Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MKY/3p5vaYB0hzpyhKTrZ3u9igb6KTA.roa
File: 3p5vaYB0hzpyhKTrZ3u9igb6KTA.roa (raw, json)
Hash identifier: g8azcSm3KYpYLijfSy8/3Lr5zwBLti7PWu7qkytBSSA=
Subject key identifier: DE:9E:6F:69:80:74:87:3A:72:84:A4:EB:67:7B:BD:8A:06:FA:29:30
Certificate issuer: /CN=9D9E97B00D2E15C41AE7071732018C2B137E53A1
Certificate serial: 077E
Authority key identifier: 9D:9E:97:B0:0D:2E:15:C4:1A:E7:07:17:32:01:8C:2B:13:7E:53:A1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/3p5vaYB0hzpyhKTrZ3u9igb6KTA.roa
Signing time: Tue 29 Sep 2020 10:05:01 +0000
ROA not before: Tue 29 Sep 2020 10:05:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7478
IP address blocks: 210.244.192.0/19 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1918 (0x77e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D9E97B00D2E15C41AE7071732018C2B137E53A1
Validity
Not Before: Sep 29 10:05:01 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DE9E6F698074873A7284A4EB677BBD8A06FA2930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c3:76:81:db:fa:fb:96:a9:05:58:9a:dc:cf:
07:08:15:e9:54:1a:f9:c3:83:70:6e:04:fe:40:8e:
c6:a2:0d:f6:b7:93:14:c9:b3:24:ab:18:f2:09:a7:
43:2f:f1:9d:53:ae:ef:d0:68:12:4d:e8:6b:cc:75:
f9:93:2e:ff:be:32:cc:6c:98:4d:74:3c:b3:1e:87:
1e:94:11:e9:4c:18:b0:ee:b9:6b:17:ac:73:e2:ff:
6e:b6:a1:f4:fd:ac:f6:09:3c:1a:7e:6f:ec:d2:d5:
a4:4c:67:9f:b7:b9:68:16:37:c7:5f:7e:ab:6f:43:
1d:88:17:fd:12:26:c5:b7:19:8e:c4:62:09:7b:87:
1b:1b:f3:1a:de:33:b0:4b:cf:16:b7:f4:cd:8b:c7:
d6:43:71:5e:97:43:22:85:78:a1:f1:f4:3b:00:e8:
6d:19:66:f5:7a:8b:d0:29:c6:22:34:10:c0:d0:26:
39:30:67:83:04:9e:b8:df:be:25:02:6b:00:57:11:
a3:c1:af:bd:72:35:b1:00:b6:6e:4a:fc:e9:99:69:
0d:9e:5e:b3:ef:77:7f:a0:73:65:ef:38:03:f7:ed:
de:92:ab:99:56:14:cc:bf:6f:9d:44:f1:53:85:5e:
b1:15:01:a0:74:f4:cb:8b:c9:59:8d:b0:93:e6:68:
cc:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:9E:6F:69:80:74:87:3A:72:84:A4:EB:67:7B:BD:8A:06:FA:29:30
X509v3 Authority Key Identifier:
keyid:9D:9E:97:B0:0D:2E:15:C4:1A:E7:07:17:32:01:8C:2B:13:7E:53:A1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/3p5vaYB0hzpyhKTrZ3u9igb6KTA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.192.0/19
Signature Algorithm: sha256WithRSAEncryption
09:3b:7a:c4:85:f8:3d:58:32:57:97:93:fe:21:39:1b:bc:96:
61:cc:cf:78:78:e0:37:e4:47:1a:94:ff:07:db:6c:dc:87:8f:
59:7c:8b:a7:d8:b1:af:e5:89:e1:bb:4f:34:dc:f0:d2:04:08:
e9:ee:d1:82:97:96:dc:bb:2c:1b:0c:2a:56:a2:95:eb:b0:e2:
91:54:87:b4:57:2c:d2:52:c7:7a:f1:6a:cb:1b:1a:64:37:c7:
d4:0f:d8:c8:19:a1:b5:65:5a:81:6f:79:5a:f1:59:b4:07:93:
90:16:93:f1:c2:89:aa:95:10:1f:76:46:a2:a9:04:87:e3:b3:
49:ca:3d:f5:36:dc:1f:3e:3a:10:af:ff:aa:47:0c:7c:12:75:
b0:4a:98:4d:6c:7c:d9:ca:f6:26:02:8e:a5:43:d5:e6:d0:74:
54:c2:be:04:c2:91:28:f2:b7:f0:97:3b:7a:e5:ff:56:65:72:
1b:1c:e8:bf:38:18:a9:83:e6:ea:f3:dc:fe:3b:30:a7:ac:b0:
74:e2:99:fd:54:ef:d8:9c:a7:45:86:52:1c:37:54:ea:70:eb:
9a:4c:6c:1a:cc:24:58:bd:db:24:cb:e8:4f:79:73:b6:87:99:
ed:bd:3f:f8:f0:88:ed:75:39:d1:fb:bb:00:6b:f2:53:e8:13:
e6:ca:8b:76
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICB34wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUQ5
RTk3QjAwRDJFMTVDNDFBRTcwNzE3MzIwMThDMkIxMzdFNTNBMTAeFw0yMDA5Mjkx
MDA1MDFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKERFOUU2RjY5ODA3NDg3
M0E3Mjg0QTRFQjY3N0JCRDhBMDZGQTI5MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrw3aB2/r7lqkFWJrczwcIFelUGvnDg3BuBP5AjsaiDfa3kxTJ
sySrGPIJp0Mv8Z1Tru/QaBJN6GvMdfmTLv++MsxsmE10PLMehx6UEelMGLDuuWsX
rHPi/262ofT9rPYJPBp+b+zS1aRMZ5+3uWgWN8dffqtvQx2IF/0SJsW3GY7EYgl7
hxsb8xreM7BLzxa39M2Lx9ZDcV6XQyKFeKHx9DsA6G0ZZvV6i9ApxiI0EMDQJjkw
Z4MEnrjfviUCawBXEaPBr71yNbEAtm5K/OmZaQ2eXrPvd3+gc2XvOAP37d6Sq5lW
FMy/b51E8VOFXrEVAaB09MuLyVmNsJPmaMztAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU3p5vaYB0hzpyhKTrZ3u9igb6KTAwHwYDVR0jBBgwFoAUnZ6XsA0uFcQa5wcX
MgGMKxN+U6EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUtZL25a
NlhzQTB1RmNRYTV3Y1hNZ0dNS3hOLVU2RS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
blo2WHNBMHVGY1FhNXdjWE1nR01LeE4tVTZFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvTUtZLzNwNXZhWUIwaHpweWhLVHJaM3U5aWdi
NktUQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXS9MAwDQYJ
KoZIhvcNAQELBQADggEBAAk7esSF+D1YMleXk/4hORu8lmHMz3h44DfkRxqU/wfb
bNyHj1l8i6fYsa/lieG7TzTc8NIECOnu0YKXlty7LBsMKlaileuw4pFUh7RXLNJS
x3rxassbGmQ3x9QP2MgZobVlWoFveVrxWbQHk5AWk/HCiaqVEB92RqKpBIfjs0nK
PfU23B8+OhCv/6pHDHwSdbBKmE1sfNnK9iYCjqVD1ebQdFTCvgTCkSjyt/CXO3rl
/1Zlchsc6L84GKmD5urz3P47MKessHTimf1U79icp0WGUhw3VOpw65pMbBrMJFi9
2yTL6E95c7aHme29P/jwiO11OdH7uwBr8lPoE+bKi3Y=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:51 2025 by rpki-client