Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/ZiprRLiVYMtRJvtPR6vHUTiFJck.roa
File: ZiprRLiVYMtRJvtPR6vHUTiFJck.roa (raw, json)
Hash identifier: enNOTLk8jlBA3+GRMjzssavjkWrb3FtKSS/9kGFTR3M=
Subject key identifier: 66:2A:6B:44:B8:95:60:CB:51:26:FB:4F:47:AB:C7:51:38:85:25:C9
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09BC
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/ZiprRLiVYMtRJvtPR6vHUTiFJck.roa
Signing time: Wed 29 Sep 2021 02:41:58 +0000
ROA not before: Wed 29 Sep 2021 02:41:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 203.121.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2492 (0x9bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:41:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=662A6B44B89560CB5126FB4F47ABC751388525C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:08:53:57:06:cc:f3:bd:08:eb:76:f7:60:91:
ae:52:6d:24:c0:1b:36:e8:73:08:16:30:0d:1e:33:
71:43:79:53:33:80:77:59:96:e4:b7:28:42:88:10:
92:7f:67:19:e8:c2:6d:23:96:7f:78:e2:dd:e2:b2:
78:47:d7:03:5a:15:af:77:41:10:4e:a1:20:57:43:
0c:b0:54:11:ba:87:63:14:59:8d:df:ae:2c:7f:3d:
5c:e5:64:f8:83:15:48:da:05:35:14:1d:03:8f:21:
68:8b:1d:19:e1:26:85:a9:a8:38:8a:19:0a:bf:2f:
55:c0:fb:88:ba:1f:74:e4:44:48:63:38:a5:b8:c6:
13:fc:51:f5:bb:3d:92:3b:2b:37:10:46:38:d8:2a:
68:6f:e0:00:37:82:d7:60:6f:56:3d:3f:ec:fb:d4:
22:43:05:d0:70:15:75:cb:f7:ea:db:05:33:76:19:
e2:e5:da:20:59:97:d9:a9:70:2d:87:70:d6:6c:a1:
79:ec:cd:31:f9:e2:85:d4:77:e3:e7:04:d4:bb:56:
3d:1f:34:6c:30:3c:ec:3b:a9:8e:12:2b:e4:b5:09:
55:e2:9b:a4:e4:8e:60:27:c9:3e:e7:66:22:f4:c0:
b9:69:2f:90:86:c8:73:84:59:e0:50:8a:a1:39:91:
cd:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:2A:6B:44:B8:95:60:CB:51:26:FB:4F:47:AB:C7:51:38:85:25:C9
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/ZiprRLiVYMtRJvtPR6vHUTiFJck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.224.0/20
Signature Algorithm: sha256WithRSAEncryption
af:7d:ec:e6:70:96:97:57:c6:6b:7e:4a:de:8b:b6:fa:f8:dd:
c2:92:a3:49:40:5c:98:bc:2f:4b:44:aa:53:2c:4d:bf:02:60:
03:32:7e:95:36:d0:30:d6:18:af:d9:f3:17:fe:e5:fe:38:95:
52:8c:06:5b:6e:dd:b3:0c:95:90:9d:f5:f6:79:dd:d6:fc:37:
68:c1:c9:d5:61:68:ee:4d:c1:e5:58:b6:93:79:81:59:bc:cc:
7c:43:dc:6d:0d:c3:42:41:b8:a5:df:3c:c2:c8:6d:f7:f3:03:
78:59:54:fb:a8:c1:ac:cb:53:4d:4e:e2:0a:0a:ec:49:e6:be:
da:a1:b4:4d:43:01:81:fb:74:20:38:54:2b:6c:0b:df:94:97:
47:50:ff:93:cd:8a:4c:4f:29:a9:d0:69:26:97:0f:7b:cb:9c:
9c:b2:a4:c5:ff:ce:dc:ab:f6:dd:a8:1b:e5:8e:cb:4c:7e:2c:
29:40:76:6f:72:e0:5a:f8:70:ff:4f:e3:ec:75:fa:b3:36:41:
a2:21:de:86:d2:26:66:b3:5d:86:2d:8c:fe:fb:31:90:fc:db:
93:d2:40:e5:ab:66:63:4f:ea:a2:95:af:fb:5c:cc:e6:12:f7:
15:8c:96:f1:2c:bb:e9:22:ac:72:20:9a:9c:38:34:9d:85:d2:
40:e5:be:f8
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCbwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMTA5Mjkw
MjQxNThaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDY2MkE2QjQ0Qjg5NTYw
Q0I1MTI2RkI0RjQ3QUJDNzUxMzg4NTI1QzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7CFNXBszzvQjrdvdgka5SbSTAGzbocwgWMA0eM3FDeVMzgHdZ
luS3KEKIEJJ/Zxnowm0jln944t3isnhH1wNaFa93QRBOoSBXQwywVBG6h2MUWY3f
rix/PVzlZPiDFUjaBTUUHQOPIWiLHRnhJoWpqDiKGQq/L1XA+4i6H3TkREhjOKW4
xhP8UfW7PZI7KzcQRjjYKmhv4AA3gtdgb1Y9P+z71CJDBdBwFXXL9+rbBTN2GeLl
2iBZl9mpcC2HcNZsoXnszTH54oXUd+PnBNS7Vj0fNGwwPOw7qY4SK+S1CVXim6Tk
jmAnyT7nZiL0wLlpL5CGyHOEWeBQiqE5kc0DAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUZiprRLiVYMtRJvtPR6vHUTiFJckwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9aaXByUkxpVllNdFJKdnRQUjZ2
SFVUaUZKY2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEy3ng
MA0GCSqGSIb3DQEBCwUAA4IBAQCvfezmcJaXV8Zrfkrei7b6+N3CkqNJQFyYvC9L
RKpTLE2/AmADMn6VNtAw1hiv2fMX/uX+OJVSjAZbbt2zDJWQnfX2ed3W/DdowcnV
YWjuTcHlWLaTeYFZvMx8Q9xtDcNCQbil3zzCyG338wN4WVT7qMGsy1NNTuIKCuxJ
5r7aobRNQwGB+3QgOFQrbAvflJdHUP+TzYpMTymp0Gkmlw97y5ycsqTF/87cq/bd
qBvljstMfiwpQHZvcuBa+HD/T+PsdfqzNkGiId6G0iZms12GLYz++zGQ/NuT0kDl
q2ZjT+qila/7XMzmEvcVjJbxLLvpIqxyIJqcODSdhdJA5b74
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:45 2025 by rpki-client