Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Mi5oUcflamlXGwx068hVu-9Wt2g.roa
File: Mi5oUcflamlXGwx068hVu-9Wt2g.roa (raw, json)
Hash identifier: DJ4UaX/sFd6SbZz7nueJVyOe+GPriu3uJ6DzT7jcKTw=
Subject key identifier: 32:2E:68:51:C7:E5:6A:69:57:1B:0C:74:EB:C8:55:BB:EF:56:B7:68
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0B32
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Mi5oUcflamlXGwx068hVu-9Wt2g.roa
Signing time: Fri 01 Sep 2023 09:34:43 +0000
ROA not before: Fri 01 Sep 2023 09:34:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4781
IP address blocks: 210.63.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2866 (0xb32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 1 09:34:43 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=322E6851C7E56A69571B0C74EBC855BBEF56B768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:af:e6:a3:75:77:44:af:41:67:96:b8:27:18:
f2:4d:11:07:90:4b:07:5e:88:d4:c5:d4:fb:13:e8:
09:29:c8:c3:e7:2e:b8:14:28:e0:01:69:d3:c0:6a:
fa:c8:46:cc:ba:d9:dd:05:d5:f3:05:6f:43:03:c9:
d7:2c:bc:4c:73:1a:75:fe:27:a2:1d:3f:ab:d7:ba:
f8:39:6b:e0:5f:1d:cf:dd:2f:ec:d3:88:0c:b4:68:
1a:68:4f:49:13:da:f2:da:2a:8c:51:df:95:ae:d2:
c3:bb:3c:17:f5:4d:96:5b:56:52:fb:38:1a:aa:53:
cf:c1:ee:a6:3f:90:71:90:f8:f5:00:99:fc:e6:66:
15:fd:fb:b6:d1:f5:d1:20:2a:1a:1d:90:18:b6:d8:
f9:a7:b2:5a:bb:4d:eb:27:56:62:cb:b8:4e:9d:9a:
96:2f:d1:37:19:00:ae:b6:ef:43:5e:44:7e:2a:fa:
5e:1f:21:ef:2e:8e:c6:35:82:16:83:9f:04:c3:06:
af:f4:dd:a1:61:71:27:f4:d7:a1:75:1d:79:04:ca:
f8:f0:67:be:2b:da:b4:6b:4f:6c:0b:e0:1f:0a:8d:
eb:8d:aa:25:23:b5:b9:6a:e7:fb:8a:44:5f:1b:60:
36:4a:ff:47:78:6a:bb:52:95:af:b2:1a:b5:59:c4:
74:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:2E:68:51:C7:E5:6A:69:57:1B:0C:74:EB:C8:55:BB:EF:56:B7:68
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Mi5oUcflamlXGwx068hVu-9Wt2g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.96.0/24
Signature Algorithm: sha256WithRSAEncryption
97:ac:25:63:90:36:cc:d4:17:3c:0c:ed:d3:e4:d2:ad:21:d9:
fc:26:ab:68:90:c3:88:19:9f:f5:06:aa:e5:d7:fc:65:9e:92:
f1:77:3b:18:22:72:f7:16:13:b3:47:d5:5d:19:f0:a6:2a:72:
4e:3c:f1:a6:4a:63:32:22:a2:8e:17:20:f5:89:88:5e:d8:67:
6b:d5:d6:e8:e1:29:c6:5a:eb:d6:76:f7:8b:e8:96:2c:ba:ea:
e7:dc:9e:ba:4a:d0:c6:2b:47:04:42:1a:f1:2c:96:64:a8:53:
82:3e:ef:b4:89:df:9d:d2:b1:36:3a:e1:96:9c:29:9f:a3:37:
74:00:98:26:99:d0:f5:97:09:fb:5c:43:0c:56:fa:ed:45:69:
a8:7d:ae:90:e9:ee:2c:a7:79:3c:be:23:67:e9:bc:63:5f:fd:
59:2a:6e:9e:49:be:96:99:3b:32:a8:9a:ee:d9:97:e3:e3:c4:
7f:cc:44:35:f7:31:6b:22:01:cf:52:6e:4a:e6:b6:64:9f:1f:
30:17:0e:61:14:7b:4b:42:01:a0:d2:12:95:e4:9b:a4:0f:aa:
37:a5:7b:03:0c:2c:1b:0f:64:ac:dd:f7:6b:b3:78:0d:35:3d:
6d:b8:5f:8a:5e:18:1c:4b:8b:12:0c:28:ad:c8:7c:b4:88:47:
7b:51:1b:40
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCzIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5
QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yMzA5MDEw
OTM0NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDMyMkU2ODUxQzdFNTZB
Njk1NzFCMEM3NEVCQzg1NUJCRUY1NkI3NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDar+ajdXdEr0FnlrgnGPJNEQeQSwdeiNTF1PsT6AkpyMPnLrgU
KOABadPAavrIRsy62d0F1fMFb0MDydcsvExzGnX+J6IdP6vXuvg5a+BfHc/dL+zT
iAy0aBpoT0kT2vLaKoxR35Wu0sO7PBf1TZZbVlL7OBqqU8/B7qY/kHGQ+PUAmfzm
ZhX9+7bR9dEgKhodkBi22Pmnslq7TesnVmLLuE6dmpYv0TcZAK6270NeRH4q+l4f
Ie8ujsY1ghaDnwTDBq/03aFhcSf016F1HXkEyvjwZ74r2rRrT2wL4B8KjeuNqiUj
tblq5/uKRF8bYDZK/0d4artSla+yGrVZxHR1AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUMi5oUcflamlXGwx068hVu+9Wt2gwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+
sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv
VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9NaTVvVWNmbGFtbFhHd3gwNjho
VnUtOVd0Mmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j9g
MA0GCSqGSIb3DQEBCwUAA4IBAQCXrCVjkDbM1Bc8DO3T5NKtIdn8JqtokMOIGZ/1
Bqrl1/xlnpLxdzsYInL3FhOzR9VdGfCmKnJOPPGmSmMyIqKOFyD1iYhe2Gdr1dbo
4SnGWuvWdveL6JYsuurn3J66StDGK0cEQhrxLJZkqFOCPu+0id+d0rE2OuGWnCmf
ozd0AJgmmdD1lwn7XEMMVvrtRWmofa6Q6e4sp3k8viNn6bxjX/1ZKm6eSb6WmTsy
qJru2Zfj48R/zEQ19zFrIgHPUm5K5rZknx8wFw5hFHtLQgGg0hKV5JukD6o3pXsD
DCwbD2Ss3fdrs3gNNT1tuF+KXhgcS4sSDCityHy0iEd7URtA
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:32 2025 by rpki-client