Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTT/XNgRi-TnrJnMxhgNj6tR2Mul9Rk.roa
File: XNgRi-TnrJnMxhgNj6tR2Mul9Rk.roa (raw, json)
Hash identifier: fAdJs0B9bNw1QJq7nzFIq2I1UB2IFZiksW9yDBBqOLI=
Subject key identifier: 5C:D8:11:8B:E4:E7:AC:99:CC:C6:18:0D:8F:AB:51:D8:CB:A5:F5:19
Certificate issuer: /CN=B4EC61ED7E8C64F210317DCC7E808A9C192D884A
Certificate serial: 076F
Authority key identifier: B4:EC:61:ED:7E:8C:64:F2:10:31:7D:CC:7E:80:8A:9C:19:2D:88:4A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tOxh7X6MZPIQMX3MfoCKnBktiEo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTT/XNgRi-TnrJnMxhgNj6tR2Mul9Rk.roa
Signing time: Tue 29 Sep 2020 10:00:50 +0000
ROA not before: Tue 29 Sep 2020 10:00:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9416
IP address blocks: 203.118.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1903 (0x76f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4EC61ED7E8C64F210317DCC7E808A9C192D884A
Validity
Not Before: Sep 29 10:00:50 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5CD8118BE4E7AC99CCC6180D8FAB51D8CBA5F519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8d:09:76:8e:59:2a:f8:a9:40:84:85:b2:09:
34:52:26:75:d0:cc:2c:f0:d9:68:aa:6b:e4:05:6e:
be:05:e7:0d:ce:70:44:32:76:fc:f2:af:c6:71:c1:
cd:5c:81:02:ac:4d:16:46:d4:99:29:72:16:df:f9:
44:2c:fa:ef:4c:0e:81:b0:ff:8c:37:7a:d2:27:ae:
c8:5e:fd:bd:85:53:0d:33:9f:83:e9:0a:aa:54:76:
8d:fb:b1:7d:a7:45:0a:45:7d:46:70:cd:41:7c:e1:
73:f5:16:4b:73:19:e5:0f:8b:ab:c2:c2:65:90:ad:
04:30:49:3b:46:3a:d8:91:42:9a:b1:51:3d:42:49:
bc:0a:b7:f6:cd:06:0b:96:5f:13:98:b3:60:9f:76:
6e:e2:59:6f:0d:78:3c:98:0a:69:82:bd:57:d9:0f:
41:2a:ca:ea:a5:e3:73:c6:8b:bb:1e:7c:15:3b:b4:
16:ee:62:87:61:57:61:50:05:9d:67:eb:d1:09:6a:
7d:7d:71:3b:cd:5b:88:a3:f4:9e:8e:fc:cb:ee:c1:
29:6c:4e:36:ef:21:a7:0c:c8:69:b2:c4:d2:0b:51:
3e:19:e5:e3:9a:35:cf:47:b5:74:23:7a:d5:c3:ad:
9e:ff:fe:fd:cd:60:09:be:78:df:fc:43:30:09:89:
eb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D8:11:8B:E4:E7:AC:99:CC:C6:18:0D:8F:AB:51:D8:CB:A5:F5:19
X509v3 Authority Key Identifier:
keyid:B4:EC:61:ED:7E:8C:64:F2:10:31:7D:CC:7E:80:8A:9C:19:2D:88:4A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTT/tOxh7X6MZPIQMX3MfoCKnBktiEo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tOxh7X6MZPIQMX3MfoCKnBktiEo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTT/XNgRi-TnrJnMxhgNj6tR2Mul9Rk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.118.224.0/20
