Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCDTV/5E_jVvIO1mdkZ-rBgePVGy3GxAQ.roa
File: 5E_jVvIO1mdkZ-rBgePVGy3GxAQ.roa (raw, json)
Hash identifier: iCaM64vP9IMIo7AQdjVDzfsmwmrudbgR4rIMoy26h1c=
Subject key identifier: E4:4F:E3:56:F2:0E:D6:67:64:67:EA:C1:81:E3:D5:1B:2D:C6:C4:04
Certificate issuer: /CN=4B81BB31FA5292C8025B828F802722DE0D5EADE3
Certificate serial: 094B
Authority key identifier: 4B:81:BB:31:FA:52:92:C8:02:5B:82:8F:80:27:22:DE:0D:5E:AD:E3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/S4G7MfpSksgCW4KPgCci3g1ereM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/5E_jVvIO1mdkZ-rBgePVGy3GxAQ.roa
Signing time: Wed 29 Sep 2021 02:53:05 +0000
ROA not before: Wed 29 Sep 2021 02:53:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 202.123.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2379 (0x94b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4B81BB31FA5292C8025B828F802722DE0D5EADE3
Validity
Not Before: Sep 29 02:53:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E44FE356F20ED6676467EAC181E3D51B2DC6C404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e5:7e:fe:f1:31:30:32:91:a0:2d:1a:0b:92:
35:03:dd:1c:67:78:b4:6f:33:f1:53:ba:d9:d9:10:
78:2f:54:90:b8:10:8f:1c:99:62:4d:56:e7:73:c8:
24:81:65:94:64:3c:6e:6d:02:ff:a6:63:cf:93:82:
8e:5a:1d:5a:5d:19:f2:40:5c:ea:aa:0c:0b:24:a7:
f3:45:00:ac:0f:76:74:2d:53:bd:67:57:98:5b:f0:
b1:4b:0d:f1:b4:ca:db:c5:36:ad:7b:8b:13:e6:03:
7e:18:38:1c:dd:5d:c7:13:23:4d:35:bb:d6:5e:e5:
39:22:43:b4:ef:46:12:05:af:91:04:29:09:ce:02:
26:8e:6a:e8:d7:66:48:db:be:10:0f:e5:7a:55:9f:
1c:30:6d:ca:42:c6:42:50:c7:2d:c8:4b:33:9d:98:
da:ad:0c:04:7e:df:25:7e:d4:df:56:b3:a3:6f:10:
5f:f8:93:db:ae:b4:34:f9:03:46:69:71:a6:bf:66:
df:7c:6d:e5:b2:22:c4:71:be:3d:8b:63:7a:fb:70:
29:3f:1f:75:b5:8d:c5:90:33:95:a0:43:6d:82:3f:
da:3e:57:5c:e9:55:7f:35:ce:81:32:98:53:0c:2c:
52:f1:20:4d:6c:13:7f:91:52:94:4c:47:c6:77:c5:
99:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:4F:E3:56:F2:0E:D6:67:64:67:EA:C1:81:E3:D5:1B:2D:C6:C4:04
X509v3 Authority Key Identifier:
keyid:4B:81:BB:31:FA:52:92:C8:02:5B:82:8F:80:27:22:DE:0D:5E:AD:E3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/S4G7MfpSksgCW4KPgCci3g1ereM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/S4G7MfpSksgCW4KPgCci3g1ereM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/5E_jVvIO1mdkZ-rBgePVGy3GxAQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.123.124.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:f1:2e:d9:f1:4d:1b:bc:5b:48:a7:cf:06:d5:74:b7:03:f8:
