Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCDTV/7fXq34o0Wr3Sj9xGHrEeppmJau4.roa
File: 7fXq34o0Wr3Sj9xGHrEeppmJau4.roa (raw, json)
Hash identifier: 4VrXdx0S/QjFMWaM5qftPTm1taC4DeNhD8za6Fth1VY=
Subject key identifier: ED:F5:EA:DF:8A:34:5A:BD:D2:8F:DC:46:1E:B1:1E:A6:99:89:6A:EE
Certificate issuer: /CN=4B81BB31FA5292C8025B828F802722DE0D5EADE3
Certificate serial: 0A36
Authority key identifier: 4B:81:BB:31:FA:52:92:C8:02:5B:82:8F:80:27:22:DE:0D:5E:AD:E3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/S4G7MfpSksgCW4KPgCci3g1ereM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/7fXq34o0Wr3Sj9xGHrEeppmJau4.roa
Signing time: Thu 15 Sep 2022 02:50:41 +0000
ROA not before: Thu 15 Sep 2022 02:50:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 202.123.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2614 (0xa36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4B81BB31FA5292C8025B828F802722DE0D5EADE3
Validity
Not Before: Sep 15 02:50:41 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EDF5EADF8A345ABDD28FDC461EB11EA699896AEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:43:26:25:d5:ac:93:2e:7b:84:37:cc:cc:4e:
45:85:fb:f8:0b:65:7d:32:32:2b:a5:5a:2e:6d:ce:
38:3c:59:bb:ed:a0:2b:4b:61:b5:3a:43:7b:bb:03:
0b:b2:55:1e:44:4b:3a:64:48:44:6b:ba:1d:97:d8:
e0:68:4c:b4:dd:cf:72:49:72:7b:e4:7b:a8:03:1d:
31:93:9e:77:0d:e5:0b:17:2d:65:90:9a:69:b6:8a:
bd:72:60:9a:66:26:01:35:d0:1b:d6:c8:54:30:d3:
1c:83:08:9a:35:5f:9a:21:6a:86:19:78:d0:4a:e6:
8e:ff:b2:18:c5:b0:89:66:77:cf:34:22:64:39:e7:
c3:a3:7c:43:93:72:1c:6d:91:20:84:2c:3d:4f:b9:
d1:0f:78:03:7a:48:4a:db:fe:a4:82:76:39:e9:94:
27:84:7c:6c:84:d6:cf:53:8e:6b:8e:56:9c:86:06:
ba:6f:6b:75:59:52:a4:08:9c:fc:cf:09:90:59:da:
0e:65:3b:06:78:ac:7d:c7:dc:ea:00:81:2b:17:91:
8a:ad:96:fe:cc:af:92:50:f6:2d:ac:a9:b1:9e:ea:
19:10:50:f2:e7:04:11:b6:18:d0:b6:33:b8:d9:ce:
2a:e5:f8:6e:33:9c:52:7f:42:d9:97:30:c9:52:a1:
1f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F5:EA:DF:8A:34:5A:BD:D2:8F:DC:46:1E:B1:1E:A6:99:89:6A:EE
X509v3 Authority Key Identifier:
keyid:4B:81:BB:31:FA:52:92:C8:02:5B:82:8F:80:27:22:DE:0D:5E:AD:E3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/S4G7MfpSksgCW4KPgCci3g1ereM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/S4G7MfpSksgCW4KPgCci3g1ereM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/7fXq34o0Wr3Sj9xGHrEeppmJau4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.123.124.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:39:4b:47:35:f7:4c:3d:88:62:63:d7:0a:b3:ad:40:13:2f:
