Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSNET/nfx3ofKDFP0O6mX2PC9PHVTU11M.roa
File: nfx3ofKDFP0O6mX2PC9PHVTU11M.roa (raw, json)
Hash identifier: DI1LWrm8vDj7Uo7KxrJG/GYMrmocd4zZQz95zbZNZNc=
Subject key identifier: 9D:FC:77:A1:F2:83:14:FD:0E:EA:65:F6:3C:2F:4F:1D:54:D4:D7:53
Certificate issuer: /CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F
Certificate serial: 076F
Authority key identifier: 4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/nfx3ofKDFP0O6mX2PC9PHVTU11M.roa
Signing time: Tue 29 Sep 2020 09:51:47 +0000
ROA not before: Tue 29 Sep 2020 09:51:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38837
IP address blocks: 211.78.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1903 (0x76f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F
Validity
Not Before: Sep 29 09:51:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9DFC77A1F28314FD0EEA65F63C2F4F1D54D4D753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:54:85:dc:14:d1:fc:ab:99:75:05:61:21:2c:
64:e1:65:2a:09:98:c2:ed:ff:27:8f:c1:b0:fd:1e:
cf:b7:61:ed:97:d7:e7:2d:29:5d:1d:90:39:11:9f:
49:fd:ec:36:16:89:7c:50:95:d6:16:03:a1:ac:25:
ca:2e:f7:01:92:72:58:95:74:e9:10:b9:e8:13:e7:
4a:a1:9e:cb:28:2e:07:39:96:74:db:4b:ca:6b:2a:
4a:67:17:5f:54:b5:be:b3:6c:4f:0f:86:27:c9:9a:
57:74:74:98:70:30:60:e4:2c:35:ac:4d:f4:19:68:
93:52:22:b2:dd:dd:ad:10:cb:ef:0e:7e:47:3d:90:
c8:3c:16:2f:48:3b:1a:32:46:8b:be:4e:35:86:31:
b9:47:6c:de:57:a2:70:76:23:17:79:44:15:9a:61:
6f:1c:f3:79:cb:5a:1f:87:f7:78:17:0c:29:6e:c6:
d5:cd:97:62:06:5d:ff:3e:3f:a8:60:d3:04:dc:74:
90:9d:0d:34:16:73:55:66:e8:1d:03:8a:ce:2e:28:
d4:8a:ee:3a:12:95:7c:05:c9:35:2b:41:bb:2f:15:
cb:4f:de:69:a6:e1:77:ec:1c:f8:17:09:a5:4d:84:
69:ff:e4:6b:93:eb:01:18:94:e0:f9:74:cb:ef:45:
a7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:FC:77:A1:F2:83:14:FD:0E:EA:65:F6:3C:2F:4F:1D:54:D4:D7:53
X509v3 Authority Key Identifier:
keyid:4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/nfx3ofKDFP0O6mX2PC9PHVTU11M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.64.0/20
Signature Algorithm: sha256WithRSAEncryption
9d:bc:48:6c:0d:cc:5e:79:04:73:fb:6b:4e:53:23:b9:e5:27:
c9:15:12:04:52:c6:38:af:2e:a6:59:66:61:da:69:d3:a7:ae:
e4:e3:1e:4b:43:86:26:14:53:68:3c:03:13:c6:9c:a3:47:f8:
63:c1:91:d5:fb:92:c2:9a:da:56:8f:28:e9:27:44:76:e0:68:
34:ff:f0:a3:98:6f:0e:c5:9a:a8:c2:71:01:f6:dd:3c:22:c2:
db:50:ac:6a:75:a8:be:7b:4b:27:e2:c0:f9:7c:a5:2a:cc:a9:
19:a5:f6:e2:06:08:0c:b3:79:f4:65:15:4b:c0:54:76:66:d8:
43:69:58:b9:65:80:3a:39:1b:60:d3:71:b7:d2:98:74:f1:84:
59:ed:92:45:ff:39:de:ac:6f:2d:e9:64:ca:6b:cf:55:ec:d7:
a8:2b:89:bf:65:33:34:35:88:1e:e2:95:c0:9a:38:f2:0c:b7:
db:3a:eb:e7:3e:6b:7a:c9:83:3b:7d:60:29:7d:d7:b5:21:9f:
ca:84:c4:5f:6c:d8:a8:b3:2c:7c:91:d6:0b:81:cd:25:f9:a9:
9f:91:d5:db:25:59:97:c7:a6:23:56:5e:bb:69:ff:dc:c8:e7:
10:24:46:14:4d:ef:81:3b:e4:93:0d:52:2c:44:24:4b:ea:b1:
47:54:7a:69
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB28wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEM0
N0RGNzQ4RUMwRkYxNjkxMjI4M0NFQzEwRUMxMEVEMzJEMjQ0RjAeFw0yMDA5Mjkw
OTUxNDdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDlERkM3N0ExRjI4MzE0
RkQwRUVBNjVGNjNDMkY0RjFENTRENEQ3NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVVIXcFNH8q5l1BWEhLGThZSoJmMLt/yePwbD9Hs+3Ye2X1+ct
KV0dkDkRn0n97DYWiXxQldYWA6GsJcou9wGScliVdOkQuegT50qhnssoLgc5lnTb
S8prKkpnF19Utb6zbE8PhifJmld0dJhwMGDkLDWsTfQZaJNSIrLd3a0Qy+8Ofkc9
kMg8Fi9IOxoyRou+TjWGMblHbN5XonB2Ixd5RBWaYW8c83nLWh+H93gXDCluxtXN
l2IGXf8+P6hg0wTcdJCdDTQWc1Vm6B0Dis4uKNSK7joSlXwFyTUrQbsvFctP3mmm
4XfsHPgXCaVNhGn/5GuT6wEYlOD5dMvvRaflAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUnfx3ofKDFP0O6mX2PC9PHVTU11MwHwYDVR0jBBgwFoAUTEffdI7A/xaRIoPO
wQ7BDtMtJE8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NORVQv
VEVmZmRJN0FfeGFSSW9QT3dRN0JEdE10SkU4LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9URWZmZEk3QV94YVJJb1BPd1E3QkR0TXRKRTguY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HU05FVC9uZngzb2ZLREZQME82bVgyUEM5
UEhWVFUxMU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE005A
MA0GCSqGSIb3DQEBCwUAA4IBAQCdvEhsDcxeeQRz+2tOUyO55SfJFRIEUsY4ry6m
WWZh2mnTp67k4x5LQ4YmFFNoPAMTxpyjR/hjwZHV+5LCmtpWjyjpJ0R24Gg0//Cj
mG8OxZqownEB9t08IsLbUKxqdai+e0sn4sD5fKUqzKkZpfbiBggMs3n0ZRVLwFR2
ZthDaVi5ZYA6ORtg03G30ph08YRZ7ZJF/znerG8t6WTKa89V7NeoK4m/ZTM0NYge
4pXAmjjyDLfbOuvnPmt6yYM7fWApfde1IZ/KhMRfbNiosyx8kdYLgc0l+amfkdXb
JVmXx6YjVl67af/cyOcQJEYUTe+BO+STDVIsRCRL6rFHVHpp
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org