 (0xb8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 1 08:54:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EC4B709487970051B7FA2AA24B66F3DD9A380378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2e:c5:02:ca:c3:aa:a0:77:cc:42:d2:af:3b:
32:8c:30:da:a1:35:fe:4a:c9:b8:30:41:28:4f:e4:
ee:39:bc:98:54:94:33:17:01:a2:2f:9c:dd:c4:24:
32:62:4a:33:5f:25:42:58:14:ff:7d:5d:f2:b9:37:
9b:85:ff:f7:93:71:b9:1a:51:cc:22:37:34:73:75:
a3:a5:ce:35:c2:1f:df:fb:8a:30:d4:c7:60:cf:6e:
cb:f9:11:84:1d:86:6d:d0:4f:7d:92:03:11:b3:0d:
b3:04:b1:f0:9b:42:cc:0e:64:49:24:eb:d4:3f:33:
b7:d4:67:1d:a5:06:9f:83:63:45:10:69:1e:db:88:
d8:c7:0a:d6:32:23:d5:88:d1:d5:de:4a:ba:89:e2:
bb:96:ba:dc:04:a9:63:f9:f9:16:7f:33:7b:f1:94:
0e:51:f2:e6:78:7d:e9:9f:dd:f8:bb:77:67:ef:72:
cf:42:be:ae:0e:ed:c4:80:e5:8d:68:5b:89:72:dc:
a7:c2:59:13:7e:57:6b:1f:49:31:a1:1b:88:64:a5:
06:db:9f:81:2a:80:0a:76:a8:63:d0:d0:e4:3b:c4:
10:76:61:46:63:a0:78:b4:e7:16:a6:71:c5:2a:b6:
9f:c6:e4:00:6c:4a:04:e6:8b:e0:e3:4e:2e:4a:b5:
e0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:4B:70:94:87:97:00:51:B7:FA:2A:A2:4B:66:F3:DD:9A:38:03:78
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/7EtwlIeXAFG3-iqiS2bz3Zo4A3g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.199.64.0/19
Signature Algorithm: sha256WithRSAEncryption
ac:99:07:e0:e2:10:12:a3:4b:c9:96:20:2b:6d:eb:91:0c:6c:
cd:52:0d:57:8b:74:d3:de:ae:6e:7f:b7:ff:7c:1f:84:3a:d2:
21:75:52:5d:af:63:a3:a5:4a:ba:4c:67:79:b0:7f:c9:ff:49:
8e:b7:0f:1c:78:8e:fd:d6:19:e0:2c:f8:e1:28:15:27:16:b5:
71:3b:1a:69:b4:02:72:ec:39:cc:40:a8:37:8d:0b:0a:62:39:
f0:82:ba:93:78:35:f5:bd:9b:f0:aa:26:e0:d2:7c:6a:b7:d0:
3c:78:d6:89:98:5b:af:85:6e:01:63:a2:9f:80:e4:dd:c9:f5:
a4:eb:d5:81:f8:7f:e4:e9:7e:82:62:15:be:67:3e:6d:03:9f:
dc:1d:77:56:29:b6:f0:53:94:4a:c4:00:35:41:a0:af:6a:57:
c1:41:b0:c1:25:d6:d0:cf:0c:2e:ea:64:a4:23:e2:e4:b3:a3:
23:3e:2e:e9:8f:f9:ba:04:93:0f:6c:d9:66:98:0f:38:b6:0e:
d8:3f:a5:32:ff:51:e8:76:57:f5:ac:77:18:16:45:a3:98:6b:
dc:35:00:5e:3c:5b:cf:08:1a:e7:71:84:03:c3:73:e9:7c:58:
7f:15:4f:a7:2e:15:21:fa:5c:c9:04:b3:68:ba:f7:78:f4:c6:
01:3d:b9:f0
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICC40wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG
RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yMzA5MDEw
ODU0NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVDNEI3MDk0ODc5NzAw
NTFCN0ZBMkFBMjRCNjZGM0REOUEzODAzNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGLsUCysOqoHfMQtKvOzKMMNqhNf5KybgwQShP5O45vJhUlDMX
AaIvnN3EJDJiSjNfJUJYFP99XfK5N5uF//eTcbkaUcwiNzRzdaOlzjXCH9/7ijDU
x2DPbsv5EYQdhm3QT32SAxGzDbMEsfCbQswOZEkk69Q/M7fUZx2lBp+DY0UQaR7b
iNjHCtYyI9WI0dXeSrqJ4ruWutwEqWP5+RZ/M3vxlA5R8uZ4femf3fi7d2fvcs9C
vq4O7cSA5Y1oW4ly3KfCWRN+V2sfSTGhG4hkpQbbn4EqgAp2qGPQ0OQ7xBB2YUZj
oHi05xamccUqtp/G5ABsSgTmi+DjTi5KteCfAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU7EtwlIeXAFG3+iqiS2bz3Zo4A3gwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ
7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm
NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOLzdFdHdsSWVYQUZHMy1pcWlTMmJ6M1pv
NEEzZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV8x0AwDQYJ
KoZIhvcNAQELBQADggEBAKyZB+DiEBKjS8mWICtt65EMbM1SDVeLdNPerm5/t/98
H4Q60iF1Ul2vY6OlSrpMZ3mwf8n/SY63Dxx4jv3WGeAs+OEoFScWtXE7Gmm0AnLs
OcxAqDeNCwpiOfCCupN4NfW9m/CqJuDSfGq30Dx41omYW6+FbgFjop+A5N3J9aTr
1YH4f+TpfoJiFb5nPm0Dn9wdd1YptvBTlErEADVBoK9qV8FBsMEl1tDPDC7qZKQj
4uSzoyM+LumP+boEkw9s2WaYDzi2Dtg/pTL/Ueh2V/WsdxgWRaOYa9w1AF48W88I
GudxhAPDc+l8WH8VT6cuFSH6XMkEs2i693j0xgE9ufA=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:07:54 2025 by rpki-client