Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/bp3QfKjQLZF-v8FwnEJNCC6yZ6o.roa
File: bp3QfKjQLZF-v8FwnEJNCC6yZ6o.roa (raw, json)
Hash identifier: f9iczVvaDPmGXOXw4zhoyLbJ6xddVMX/6cZaTxish7c=
Subject key identifier: 6E:9D:D0:7C:A8:D0:2D:91:7E:BF:C1:70:9C:42:4D:08:2E:B2:67:AA
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 078A
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/bp3QfKjQLZF-v8FwnEJNCC6yZ6o.roa
Signing time: Tue 29 Sep 2020 10:03:54 +0000
ROA not before: Tue 29 Sep 2020 10:03:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 117.56.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1930 (0x78a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 10:03:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6E9DD07CA8D02D917EBFC1709C424D082EB267AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:de:5b:15:e6:7e:79:4f:b5:5f:f9:30:6a:41:
5b:ee:8e:44:d6:99:d9:b1:fb:20:10:85:f4:2f:23:
27:21:93:05:4c:55:9b:4e:e3:9f:e3:5c:b9:ca:19:
7a:8e:7a:9f:4b:aa:7f:7d:96:ed:00:ac:3a:9a:b0:
84:ad:2b:46:1d:6a:52:89:a2:20:31:69:fb:41:33:
df:3f:41:c1:34:52:59:9c:5d:01:2f:19:bc:8d:44:
60:26:56:84:a7:98:e8:a7:54:cf:cc:14:b4:27:38:
ac:11:98:15:07:ae:80:e2:84:c6:a0:5b:91:7d:3e:
01:2b:9a:c6:e4:ff:73:22:db:49:a4:0e:62:9d:ea:
d9:a5:f1:ab:76:88:5f:72:5b:b8:8d:94:af:62:51:
82:c5:e9:18:e5:82:b7:da:9f:16:b8:38:56:c7:af:
76:5e:78:76:3d:09:7a:5c:49:c2:ed:4e:0e:8a:78:
5a:cf:6a:2f:3a:a5:61:03:cb:15:95:ef:f8:90:c3:
9c:ce:54:87:00:97:af:7c:b3:01:2b:dc:f9:aa:d0:
40:8d:86:a3:98:52:3c:d7:f8:9d:06:12:24:4f:b6:
ce:98:54:cb:7c:67:17:96:ff:9f:03:48:13:23:ac:
27:35:72:73:60:47:48:f9:48:ac:87:10:d2:13:0f:
40:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:9D:D0:7C:A8:D0:2D:91:7E:BF:C1:70:9C:42:4D:08:2E:B2:67:AA
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/bp3QfKjQLZF-v8FwnEJNCC6yZ6o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
117.56.0.0/16
Signature Algorithm: sha256WithRSAEncryption
21:20:a7:40:56:35:b2:f8:d5:4b:76:2a:31:4b:c8:90:61:5d:
16:6f:75:b7:73:53:63:09:e4:b0:4d:c0:31:4d:7c:2b:69:a5:
8b:b3:d2:af:54:15:0b:6b:f9:73:55:74:8a:ea:68:33:97:0b:
bc:39:b6:42:83:e8:30:29:52:45:e8:79:fb:f5:c9:87:cd:72:
ed:ff:dd:54:ec:2b:99:c9:57:6c:03:26:72:6b:09:16:c8:5c:
e7:0c:f5:0a:cb:ef:43:23:58:92:8b:cf:fb:db:1d:0c:f3:a0:
b2:fa:ef:36:28:2e:ce:e4:5a:64:8c:15:6f:5a:19:66:dd:6a:
b0:90:4b:87:ea:ea:db:09:89:92:3c:95:40:f3:57:d1:bf:d6:
0f:9c:a8:12:7a:cc:e6:3b:7b:18:c4:4a:b3:70:b3:7f:5b:bd:
77:90:6d:dd:86:e1:f3:9d:5e:cd:77:45:2e:09:cc:c4:ab:e4:
67:21:8a:e8:b3:6c:94:f4:36:f3:1e:ca:2c:dc:53:26:ae:62:
f5:c6:4e:44:ab:0a:b2:8c:79:aa:c4:79:e5:ad:72:89:b3:6b:
bd:a3:9e:34:3d:7f:e7:29:24:bb:06:58:15:4f:55:73:02:c6:
0e:0a:45:16:10:e3:3c:15:6b:58:27:ce:0a:99:73:bb:38:f4:
69:31:35:2d
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICB4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG
RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yMDA5Mjkx
MDAzNTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDZFOUREMDdDQThEMDJE
OTE3RUJGQzE3MDlDNDI0RDA4MkVCMjY3QUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDX3lsV5n55T7Vf+TBqQVvujkTWmdmx+yAQhfQvIychkwVMVZtO
45/jXLnKGXqOep9Lqn99lu0ArDqasIStK0YdalKJoiAxaftBM98/QcE0UlmcXQEv
GbyNRGAmVoSnmOinVM/MFLQnOKwRmBUHroDihMagW5F9PgErmsbk/3Mi20mkDmKd
6tml8at2iF9yW7iNlK9iUYLF6Rjlgrfanxa4OFbHr3ZeeHY9CXpcScLtTg6KeFrP
ai86pWEDyxWV7/iQw5zOVIcAl698swEr3Pmq0ECNhqOYUjzX+J0GEiRPts6YVMt8
ZxeW/58DSBMjrCc1cnNgR0j5SKyHENITD0BlAgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQUbp3QfKjQLZF+v8FwnEJNCC6yZ6owHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ
7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm
NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2JwM1FmS2pRTFpGLXY4RnduRUpOQ0M2
eVo2by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB1ODANBgkq
hkiG9w0BAQsFAAOCAQEAISCnQFY1svjVS3YqMUvIkGFdFm91t3NTYwnksE3AMU18
K2mli7PSr1QVC2v5c1V0iupoM5cLvDm2QoPoMClSReh5+/XJh81y7f/dVOwrmclX
bAMmcmsJFshc5wz1CsvvQyNYkovP+9sdDPOgsvrvNiguzuRaZIwVb1oZZt1qsJBL
h+rq2wmJkjyVQPNX0b/WD5yoEnrM5jt7GMRKs3Czf1u9d5Bt3Ybh851ezXdFLgnM
xKvkZyGK6LNslPQ28x7KLNxTJq5i9cZORKsKsox5qsR55a1yibNrvaOeND1/5ykk
uwZYFU9VcwLGDgpFFhDjPBVrWCfOCplzuzj0aTE1LQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org