Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/G2JQUK6vYmdiSPyriP2sL_FXbG4.roa
File: G2JQUK6vYmdiSPyriP2sL_FXbG4.roa (raw, json)
Hash identifier: smSdNkZfhy78AYiNorWqfrtHXLiqXvz/01y0vilYXcg=
Subject key identifier: 1B:62:50:50:AE:AF:62:67:62:48:FC:AB:88:FD:AC:2F:F1:57:6C:6E
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0899
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/G2JQUK6vYmdiSPyriP2sL_FXbG4.roa
Signing time: Sun 07 Feb 2021 13:01:01 +0000
ROA not before: Sun 07 Feb 2021 13:01:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4781
IP address blocks: 210.63.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2201 (0x899)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Feb 7 13:01:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1B625050AEAF62676248FCAB88FDAC2FF1576C6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a0:23:a4:58:c1:18:a6:6d:ca:85:74:50:7c:
27:08:bc:42:99:00:38:75:91:a1:84:54:d3:96:6c:
a9:de:28:b0:53:0e:a9:a6:6b:b0:45:81:c1:fc:7a:
62:29:bd:19:db:98:fe:5f:43:67:d2:cc:fb:3b:98:
9b:78:1b:8a:4f:b2:4b:1e:06:95:85:1b:c7:44:4a:
fd:0d:c7:e5:d3:da:5b:47:a4:99:a4:c4:fa:7f:81:
cf:0d:69:7b:42:25:62:36:a9:d3:c7:95:ab:57:f2:
68:fb:88:dd:ee:2b:39:3c:04:a5:57:d7:da:e1:ec:
e1:fc:12:ca:32:40:4b:97:fb:ca:6d:b7:88:7f:c6:
a5:ec:a2:47:cc:ee:64:88:93:bc:fc:9f:fe:bd:09:
1a:76:2d:69:ee:fb:1e:f3:d0:1c:84:9a:aa:43:dd:
7c:4d:16:ba:c9:fb:3c:41:1c:f1:0f:69:e6:4c:61:
36:b1:13:14:fd:5b:0b:41:52:db:02:5e:d3:8d:b8:
21:ce:12:bf:d5:1e:fe:fd:3d:07:94:47:b2:ff:c4:
6d:96:53:f0:23:da:27:e4:47:52:00:22:51:97:ac:
67:b0:16:d8:35:57:44:c1:df:52:40:92:9d:1a:71:
46:91:26:7f:88:f8:a7:04:f7:61:8b:ab:22:2e:ef:
b1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:62:50:50:AE:AF:62:67:62:48:FC:AB:88:FD:AC:2F:F1:57:6C:6E
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/G2JQUK6vYmdiSPyriP2sL_FXbG4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.100.0/24
Signature Algorithm: sha256WithRSAEncryption
47:b1:26:51:77:39:ee:b9:87:92:e5:fb:46:29:03:43:d9:7c:
92:5f:f1:61:03:4e:c7:68:bd:31:73:c1:fc:ab:45:17:5d:1c:
3f:8b:71:c5:7b:1e:97:8e:38:3a:1f:4a:e6:0a:3c:01:2d:d3:
a7:a7:59:e8:a5:ee:05:6d:8d:f1:f9:3b:f1:29:26:16:88:ec:
72:fe:e4:2f:5f:8e:21:33:d7:e9:22:ec:74:96:0e:16:42:78:
75:e8:fa:f5:a0:c2:5a:3b:9a:ff:ed:7f:01:8e:53:14:38:af:
bb:02:0b:fd:d0:8c:13:56:c7:5f:5e:51:08:c1:e1:ad:ed:17:
bb:7f:e5:c7:f0:59:a5:b1:66:ca:5d:2a:dd:d3:cc:88:88:ee:
bd:a1:d5:60:1c:e2:0b:dc:39:ee:f3:a7:b6:17:5d:17:88:1d:
09:ac:00:2c:ab:4f:42:4b:99:49:6f:02:6e:65:76:ac:d8:42:
b9:e2:3a:4a:67:fd:43:56:b0:0b:25:74:6a:fc:c2:44:cd:bb:
35:44:28:25:78:fa:54:63:36:33:ab:55:60:5d:4e:17:92:8e:
1a:62:83:dd:7b:2c:dc:b9:1a:86:74:71:47:9f:55:64:d4:09:
d4:26:ca:e0:6c:38:80:5f:da:3b:ca:a1:72:ed:f8:ea:07:c3:
e4:73:76:6d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCJkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5
QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yMTAyMDcx
MzAxMDFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFCNjI1MDUwQUVBRjYy
Njc2MjQ4RkNBQjg4RkRBQzJGRjE1NzZDNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwoCOkWMEYpm3KhXRQfCcIvEKZADh1kaGEVNOWbKneKLBTDqmm
a7BFgcH8emIpvRnbmP5fQ2fSzPs7mJt4G4pPskseBpWFG8dESv0Nx+XT2ltHpJmk
xPp/gc8NaXtCJWI2qdPHlatX8mj7iN3uKzk8BKVX19rh7OH8EsoyQEuX+8ptt4h/
xqXsokfM7mSIk7z8n/69CRp2LWnu+x7z0ByEmqpD3XxNFrrJ+zxBHPEPaeZMYTax
ExT9WwtBUtsCXtONuCHOEr/VHv79PQeUR7L/xG2WU/Aj2ifkR1IAIlGXrGewFtg1
V0TB31JAkp0acUaRJn+I+KcE92GLqyIu77HHAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUG2JQUK6vYmdiSPyriP2sL/FXbG4wHwYDVR0jBBgwFoAUUptgbbhig71KCK9+
sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv
VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9HMkpRVUs2dlltZGlTUHlyaVAy
c0xfRlhiRzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j9k
MA0GCSqGSIb3DQEBCwUAA4IBAQBHsSZRdznuuYeS5ftGKQND2XySX/FhA07HaL0x
c8H8q0UXXRw/i3HFex6Xjjg6H0rmCjwBLdOnp1nope4FbY3x+TvxKSYWiOxy/uQv
X44hM9fpIux0lg4WQnh16Pr1oMJaO5r/7X8BjlMUOK+7Agv90IwTVsdfXlEIweGt
7Re7f+XH8FmlsWbKXSrd08yIiO69odVgHOIL3Dnu86e2F10XiB0JrAAsq09CS5lJ
bwJuZXas2EK54jpKZ/1DVrALJXRq/MJEzbs1RCglePpUYzYzq1VgXU4Xko4aYoPd
eyzcuRqGdHFHn1Vk1AnUJsrgbDiAX9o7yqFy7fjqB8Pkc3Zt
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:02 2023 by rpki-client on console-ams.rpki-client.org