Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/n3CM0DjnLScJUza9TbVDdmaBjqI.roa
File: n3CM0DjnLScJUza9TbVDdmaBjqI.roa (raw, json)
Hash identifier: RfW6uKSsj/aT6kmKU2fYr8BahARarwZHtaV7Xkgman0=
Subject key identifier: 9F:70:8C:D0:38:E7:2D:27:09:53:36:BD:4D:B5:43:76:66:81:8E:A2
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0781
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/n3CM0DjnLScJUza9TbVDdmaBjqI.roa
Signing time: Tue 29 Sep 2020 10:03:51 +0000
ROA not before: Tue 29 Sep 2020 10:03:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 211.79.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1921 (0x781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 10:03:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9F708CD038E72D27095336BD4DB5437666818EA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:cf:4f:8d:79:b7:99:e5:a1:05:25:38:89:23:
50:29:96:bf:66:5e:40:82:fb:38:56:e8:e9:dc:e8:
81:40:31:b5:1d:ec:d6:da:6b:3f:2f:98:a6:0b:37:
6c:1b:82:44:2c:2c:45:1d:01:0d:0f:59:13:ed:a5:
90:47:2c:4d:10:fa:04:cb:f7:80:ce:33:e4:d7:54:
51:8d:ba:c6:03:53:9c:07:6e:9a:11:cb:e3:82:94:
90:60:df:d3:9a:2b:2f:a4:a1:37:26:02:3e:13:aa:
fe:3b:61:27:26:84:18:33:24:07:1c:cc:30:c6:99:
30:78:d6:b9:a6:5d:9f:3a:39:c3:3f:45:60:c9:9e:
79:b8:41:4a:42:83:d7:1d:df:69:dd:15:56:cf:d1:
ac:cb:09:e7:4e:34:f2:5d:b0:0e:c2:e6:ae:c5:ca:
eb:fb:99:b1:fd:ee:c9:96:d7:b2:29:f0:60:70:df:
26:49:9e:3f:fd:22:1b:9f:65:ea:8e:81:1c:39:5c:
30:b8:70:63:e6:d0:c0:d0:c9:90:31:9c:9c:be:93:
c5:0f:45:e2:f4:78:fb:52:eb:12:f2:23:9b:e4:27:
c4:91:ce:0b:10:0e:37:a0:d9:52:62:08:f3:98:7a:
1a:88:f3:1f:5d:51:4b:84:45:d6:2f:85:bd:22:6c:
31:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:70:8C:D0:38:E7:2D:27:09:53:36:BD:4D:B5:43:76:66:81:8E:A2
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/n3CM0DjnLScJUza9TbVDdmaBjqI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.128.0/19
Signature Algorithm: sha256WithRSAEncryption
54:fe:4c:5e:7d:ec:f0:d6:50:3c:ba:fd:08:a5:a3:48:4f:37:
9a:d9:f3:57:ee:ac:68:aa:5c:7b:d0:7b:57:ee:fd:40:39:8c:
2c:7f:e6:8a:71:5a:85:cc:65:ba:23:cf:7d:c8:6b:29:3c:18:
72:7d:5b:5a:bf:6f:b8:0a:d8:e9:ab:44:29:28:44:5d:bb:8b:
a2:f7:5f:db:90:e4:46:d3:df:38:10:80:9a:eb:4b:61:35:98:
af:96:b1:23:13:42:80:eb:6c:f9:5b:01:89:12:36:e5:0b:a3:
c3:35:bb:77:90:6b:5a:bb:34:6b:c8:9f:c2:2b:4c:d3:c8:ec:
f2:be:39:5f:f0:1e:69:25:cf:8d:78:06:ae:ee:7e:e3:66:80:
d6:5e:b4:65:40:f4:e2:3f:f2:50:5e:f5:20:07:88:11:10:e7:
d0:86:b3:cc:15:24:73:30:4c:9b:4f:46:63:82:7d:c0:5e:8c:
4a:71:25:c6:ef:7a:a3:37:f8:13:04:bb:f6:6c:73:c7:66:49:
21:00:f1:ad:bb:fc:70:3f:94:3a:63:10:64:2b:74:52:bc:68:
c1:d3:34:47:5b:c3:fc:67:4e:66:6c:ef:12:c8:88:c9:cf:63:
76:8e:85:d4:75:20:8e:cc:b9:05:7b:8a:4c:b3:34:d6:b3:30:
51:6d:0d:bf
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICB4EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG
RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yMDA5Mjkx
MDAzNTFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDlGNzA4Q0QwMzhFNzJE
MjcwOTUzMzZCRDREQjU0Mzc2NjY4MThFQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrz0+NebeZ5aEFJTiJI1Aplr9mXkCC+zhW6Onc6IFAMbUd7Nba
az8vmKYLN2wbgkQsLEUdAQ0PWRPtpZBHLE0Q+gTL94DOM+TXVFGNusYDU5wHbpoR
y+OClJBg39OaKy+koTcmAj4Tqv47YScmhBgzJAcczDDGmTB41rmmXZ86OcM/RWDJ
nnm4QUpCg9cd32ndFVbP0azLCedONPJdsA7C5q7Fyuv7mbH97smW17Ip8GBw3yZJ
nj/9IhufZeqOgRw5XDC4cGPm0MDQyZAxnJy+k8UPReL0ePtS6xLyI5vkJ8SRzgsQ
Djeg2VJiCPOYehqI8x9dUUuERdYvhb0ibDE5AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUn3CM0DjnLScJUza9TbVDdmaBjqIwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ
7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm
NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL24zQ00wRGpuTFNjSlV6YTlUYlZEZG1h
QmpxSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXTT4AwDQYJ
KoZIhvcNAQELBQADggEBAFT+TF597PDWUDy6/Qilo0hPN5rZ81furGiqXHvQe1fu
/UA5jCx/5opxWoXMZbojz33Iayk8GHJ9W1q/b7gK2OmrRCkoRF27i6L3X9uQ5EbT
3zgQgJrrS2E1mK+WsSMTQoDrbPlbAYkSNuULo8M1u3eQa1q7NGvIn8IrTNPI7PK+
OV/wHmklz414Bq7ufuNmgNZetGVA9OI/8lBe9SAHiBEQ59CGs8wVJHMwTJtPRmOC
fcBejEpxJcbveqM3+BMEu/Zsc8dmSSEA8a27/HA/lDpjEGQrdFK8aMHTNEdbw/xn
TmZs7xLIiMnPY3aOhdR1II7MuQV7ikyzNNazMFFtDb8=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:02 2023 by rpki-client on console-fra.rpki-client.org