Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/lX9cghvYgkzQSYnBYjBxNgaWpxg.roa
File: lX9cghvYgkzQSYnBYjBxNgaWpxg.roa (raw, json)
Hash identifier: io25BaOj2LMrcgn32ZGYM22X55qSTe9Xp/M5ybWxCps=
Subject key identifier: 95:7F:5C:82:1B:D8:82:4C:D0:49:89:C1:62:30:71:36:06:96:A7:18
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 073D
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/lX9cghvYgkzQSYnBYjBxNgaWpxg.roa
Signing time: Tue 29 Sep 2020 10:00:27 +0000
ROA not before: Tue 29 Sep 2020 10:00:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17420
IP address blocks: 210.67.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1853 (0x73d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 29 10:00:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=957F5C821BD8824CD04989C1623071360696A718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:09:58:c0:12:13:89:04:86:7b:e2:12:11:2d:
f8:a8:78:96:6b:c6:cf:3c:30:ce:69:d0:dc:5b:5d:
41:53:12:1e:1d:02:5c:07:e6:6f:04:33:87:e9:b4:
c5:2d:fd:7b:b7:31:f7:dc:b8:f4:52:d1:b3:f1:b4:
f6:a3:a3:13:04:7d:3e:05:3b:cf:c1:39:7e:d7:fe:
13:f6:8c:6f:4c:e3:57:79:7e:5c:82:85:fe:ac:94:
26:ec:73:e0:dc:20:b2:80:67:a8:2a:fb:81:15:63:
7c:4c:e3:7f:21:fb:bd:9e:72:ff:c9:67:6a:d4:1a:
ee:95:dc:15:2d:11:76:fa:87:5a:2a:fb:37:48:62:
7f:c9:04:ef:02:82:6a:5c:cb:c9:85:62:83:17:81:
02:1e:06:02:8f:38:5a:01:43:a2:e1:29:44:5f:50:
37:9b:f7:43:c6:79:4e:d1:35:71:cf:c6:fa:92:de:
ad:87:d5:83:f0:ee:cd:08:47:97:c8:cf:e3:50:3d:
7f:1e:7d:61:20:be:59:d0:8a:75:a8:81:95:00:92:
f3:df:05:27:6f:ec:62:77:b4:a9:6c:84:75:a6:6c:
17:17:c2:e6:e8:ff:9c:7a:5c:80:5b:6c:fd:b3:57:
a9:a2:ff:4e:37:58:5b:84:01:71:f8:64:f0:51:10:
8e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7F:5C:82:1B:D8:82:4C:D0:49:89:C1:62:30:71:36:06:96:A7:18
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/lX9cghvYgkzQSYnBYjBxNgaWpxg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.64.0/19
Signature Algorithm: sha256WithRSAEncryption
53:0c:76:b0:2b:7b:1a:55:e9:97:e5:95:41:dd:a1:b1:03:80:
19:df:d0:1d:0b:06:5b:91:cb:62:40:d2:62:1f:aa:6d:84:41:
f8:c4:6d:86:24:2a:ab:f4:e0:52:17:39:66:76:d7:39:b3:6f:
db:d6:3f:02:2a:12:9c:f5:92:14:03:26:22:19:c5:43:90:73:
aa:6f:fa:db:0d:56:62:09:04:5d:e0:6a:2b:98:53:06:6c:2d:
15:ed:ea:ae:bc:59:b5:8a:ac:95:0b:ad:00:2c:19:ca:e0:4c:
73:54:47:ff:43:b1:1e:08:81:ef:45:e9:a3:50:7d:78:fb:07:
53:5b:2a:57:5b:4f:a9:a9:29:65:8d:14:3d:4a:dc:aa:a7:20:
17:7c:4b:73:55:a8:ca:fa:d8:1f:32:c8:a7:fb:2b:3a:81:8b:
5e:e7:16:ee:ff:8f:11:7d:98:b2:ff:10:1a:95:06:ac:eb:1d:
1d:86:71:38:4c:d2:bd:1e:7e:7e:0a:a1:a1:10:05:56:a3:32:
6e:fd:32:8a:f2:78:21:b7:f8:49:24:dc:0a:7a:15:cf:23:40:
61:e1:be:2f:e3:83:87:9e:4a:5f:6a:ca:fe:7c:14:34:d4:9c:
c0:65:c3:29:28:b3:84:b5:79:48:cb:a3:b5:8f:99:3a:4f:e1:
40:df:45:f9
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICBz0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5
QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yMDA5Mjkx
MDAwMjdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk1N0Y1QzgyMUJEODgy
NENEMDQ5ODlDMTYyMzA3MTM2MDY5NkE3MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCbCVjAEhOJBIZ74hIRLfioeJZrxs88MM5p0NxbXUFTEh4dAlwH
5m8EM4fptMUt/Xu3MffcuPRS0bPxtPajoxMEfT4FO8/BOX7X/hP2jG9M41d5flyC
hf6slCbsc+DcILKAZ6gq+4EVY3xM438h+72ecv/JZ2rUGu6V3BUtEXb6h1oq+zdI
Yn/JBO8Cgmpcy8mFYoMXgQIeBgKPOFoBQ6LhKURfUDeb90PGeU7RNXHPxvqS3q2H
1YPw7s0IR5fIz+NQPX8efWEgvlnQinWogZUAkvPfBSdv7GJ3tKlshHWmbBcXwubo
/5x6XIBbbP2zV6mi/043WFuEAXH4ZPBREI7hAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUlX9cghvYgkzQSYnBYjBxNgaWpxgwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+
sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv
VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9sWDljZ2h2WWdrelFTWW5CWWpC
eE5nYVdweGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF0kNA
MA0GCSqGSIb3DQEBCwUAA4IBAQBTDHawK3saVemX5ZVB3aGxA4AZ39AdCwZbkcti
QNJiH6pthEH4xG2GJCqr9OBSFzlmdtc5s2/b1j8CKhKc9ZIUAyYiGcVDkHOqb/rb
DVZiCQRd4GormFMGbC0V7equvFm1iqyVC60ALBnK4ExzVEf/Q7EeCIHvRemjUH14
+wdTWypXW0+pqSlljRQ9StyqpyAXfEtzVajK+tgfMsin+ys6gYte5xbu/48RfZiy
/xAalQas6x0dhnE4TNK9Hn5+CqGhEAVWozJu/TKK8nght/hJJNwKehXPI0Bh4b4v
44OHnkpfasr+fBQ01JzAZcMpKLOEtXlIy6O1j5k6T+FA30X5
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:53 2025 by rpki-client