Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/eQk8M-vXtzH2B_w46tRVHwowbFE.roa
File: eQk8M-vXtzH2B_w46tRVHwowbFE.roa (raw, json)
Hash identifier: a9uunCnloGPOX2oWXKQcWF+z+fM+AhLSGazTCqBa85g=
Subject key identifier: 79:09:3C:33:EB:D7:B7:31:F6:07:FC:38:EA:D4:55:1F:0A:30:6C:51
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0A87
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/eQk8M-vXtzH2B_w46tRVHwowbFE.roa
Signing time: Thu 15 Sep 2022 02:38:42 +0000
ROA not before: Thu 15 Sep 2022 02:38:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4782
IP address blocks: 117.56.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2695 (0xa87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 15 02:38:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=79093C33EBD7B731F607FC38EAD4551F0A306C51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:bf:f4:05:0d:7e:e8:2e:89:9b:5c:a1:98:ea:
2c:8f:e5:13:64:6d:16:69:0d:5d:92:bc:0e:91:37:
07:b9:37:c6:8b:63:c0:4a:a9:8b:38:12:33:5a:9d:
00:10:7d:47:23:7a:cc:da:e8:14:32:01:1f:83:af:
fd:d0:98:30:c5:42:0d:6b:40:9c:ff:68:31:73:25:
29:ec:01:aa:5e:52:06:af:82:bd:85:61:80:26:8e:
19:5b:46:da:fe:b1:97:dd:15:b6:4c:ef:7b:13:51:
18:6d:93:a6:15:bf:f7:d9:1f:0e:b7:3f:e0:92:3d:
a2:b8:cc:67:75:2e:2e:fc:60:5b:0e:39:f0:86:b7:
94:00:27:90:e2:60:2d:71:ff:32:1c:07:32:f5:e0:
1b:98:3d:48:46:69:8f:a5:9f:c5:f1:ff:b0:d2:03:
4c:93:92:39:fd:e5:b5:38:2a:d1:db:6e:d9:cd:4b:
f4:a7:58:43:5b:35:71:d6:d4:2c:73:9e:6e:e5:9f:
0b:01:c6:01:55:2b:64:a7:f9:d2:99:ee:03:bb:51:
cc:7e:28:af:76:7d:af:ad:48:2f:2a:dd:92:d1:e2:
98:06:67:bb:6c:c6:90:f4:a2:c7:70:7a:cb:16:8e:
5a:65:c3:4e:fc:be:43:9b:b9:ce:58:60:eb:48:cb:
6c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:09:3C:33:EB:D7:B7:31:F6:07:FC:38:EA:D4:55:1F:0A:30:6C:51
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/eQk8M-vXtzH2B_w46tRVHwowbFE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
117.56.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3c:41:11:3b:72:e3:c2:92:7e:92:31:db:7c:99:0b:7e:cf:da:
c0:ea:bf:64:28:7b:24:b3:d7:5f:9e:cd:de:54:30:54:0e:8b:
70:3d:a0:65:dd:f5:53:07:c4:b7:ce:ce:25:74:ad:c2:56:b0:
e3:14:18:69:f6:15:55:5f:53:e0:23:a1:89:34:b5:40:e9:1a:
87:d5:f1:af:26:38:38:93:27:b6:6a:48:e8:a6:74:82:b8:6b:
53:55:9a:f4:80:7d:2d:b7:a0:e3:13:53:f0:e2:5e:46:db:80:
71:1a:b6:32:7c:3a:71:0d:83:71:1d:63:47:be:20:3c:eb:3a:
93:20:5a:13:6f:26:ae:fe:f7:56:83:ca:c7:56:85:73:b7:2b:
4e:83:f5:ff:7a:57:e9:61:d0:0e:04:11:d9:63:16:d0:87:d5:
de:c4:ab:8a:fb:50:b5:1b:67:a9:99:86:8e:35:1e:6c:11:ad:
a1:cd:ac:8a:3f:b7:25:30:63:75:bb:de:6e:dd:82:6d:c9:56:
10:55:2b:12:20:8b:c8:8b:6b:19:d8:8b:2e:f1:0b:a3:dc:0b:
c0:fa:df:1d:dd:10:04:fd:bd:a0:dd:97:5e:ab:4d:29:88:c0:
3f:3d:2d:f6:6d:0c:8c:11:5b:bf:22:b1:4c:42:fb:8d:da:1e:
09:d2:97:48
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICCocwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG
RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yMjA5MTUw
MjM4NDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDc5MDkzQzMzRUJEN0I3
MzFGNjA3RkMzOEVBRDQ1NTFGMEEzMDZDNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUv/QFDX7oLombXKGY6iyP5RNkbRZpDV2SvA6RNwe5N8aLY8BK
qYs4EjNanQAQfUcjesza6BQyAR+Dr/3QmDDFQg1rQJz/aDFzJSnsAapeUgavgr2F
YYAmjhlbRtr+sZfdFbZM73sTURhtk6YVv/fZHw63P+CSPaK4zGd1Li78YFsOOfCG
t5QAJ5DiYC1x/zIcBzL14BuYPUhGaY+ln8Xx/7DSA0yTkjn95bU4KtHbbtnNS/Sn
WENbNXHW1Cxznm7lnwsBxgFVK2Sn+dKZ7gO7Ucx+KK92fa+tSC8q3ZLR4pgGZ7ts
xpD0osdwessWjlplw078vkObuc5YYOtIy2zfAgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQUeQk8M+vXtzH2B/w46tRVHwowbFEwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ
7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm
NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2VRazhNLXZYdHpIMkJfdzQ2dFJWSHdv
d2JGRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB1ODANBgkq
hkiG9w0BAQsFAAOCAQEAPEERO3LjwpJ+kjHbfJkLfs/awOq/ZCh7JLPXX57N3lQw
VA6LcD2gZd31UwfEt87OJXStwlaw4xQYafYVVV9T4COhiTS1QOkah9XxryY4OJMn
tmpI6KZ0grhrU1Wa9IB9Lbeg4xNT8OJeRtuAcRq2Mnw6cQ2DcR1jR74gPOs6kyBa
E28mrv73VoPKx1aFc7crToP1/3pX6WHQDgQR2WMW0IfV3sSrivtQtRtnqZmGjjUe
bBGtoc2sij+3JTBjdbvebt2CbclWEFUrEiCLyItrGdiLLvELo9wLwPrfHd0QBP29
oN2XXqtNKYjAPz0t9m0MjBFbvyKxTEL7jdoeCdKXSA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org