71:bb:95:f6:90:c9:ec:a7:75:b1:62:5c:9a:8a:4f:a2:c9:b5:
89:10:34:86:bf:a6:07:82:c1:37:26:47:f9:dc:b8:36:0b:29:
c0:29:75:06:59:a8:44:b2:c6:3b:5a:a9:bf:22:f0:69:13:01:
02:63:d1:04:09:d2:51:e6:90:8e:3e:a3:50:f8:81:69:8a:15:
d7:80:54:a5:29:87:a2:ba:d9:c8:94:dd:d2:11:86:f9:dc:2e:
ba:f1:64:c3:b2:fe:eb:10:ca:24:53:2b:de:21:79:7c:64:32:
e1:f3:3c:94:7d:2a:ea:52:d1:ec:50:f9:76:b4:a6:48:82:2b:
d1:b2:ff:80:fb:ce:f4:b3:88:89:ee:61:27:d2:f8:8a:29:70:
bc:26:56:4b:05:62:2c:55:c0:6b:d0:a6:a5:10:5a:cd:df:c4:
9d:fd:eb:0d:ef:a0:db:a4:17:5f:8b:91:2c:80:3c:23:3a:a2:
75:4f:64:5f:df:a2:be:20:62:42:37:06:b0:68:a6:6c:43:32:
a8:8e:72:26:37:71:92:b5:bd:98:4c:37:aa:10:47:ce:0e:cb:
e8:20:46:10:38:54:cc:09:fa:2c:99:c4:d0:68:20:5b:94:d2:
b8:43:dd:08
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCUswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEI4
MUJCMzFGQTUyOTJDODAyNUI4MjhGODAyNzIyREUwRDVFQURFMzAeFw0yMTA5Mjkw
MjUzMDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEU0NEZFMzU2RjIwRUQ2
Njc2NDY3RUFDMTgxRTNENTFCMkRDNkM0MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDt5X7+8TEwMpGgLRoLkjUD3RxneLRvM/FTutnZEHgvVJC4EI8c
mWJNVudzyCSBZZRkPG5tAv+mY8+Tgo5aHVpdGfJAXOqqDAskp/NFAKwPdnQtU71n
V5hb8LFLDfG0ytvFNq17ixPmA34YOBzdXccTI001u9Ze5TkiQ7TvRhIFr5EEKQnO
AiaOaujXZkjbvhAP5XpVnxwwbcpCxkJQxy3ISzOdmNqtDAR+3yV+1N9Ws6NvEF/4
k9uutDT5A0Zpcaa/Zt98beWyIsRxvj2LY3r7cCk/H3W1jcWQM5WgQ22CP9o+V1zp
VX81zoEymFMMLFLxIE1sE3+RUpRMR8Z3xZm7AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU5E/jVvIO1mdkZ+rBgePVGy3GxAQwHwYDVR0jBBgwFoAUS4G7MfpSksgCW4KP
gCci3g1ereMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNEVFYv
UzRHN01mcFNrc2dDVzRLUGdDY2kzZzFlcmVNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9TNEc3TWZwU2tzZ0NXNEtQZ0NjaTNnMWVyZU0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OQ0RUVi81RV9qVnZJTzFtZGtaLXJCZ2VQ
Vkd5M0d4QVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCynt8
MA0GCSqGSIb3DQEBCwUAA4IBAQCe8S7Z8U0bvFtIp88G1XS3A/hxu5X2kMnsp3Wx
Ylyaik+iybWJEDSGv6YHgsE3Jkf53Lg2CynAKXUGWahEssY7Wqm/IvBpEwECY9EE
CdJR5pCOPqNQ+IFpihXXgFSlKYeiutnIlN3SEYb53C668WTDsv7rEMokUyveIXl8
ZDLh8zyUfSrqUtHsUPl2tKZIgivRsv+A+870s4iJ7mEn0viKKXC8JlZLBWIsVcBr
0KalEFrN38Sd/esN76DbpBdfi5EsgDwjOqJ1T2Rf36K+IGJCNwawaKZsQzKojnIm
N3GStb2YTDeqEEfODsvoIEYQOFTMCfosmcTQaCBblNK4Q90I
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org