Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/9QC_hzYA1l3Gi8oHWR_nv7VXG0I.roa
File: 9QC_hzYA1l3Gi8oHWR_nv7VXG0I.roa (raw, json)
Hash identifier: ECLvjbmQymxHtTGoIjQunVvXP0mFN7aN/lIiH7Ppmf4=
Subject key identifier: F5:00:BF:87:36:00:D6:5D:C6:8B:CA:07:59:1F:E7:BF:B5:57:1B:42
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0A32
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/9QC_hzYA1l3Gi8oHWR_nv7VXG0I.roa
Signing time: Thu 15 Sep 2022 02:50:36 +0000
ROA not before: Thu 15 Sep 2022 02:50:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17420
IP address blocks: 211.73.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2610 (0xa32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 15 02:50:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F500BF873600D65DC68BCA07591FE7BFB5571B42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b0:47:53:ea:03:b7:0c:f4:d7:4c:91:de:12:
24:5d:f1:f0:9d:57:a8:18:96:af:3e:b3:a0:78:18:
e4:34:73:88:0b:f4:e4:16:97:74:3a:20:41:eb:35:
8b:d7:ee:88:f5:46:96:df:d7:04:60:cb:29:07:b9:
98:76:07:33:b1:38:3d:72:00:04:d7:1b:a5:0a:07:
0b:e3:7f:a1:f7:be:fc:6c:ab:9f:59:ac:cd:1b:84:
43:ee:fe:f8:a4:97:b9:40:af:b9:f4:e7:7d:04:2b:
d2:79:f3:34:38:2a:87:5b:01:b8:4d:29:2a:6b:24:
0d:40:e7:d9:ff:36:6f:66:19:db:65:05:f3:76:8f:
e8:7b:6c:53:0f:41:f3:e0:76:b9:45:4f:aa:a5:75:
db:3c:cb:e7:c3:fd:9c:63:90:31:2e:bd:6d:00:38:
cd:ab:df:85:ea:12:44:c0:ea:25:48:bd:8a:c3:8f:
59:84:97:be:8f:73:1c:8f:c7:4f:c5:1c:38:d3:14:
66:58:8a:12:cf:bb:48:28:0e:6f:42:9e:a7:b0:8f:
15:be:48:4d:a6:8b:91:65:5d:78:ec:f1:d9:49:a2:
bf:16:4f:79:a7:b1:75:52:05:0b:10:af:bb:2a:47:
ba:e8:41:92:a3:04:8b:c0:d4:cb:01:da:6c:9a:74:
49:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:00:BF:87:36:00:D6:5D:C6:8B:CA:07:59:1F:E7:BF:B5:57:1B:42
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/9QC_hzYA1l3Gi8oHWR_nv7VXG0I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.192.0/19
Signature Algorithm: sha256WithRSAEncryption
99:c4:ca:8f:d0:ed:6b:6f:ee:58:72:f4:2d:20:7e:de:9a:5a:
c5:83:fb:35:46:e0:4f:82:02:c8:73:ef:5a:26:22:ea:31:6b:
b2:6b:93:f7:60:00:98:8b:c9:6a:46:3d:42:a0:48:7e:cb:b7:
f6:90:e2:4e:5c:dc:b1:c1:f0:bf:92:4d:71:5e:71:cd:c5:8e:
2f:c1:28:e1:94:78:81:d2:a3:d1:20:e6:6d:e1:87:1f:39:26:
45:d5:b3:42:2e:f4:50:71:f1:66:6e:2a:97:6d:2f:9f:33:ed:
e5:3d:52:7b:55:f8:46:a2:74:0c:1d:6b:18:72:1c:ad:0f:83:
c4:f4:13:22:71:9f:ef:58:08:7d:7e:be:b5:60:0d:47:17:8f:
65:78:db:fb:46:90:60:41:25:ae:bf:0f:92:a0:0d:7f:79:cb:
cd:2e:c7:0a:36:23:26:0b:ea:c2:ef:b1:44:2a:d5:fc:79:e0:
6c:c4:9a:0e:04:77:8d:5b:46:40:e5:9e:96:ec:bf:0c:58:53:
61:09:08:f9:05:8f:66:9e:d3:4a:3f:53:49:38:c0:e0:08:22:
e6:9f:04:84:ac:87:3c:c4:35:13:34:86:7c:f3:5f:30:b6:66:
ee:65:3f:4d:2a:33:ca:a6:04:bf:4d:ef:42:4f:85:0d:35:f7:
36:bd:3d:75
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCjIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5
QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yMjA5MTUw
MjUwMzZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEY1MDBCRjg3MzYwMEQ2
NURDNjhCQ0EwNzU5MUZFN0JGQjU1NzFCNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGsEdT6gO3DPTXTJHeEiRd8fCdV6gYlq8+s6B4GOQ0c4gL9OQW
l3Q6IEHrNYvX7oj1Rpbf1wRgyykHuZh2BzOxOD1yAATXG6UKBwvjf6H3vvxsq59Z
rM0bhEPu/vikl7lAr7n0530EK9J58zQ4KodbAbhNKSprJA1A59n/Nm9mGdtlBfN2
j+h7bFMPQfPgdrlFT6qldds8y+fD/ZxjkDEuvW0AOM2r34XqEkTA6iVIvYrDj1mE
l76PcxyPx0/FHDjTFGZYihLPu0goDm9CnqewjxW+SE2mi5FlXXjs8dlJor8WT3mn
sXVSBQsQr7sqR7roQZKjBIvA1MsB2myadEndAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU9QC/hzYA1l3Gi8oHWR/nv7VXG0IwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+
sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv
VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy85UUNfaHpZQTFsM0dpOG9IV1Jf
bnY3VlhHMEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF00nA
MA0GCSqGSIb3DQEBCwUAA4IBAQCZxMqP0O1rb+5YcvQtIH7emlrFg/s1RuBPggLI
c+9aJiLqMWuya5P3YACYi8lqRj1CoEh+y7f2kOJOXNyxwfC/kk1xXnHNxY4vwSjh
lHiB0qPRIOZt4YcfOSZF1bNCLvRQcfFmbiqXbS+fM+3lPVJ7VfhGonQMHWsYchyt
D4PE9BMicZ/vWAh9fr61YA1HF49leNv7RpBgQSWuvw+SoA1/ecvNLscKNiMmC+rC
77FEKtX8eeBsxJoOBHeNW0ZA5Z6W7L8MWFNhCQj5BY9mntNKP1NJOMDgCCLmnwSE
rIc8xDUTNIZ8818wtmbuZT9NKjPKpgS/Te9CT4UNNfc2vT11
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org