Signature Algorithm: sha256WithRSAEncryption
ba:8f:f1:31:29:2d:30:dc:97:bb:6e:e1:a8:4c:ca:81:ed:57:
7d:62:93:79:d9:63:b7:31:68:97:ff:21:60:e4:9f:e9:01:35:
d7:1b:d1:8d:f5:4d:ed:1d:36:8a:1c:a7:e3:79:8d:1c:ba:01:
ec:2b:ae:10:a4:4c:ea:8f:56:d7:87:52:75:1c:6d:e2:8f:fe:
3c:4f:b2:b9:fa:bf:ee:1c:bf:3b:77:7a:c3:29:1a:16:6e:f9:
92:26:b9:6e:13:ef:61:4b:f0:1e:df:ff:09:4a:d0:54:b5:db:
4f:f2:ee:df:11:2a:ec:39:27:2b:52:66:ed:4e:f8:d9:0f:87:
b0:35:19:b6:40:3a:0d:a5:37:8f:cd:d1:fb:19:93:50:a3:2d:
0a:49:ba:f8:61:b1:d5:15:7f:77:0b:40:f8:a1:4a:83:b3:b8:
ad:76:a1:f1:38:2c:2e:e0:b3:4e:63:30:24:5d:9c:55:8e:89:
31:fd:05:86:46:43:9c:fa:08:59:a0:49:30:34:b2:49:09:97:
d3:ed:90:2b:96:fa:23:13:3d:66:3e:85:57:53:16:2f:7d:ae:
86:c7:e7:ab:eb:6e:a3:17:c7:e2:0c:f5:d6:64:86:80:15:3a:
6d:e6:01:fd:f4:8a:a9:c0:35:0d:4b:52:55:47:af:b3:3a:cc:
2d:b2:5a:75
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICB28wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRF
QzYxRUQ3RThDNjRGMjEwMzE3RENDN0U4MDhBOUMxOTJEODg0QTAeFw0yMDA5Mjkx
MDAwNTBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDVDRDgxMThCRTRFN0FD
OTlDQ0M2MTgwRDhGQUI1MUQ4Q0JBNUY1MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0jQl2jlkq+KlAhIWyCTRSJnXQzCzw2Wiqa+QFbr4F5w3OcEQy
dvzyr8Zxwc1cgQKsTRZG1Jkpchbf+UQs+u9MDoGw/4w3etInrshe/b2FUw0zn4Pp
CqpUdo37sX2nRQpFfUZwzUF84XP1FktzGeUPi6vCwmWQrQQwSTtGOtiRQpqxUT1C
SbwKt/bNBguWXxOYs2Cfdm7iWW8NeDyYCmmCvVfZD0Eqyuql43PGi7sefBU7tBbu
YodhV2FQBZ1n69EJan19cTvNW4ij9J6O/MvuwSlsTjbvIacMyGmyxNILUT4Z5eOa
Nc9HtXQjetXDrZ7//v3NYAm+eN/8QzAJievfAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUXNgRi+TnrJnMxhgNj6tR2Mul9RkwHwYDVR0jBBgwFoAUtOxh7X6MZPIQMX3M
foCKnBktiEowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1RUL3RP
eGg3WDZNWlBJUU1YM01mb0NLbkJrdGlFby5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
dE94aDdYNk1aUElRTVgzTWZvQ0tuQmt0aUVvLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvR1RUL1hOZ1JpLVRuckpuTXhoZ05qNnRSMk11
bDlSay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATLduAwDQYJ
KoZIhvcNAQELBQADggEBALqP8TEpLTDcl7tu4ahMyoHtV31ik3nZY7cxaJf/IWDk
n+kBNdcb0Y31Te0dNoocp+N5jRy6AewrrhCkTOqPVteHUnUcbeKP/jxPsrn6v+4c
vzt3esMpGhZu+ZImuW4T72FL8B7f/wlK0FS120/y7t8RKuw5JytSZu1O+NkPh7A1
GbZAOg2lN4/N0fsZk1CjLQpJuvhhsdUVf3cLQPihSoOzuK12ofE4LC7gs05jMCRd
nFWOiTH9BYZGQ5z6CFmgSTA0skkJl9PtkCuW+iMTPWY+hVdTFi99robH56vrbqMX
x+IM9dZkhoAVOm3mAf30iqnANQ1LUlVHr7M6zC2yWnU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org