a9:d5:5c:c7:0c:ee:a7:59:b0:cd:13:cf:fe:53:1e:03:1b:e2:
92:47:66:16:da:37:f7:52:fe:35:24:a8:45:a4:53:e5:ed:f7:
e4:f3:31:81:a0:88:0e:db:29:e3:ba:97:9a:16:44:2c:b5:91:
bf:3b:9d:b6:0f:d3:6e:ca:fa:64:4d:f3:67:f7:d4:ad:41:e4:
cb:2f:dd:18:7b:d7:b8:0a:e7:59:d9:57:d9:c5:f2:5a:14:de:
55:e9:13:39:e0:af:b0:d2:83:e2:65:11:34:0c:2b:30:4e:0d:
0f:ef:eb:3a:b6:e9:c0:0a:56:14:e7:e1:08:db:fd:c7:d6:74:
08:16:8c:20:09:69:b4:87:bd:5b:6f:7d:20:74:22:2f:93:9d:
38:3c:db:44:bc:6a:f4:0a:2f:e4:e0:53:88:fe:f6:16:44:8d:
87:79:e9:d8:73:4d:58:a5:e7:39:4e:79:72:76:57:57:1f:a4:
2e:3b:be:43:e1:85:2c:8a:c8:14:ed:3c:00:10:49:9d:21:04:
7e:f9:2f:f2:40:0d:4b:89:2a:dd:d0:72:77:d2:c9:f4:b8:3d:
81:f8:26:66:aa:e5:80:00:c3:20:48:e2:3e:c5:fd:f3:da:40:
aa:13:2c:09
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCjYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEI4
MUJCMzFGQTUyOTJDODAyNUI4MjhGODAyNzIyREUwRDVFQURFMzAeFw0yMjA5MTUw
MjUwNDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEVERjVFQURGOEEzNDVB
QkREMjhGREM0NjFFQjExRUE2OTk4OTZBRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyQyYl1ayTLnuEN8zMTkWF+/gLZX0yMiulWi5tzjg8WbvtoCtL
YbU6Q3u7AwuyVR5ESzpkSERruh2X2OBoTLTdz3JJcnvke6gDHTGTnncN5QsXLWWQ
mmm2ir1yYJpmJgE10BvWyFQw0xyDCJo1X5ohaoYZeNBK5o7/shjFsIlmd880ImQ5
58OjfEOTchxtkSCELD1PudEPeAN6SErb/qSCdjnplCeEfGyE1s9TjmuOVpyGBrpv
a3VZUqQInPzPCZBZ2g5lOwZ4rH3H3OoAgSsXkYqtlv7Mr5JQ9i2sqbGe6hkQUPLn
BBG2GNC2M7jZzirl+G4znFJ/QtmXMMlSoR/5AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU7fXq34o0Wr3Sj9xGHrEeppmJau4wHwYDVR0jBBgwFoAUS4G7MfpSksgCW4KP
gCci3g1ereMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNEVFYv
UzRHN01mcFNrc2dDVzRLUGdDY2kzZzFlcmVNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9TNEc3TWZwU2tzZ0NXNEtQZ0NjaTNnMWVyZU0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OQ0RUVi83ZlhxMzRvMFdyM1NqOXhHSHJF
ZXBwbUphdTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCynt8
MA0GCSqGSIb3DQEBCwUAA4IBAQArOUtHNfdMPYhiY9cKs61AEy+p1VzHDO6nWbDN
E8/+Ux4DG+KSR2YW2jf3Uv41JKhFpFPl7ffk8zGBoIgO2ynjupeaFkQstZG/O522
D9NuyvpkTfNn99StQeTLL90Ye9e4CudZ2VfZxfJaFN5V6RM54K+w0oPiZRE0DCsw
Tg0P7+s6tunAClYU5+EI2/3H1nQIFowgCWm0h71bb30gdCIvk504PNtEvGr0Ci/k
4FOI/vYWRI2HeenYc01Ypec5TnlydldXH6QuO75D4YUsisgU7TwAEEmdIQR++S/y
QA1LiSrd0HJ30sn0uD2B+CZmquWAAMMgSOI+xf3z2kCqEywJ
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:10:11 2025 by rpki-client