Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/Z-EzcZ4rlfONaO5c9y8K1-KuA88.roa
File: Z-EzcZ4rlfONaO5c9y8K1-KuA88.roa (raw, json)
Hash identifier: RwxYrxapkrb4LZ4sQfQwpfOERo4n3UumU+6nTEz8Px8=
Subject key identifier: 67:E1:33:71:9E:2B:95:F3:8D:68:EE:5C:F7:2F:0A:D7:E2:AE:03:CF
Certificate issuer: /CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Certificate serial: 0771
Authority key identifier: 6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/Z-EzcZ4rlfONaO5c9y8K1-KuA88.roa
Signing time: Tue 29 Sep 2020 10:00:52 +0000
ROA not before: Tue 29 Sep 2020 10:00:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18179
IP address blocks: 211.78.240.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1905 (0x771)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Validity
Not Before: Sep 29 10:00:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=67E133719E2B95F38D68EE5CF72F0AD7E2AE03CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7f:32:e7:d4:bb:c9:fc:15:cc:cd:70:72:ca:
de:02:d3:40:c6:eb:5d:1c:4d:b9:5e:4a:be:01:d7:
3d:4e:e8:c9:39:b9:4b:d2:9d:66:94:8b:e8:bf:6c:
29:2d:41:cd:e2:ec:60:eb:fd:97:53:9e:11:67:a6:
f0:73:6c:7c:fe:8b:80:f5:d0:20:01:5d:b9:53:9d:
01:2c:99:17:58:ba:87:c1:9b:c5:37:d5:c1:b2:1e:
de:a2:0a:83:97:1d:71:13:98:3d:88:c0:40:f3:d0:
f1:ff:06:21:b5:3d:5f:6f:d4:7a:af:ed:d9:4b:6d:
b0:be:75:9f:7a:8c:ac:21:60:b7:d6:d8:f2:e0:56:
ff:60:0a:79:a5:c3:46:e7:a1:af:f5:12:07:a3:11:
ee:39:ff:53:a1:09:48:ab:46:4d:ea:43:8d:df:9f:
b1:34:43:00:72:64:87:78:3c:cb:7b:e9:b7:21:f3:
b7:60:76:58:9b:e6:66:4d:f7:d6:ea:5f:14:e8:be:
5c:80:a3:74:12:51:88:85:a3:d0:0b:9d:7d:02:ba:
3c:38:7a:c2:91:22:ff:56:a2:85:d7:68:11:63:2e:
c3:d0:8c:8f:2d:03:bf:af:d5:e3:66:36:bb:8a:d7:
d4:7a:33:c7:32:27:d5:13:8b:58:2b:3b:c5:3c:10:
5d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E1:33:71:9E:2B:95:F3:8D:68:EE:5C:F7:2F:0A:D7:E2:AE:03:CF
X509v3 Authority Key Identifier:
keyid:6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/bWxcv87Lp5h5UREtqhh__LYgTiY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/Z-EzcZ4rlfONaO5c9y8K1-KuA88.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.240.0/20
Signature Algorithm: sha256WithRSAEncryption
2b:7b:60:b5:e2:78:ff:02:2f:5c:3b:15:ff:fe:82:1d:9e:11:
73:fd:c6:06:55:f4:36:0a:ae:5a:77:56:5d:29:ad:fa:1d:69:
37:09:6d:ef:ad:65:cc:f9:5f:fd:30:e1:e8:08:0a:ea:e8:72:
86:90:8b:90:2f:c0:3d:61:ed:ef:70:2d:eb:69:47:49:1f:8e:
a2:0d:4c:84:ca:67:fe:de:e9:20:a2:b3:5d:55:55:06:80:6e:
98:94:1f:2c:f5:6d:96:21:86:c8:13:34:5d:74:3e:92:7e:9b:
ac:2a:b8:7c:3b:aa:b9:64:03:cc:8a:9a:04:83:5a:40:98:86:
97:23:19:0d:aa:a5:77:be:5f:2d:5b:2b:7d:11:9a:2c:aa:69:
d8:05:4b:90:67:1a:ca:62:7d:09:7a:2c:d0:8b:0a:ee:ce:3c:
6a:e9:70:be:eb:2b:11:d5:dc:23:c7:dc:fb:e0:94:22:1f:ad:
0d:1a:d7:4e:c0:7e:13:c3:28:b4:91:98:d4:0a:d4:1c:df:25:
49:09:52:93:9d:cd:07:0a:0b:e1:b4:85:58:34:87:4b:a7:fa:
ae:f7:d7:30:4d:cd:14:f3:30:11:74:37:22:8b:a2:b6:8a:a3:
91:e8:70:c3:cc:b5:20:0c:ca:d5:61:83:ac:e5:42:ed:a7:82:
83:26:da:05
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICB3EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkQ2
QzVDQkZDRUNCQTc5ODc5NTExMTJEQUExODdGRkNCNjIwNEUyNjAeFw0yMDA5Mjkx
MDAwNTJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDY3RTEzMzcxOUUyQjk1
RjM4RDY4RUU1Q0Y3MkYwQUQ3RTJBRTAzQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEfzLn1LvJ/BXMzXByyt4C00DG610cTbleSr4B1z1O6Mk5uUvS
nWaUi+i/bCktQc3i7GDr/ZdTnhFnpvBzbHz+i4D10CABXblTnQEsmRdYuofBm8U3
1cGyHt6iCoOXHXETmD2IwEDz0PH/BiG1PV9v1Hqv7dlLbbC+dZ96jKwhYLfW2PLg
Vv9gCnmlw0bnoa/1EgejEe45/1OhCUirRk3qQ43fn7E0QwByZId4PMt76bch87dg
dlib5mZN99bqXxTovlyAo3QSUYiFo9ALnX0Cujw4esKRIv9WooXXaBFjLsPQjI8t
A7+v1eNmNruK19R6M8cyJ9UTi1grO8U8EF27AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUZ+EzcZ4rlfONaO5c9y8K1+KuA88wHwYDVR0jBBgwFoAUbWxcv87Lp5h5UREt
qhh//LYgTiYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlUQUNN
REMvYld4Y3Y4N0xwNWg1VVJFdHFoaF9fTFlnVGlZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9iV3hjdjg3THA1aDVVUkV0cWhoX19MWWdUaVkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSVRBQ01EQy9aLUV6Y1o0cmxmT05h
TzVjOXk4SzEtS3VBODgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQE007wMA0GCSqGSIb3DQEBCwUAA4IBAQAre2C14nj/Ai9cOxX//oIdnhFz/cYG
VfQ2Cq5ad1ZdKa36HWk3CW3vrWXM+V/9MOHoCArq6HKGkIuQL8A9Ye3vcC3raUdJ
H46iDUyEymf+3ukgorNdVVUGgG6YlB8s9W2WIYbIEzRddD6SfpusKrh8O6q5ZAPM
ipoEg1pAmIaXIxkNqqV3vl8tWyt9EZosqmnYBUuQZxrKYn0JeizQiwruzjxq6XC+
6ysR1dwjx9z74JQiH60NGtdOwH4Twyi0kZjUCtQc3yVJCVKTnc0HCgvhtIVYNIdL
p/qu99cwTc0U8zARdDcii6K2iqOR6HDDzLUgDMrVYYOs5ULtp4KDJtoF
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org