Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/8uYUQG9NUF380c_BX3idMCJhCNQ.roa
File: 8uYUQG9NUF380c_BX3idMCJhCNQ.roa (raw, json)
Hash identifier: TaeRVjan0N/xAT7YY/xMAppiDwfd3mPJsitDDcLB2As=
Subject key identifier: F2:E6:14:40:6F:4D:50:5D:FC:D1:CF:C1:5F:78:9D:30:22:61:08:D4
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 09D5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/8uYUQG9NUF380c_BX3idMCJhCNQ.roa
Signing time: Wed 29 Sep 2021 02:52:16 +0000
ROA not before: Wed 29 Sep 2021 02:52:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 211.78.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2517 (0x9d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 02:52:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F2E614406F4D505DFCD1CFC15F789D30226108D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:88:16:82:a0:39:7e:11:e4:85:23:11:b6:c6:
b9:1e:d4:74:61:de:77:21:74:48:5a:9f:57:7b:fe:
38:cd:79:2e:97:00:f0:b0:1e:f7:90:e9:e5:5e:04:
03:9e:3e:b3:ef:55:56:c6:65:3f:df:92:7f:03:20:
e2:96:fc:1d:41:ff:45:62:2e:66:67:10:dc:10:87:
66:68:61:df:5c:8b:9c:10:4e:cf:d6:53:0d:ef:e6:
2a:de:30:c3:15:c3:94:2f:95:1f:49:27:c0:58:02:
07:95:47:6d:2c:f8:86:d2:2d:a8:0b:91:dc:52:50:
c3:48:2d:50:7c:7b:de:a0:11:4f:87:9b:10:a2:6e:
aa:f1:2b:7d:43:39:6a:dc:02:a8:18:d4:43:b7:60:
14:db:cd:fd:4e:bc:8e:3e:83:b0:ff:49:5a:84:49:
2a:f2:44:f3:ce:4a:55:27:4c:f9:28:a6:75:d0:8a:
c4:16:1f:4d:7b:bc:12:d7:90:70:77:ab:28:93:af:
04:f7:9a:f8:9a:90:dc:a8:01:2e:8d:ce:2c:8a:64:
b7:a9:94:f9:d6:45:5b:9d:7a:5f:6a:93:3f:46:d0:
8b:80:31:6e:4b:4e:4b:47:5b:24:d8:1f:5d:f0:48:
48:a7:ee:d5:10:7d:ea:5b:4f:89:7e:ff:86:a2:c4:
a6:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E6:14:40:6F:4D:50:5D:FC:D1:CF:C1:5F:78:9D:30:22:61:08:D4
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/8uYUQG9NUF380c_BX3idMCJhCNQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.32.0/19
Signature Algorithm: sha256WithRSAEncryption
71:12:9a:96:00:90:8f:55:af:20:01:29:59:d7:ab:57:11:cf:
a8:8d:ec:cf:84:5b:82:3f:9c:61:45:61:10:a5:02:8a:5f:9d:
ea:bf:60:65:b1:91:d1:83:67:00:70:c9:f5:7f:1c:8a:c6:07:
34:c3:e2:52:f1:d4:e7:ba:39:85:85:59:ca:52:3c:e9:1f:b7:
d5:2e:f1:ec:0d:50:51:3d:04:1c:01:de:70:c8:64:b5:f8:9f:
98:56:8f:81:86:b9:19:f1:8e:0c:32:5f:1c:c2:e0:69:fb:56:
0c:05:55:49:71:5f:53:c2:f2:eb:b9:1d:7f:c9:cd:49:54:c8:
04:5e:29:c0:2c:7b:e7:5a:82:72:a4:48:a5:5c:ff:da:87:b0:
bf:bc:f9:84:c2:8c:4f:04:07:b5:0c:05:da:da:e4:ec:8b:ca:
11:ce:fd:bd:99:09:f1:e1:6d:4e:30:3f:36:d2:cb:74:21:23:
ee:44:c4:97:8c:d4:f8:e4:33:73:6f:25:41:3d:ed:cb:e3:50:
01:5a:dd:91:37:1a:e0:44:5e:2c:46:35:71:bd:a8:f5:4c:bc:
04:1a:88:9b:c6:f7:0a:d8:12:3c:00:da:5f:46:03:f0:b9:2d:
72:ad:d5:5c:dd:f1:29:c5:38:a8:b2:90:9f:3e:f1:63:e9:1d:
63:ad:f4:24
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCdUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMTA5Mjkw
MjUyMTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEYyRTYxNDQwNkY0RDUw
NURGQ0QxQ0ZDMTVGNzg5RDMwMjI2MTA4RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDoiBaCoDl+EeSFIxG2xrke1HRh3nchdEhan1d7/jjNeS6XAPCw
HveQ6eVeBAOePrPvVVbGZT/fkn8DIOKW/B1B/0ViLmZnENwQh2ZoYd9ci5wQTs/W
Uw3v5ireMMMVw5QvlR9JJ8BYAgeVR20s+IbSLagLkdxSUMNILVB8e96gEU+HmxCi
bqrxK31DOWrcAqgY1EO3YBTbzf1OvI4+g7D/SVqESSryRPPOSlUnTPkopnXQisQW
H017vBLXkHB3qyiTrwT3mviakNyoAS6NziyKZLeplPnWRVudel9qkz9G0IuAMW5L
TktHWyTYH13wSEin7tUQfepbT4l+/4aixKYbAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU8uYUQG9NUF380c/BX3idMCJhCNQwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzh1WVVRRzlOVUYzODBjX0JYM2lkTUNK
aENOUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXTTiAwDQYJ
KoZIhvcNAQELBQADggEBAHESmpYAkI9VryABKVnXq1cRz6iN7M+EW4I/nGFFYRCl
Aopfneq/YGWxkdGDZwBwyfV/HIrGBzTD4lLx1Oe6OYWFWcpSPOkft9Uu8ewNUFE9
BBwB3nDIZLX4n5hWj4GGuRnxjgwyXxzC4Gn7VgwFVUlxX1PC8uu5HX/JzUlUyARe
KcAse+dagnKkSKVc/9qHsL+8+YTCjE8EB7UMBdra5OyLyhHO/b2ZCfHhbU4wPzbS
y3QhI+5ExJeM1PjkM3NvJUE97cvjUAFa3ZE3GuBEXixGNXG9qPVMvAQaiJvG9wrY
EjwA2l9GA/C5LXKt1Vzd8SnFOKiykJ8+8WPpHWOt9CQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org