Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PIINET/bGHKgVJ5DaNvZMbPDBvGhcy5WpE.roa
File: bGHKgVJ5DaNvZMbPDBvGhcy5WpE.roa (raw, json)
Hash identifier: B56b9VLQ7mtzUc4nh97q0jbCbsxWZYzJd3Bj97Q/5WM=
Subject key identifier: 6C:61:CA:81:52:79:0D:A3:6F:64:C6:CF:0C:1B:C6:85:CC:B9:5A:91
Certificate issuer: /CN=69797BDE8D0581FA299D8E1420ED2957C4208A07
Certificate serial: 0891
Authority key identifier: 69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/bGHKgVJ5DaNvZMbPDBvGhcy5WpE.roa
Signing time: Sun 07 Feb 2021 12:44:50 +0000
ROA not before: Sun 07 Feb 2021 12:44:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17710
IP address blocks: 150.107.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2193 (0x891)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69797BDE8D0581FA299D8E1420ED2957C4208A07
Validity
Not Before: Feb 7 12:44:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6C61CA8152790DA36F64C6CF0C1BC685CCB95A91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f0:a8:ba:3c:81:1e:a4:e5:d2:d3:3e:3e:73:
e2:6c:4b:00:7c:92:23:c8:40:63:ef:c5:55:31:ab:
7c:08:18:b0:04:9d:0e:08:52:f1:ca:c7:18:d6:67:
9e:d4:52:5f:c6:1f:e8:93:29:a6:07:da:14:1a:aa:
9e:bc:df:5a:c1:94:2e:6a:12:91:cc:23:e8:35:c9:
63:5c:f5:7c:79:45:d9:aa:5b:73:0e:ec:12:f7:8f:
ee:b7:70:91:ae:25:4b:5b:2f:b8:1d:86:7c:65:bb:
f7:77:89:52:8b:94:9f:42:83:f3:05:3f:b8:36:49:
07:a0:2e:e2:5b:b2:56:05:90:d9:6e:a9:bd:35:5a:
be:73:73:9e:f4:24:38:cf:48:aa:51:3f:c8:62:01:
62:0e:41:82:e0:af:99:f7:05:6a:75:74:d1:4d:94:
4e:27:f2:ee:53:04:10:23:63:a0:51:b0:20:81:28:
00:4f:29:2a:f8:03:8a:85:81:be:0f:47:9e:a7:7e:
9f:8f:c6:6a:f0:03:a9:07:10:29:1e:4a:16:e8:65:
ca:78:67:0c:12:b1:23:e6:64:b5:9f:a0:99:19:ce:
68:9f:71:a7:76:75:d7:dd:a2:87:d3:95:be:d8:75:
12:9f:d4:1e:d5:54:9d:b0:f5:e8:73:04:a8:c2:94:
64:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:61:CA:81:52:79:0D:A3:6F:64:C6:CF:0C:1B:C6:85:CC:B9:5A:91
X509v3 Authority Key Identifier:
keyid:69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/bGHKgVJ5DaNvZMbPDBvGhcy5WpE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.107.64.0/22
Signature Algorithm: sha256WithRSAEncryption
18:80:8e:ab:94:cf:ec:e9:a0:74:a9:2a:4f:ae:01:c9:b3:f6:
de:85:9f:38:c0:94:32:fa:d8:d8:8a:56:ac:0f:4c:2b:a9:e2:
c5:b7:e4:e8:14:2b:55:5f:c9:e0:fe:0b:1a:19:60:7d:ec:6a:
1d:3d:73:96:74:45:d8:48:43:c4:6c:b2:e5:94:29:03:dd:31:
91:f8:45:fd:b9:08:8e:f9:94:02:26:ca:36:40:a2:33:bd:70:
69:52:db:a9:a6:40:64:b1:84:de:c5:f6:9d:69:71:46:05:57:
83:aa:b0:bc:b1:44:c4:0c:8c:82:1f:87:9e:4c:5f:33:e8:c7:
d3:d9:f6:89:b3:7a:31:0b:9f:37:90:af:2a:ca:92:b6:1f:36:
f7:21:c5:d3:5f:1c:84:0f:a7:57:57:4a:56:c0:c0:fd:f8:61:
7e:50:08:43:f7:34:9e:c8:7a:d5:2c:2e:85:bf:9f:a0:72:dd:
a5:df:8a:b8:38:96:f3:3d:3d:87:91:e7:5b:ab:21:ed:01:3a:
33:27:8b:2a:a5:d6:63:08:1a:bd:5f:50:d6:41:8e:b3:ae:55:
cf:cb:37:91:ff:bc:6d:af:ad:fd:a6:0a:ae:5a:5c:24:e3:13:
1a:ba:6b:3c:ed:61:8d:ec:31:8e:b6:c6:a6:b5:8b:fc:f0:24:
8a:54:e6:ee
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCJEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk3
OTdCREU4RDA1ODFGQTI5OUQ4RTE0MjBFRDI5NTdDNDIwOEEwNzAeFw0yMTAyMDcx
MjQ0NTBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDZDNjFDQTgxNTI3OTBE
QTM2RjY0QzZDRjBDMUJDNjg1Q0NCOTVBOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCp8Ki6PIEepOXS0z4+c+JsSwB8kiPIQGPvxVUxq3wIGLAEnQ4I
UvHKxxjWZ57UUl/GH+iTKaYH2hQaqp6831rBlC5qEpHMI+g1yWNc9Xx5RdmqW3MO
7BL3j+63cJGuJUtbL7gdhnxlu/d3iVKLlJ9Cg/MFP7g2SQegLuJbslYFkNluqb01
Wr5zc570JDjPSKpRP8hiAWIOQYLgr5n3BWp1dNFNlE4n8u5TBBAjY6BRsCCBKABP
KSr4A4qFgb4PR56nfp+PxmrwA6kHECkeShboZcp4ZwwSsSPmZLWfoJkZzmifcad2
ddfdoofTlb7YdRKf1B7VVJ2w9ehzBKjClGSLAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUbGHKgVJ5DaNvZMbPDBvGhcy5WpEwHwYDVR0jBBgwFoAUaXl73o0FgfopnY4U
IO0pV8QgigcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUElJTkVU
L2FYbDczbzBGZ2ZvcG5ZNFVJTzBwVjhRZ2lnYy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvYVhsNzNvMEZnZm9wblk0VUlPMHBWOFFnaWdjLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvUElJTkVUL2JHSEtnVko1RGFOdlpNYlBE
QnZHaGN5NVdwRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKW
a0AwDQYJKoZIhvcNAQELBQADggEBABiAjquUz+zpoHSpKk+uAcmz9t6FnzjAlDL6
2NiKVqwPTCup4sW35OgUK1VfyeD+CxoZYH3sah09c5Z0RdhIQ8RssuWUKQPdMZH4
Rf25CI75lAImyjZAojO9cGlS26mmQGSxhN7F9p1pcUYFV4OqsLyxRMQMjIIfh55M
XzPox9PZ9omzejELnzeQryrKkrYfNvchxdNfHIQPp1dXSlbAwP34YX5QCEP3NJ7I
etUsLoW/n6By3aXfirg4lvM9PYeR51urIe0BOjMniyql1mMIGr1fUNZBjrOuVc/L
N5H/vG2vrf2mCq5aXCTjExq6azztYY3sMY62xqa1i/zwJIpU5u4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org