Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/mcxQYvREVXijaX12BL1NFbTWzao.roa
File: mcxQYvREVXijaX12BL1NFbTWzao.roa (raw, json)
Hash identifier: 2TQkLoLZ5eYnl6WAlSrlGBZyC1iLepQR0Gxd4wAk8G8=
Subject key identifier: 99:CC:50:62:F4:44:55:78:A3:69:7D:76:04:BD:4D:15:B4:D6:CD:AA
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 08FE
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/mcxQYvREVXijaX12BL1NFbTWzao.roa
Signing time: Sun 07 Feb 2021 11:49:19 +0000
ROA not before: Sun 07 Feb 2021 11:49:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 150.129.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2302 (0x8fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 11:49:19 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=99CC5062F4445578A3697D7604BD4D15B4D6CDAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e7:22:b5:81:e8:b0:53:cb:f2:59:e6:0b:a3:
13:26:cd:03:3a:4b:13:eb:b0:49:5f:22:be:91:4b:
c1:45:41:cd:49:78:8e:f1:6c:dd:f4:2c:4c:e6:b6:
a6:50:07:6d:dd:6f:f3:1d:13:0b:8f:d7:cf:01:38:
63:b9:aa:3f:15:23:d7:9e:b1:33:1e:92:ad:98:d5:
20:a2:57:85:ec:82:b0:89:d6:7a:60:4d:04:fe:d2:
44:bf:fe:14:32:6a:2c:d9:11:ba:a4:f0:74:e8:cc:
07:cd:77:a5:1a:86:cc:06:71:2f:cf:63:4a:02:c0:
a4:26:34:e2:83:2a:78:04:dc:81:cd:4d:00:75:01:
e0:73:50:8b:93:51:e8:b0:b6:8c:d6:4e:33:6b:c0:
c3:82:85:c3:b6:d4:eb:58:ea:76:6f:20:6c:c0:d8:
cb:06:9c:1f:0f:d9:da:26:24:18:6b:65:a3:44:7b:
b9:31:cf:d4:ab:d4:5b:fe:df:ee:3e:6f:b6:99:f5:
80:52:7f:d8:1f:f3:62:57:db:a7:b2:20:b2:78:c5:
73:d9:18:dc:94:49:9f:9b:c3:24:19:84:84:d2:bb:
f9:d5:57:72:0a:50:d3:c8:b5:dc:a4:e7:a4:f5:1e:
02:2d:9f:a8:6e:59:73:8f:f3:45:35:cd:2f:fc:4b:
26:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:CC:50:62:F4:44:55:78:A3:69:7D:76:04:BD:4D:15:B4:D6:CD:AA
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/mcxQYvREVXijaX12BL1NFbTWzao.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.72.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:c7:4d:f3:4e:e6:bc:01:a2:96:1d:69:7c:06:63:9e:7a:e4:
45:06:42:54:76:a0:78:1a:be:97:ee:f2:c0:24:76:d8:5d:fa:
66:42:55:f1:8e:34:40:e4:0e:40:6e:8d:3d:66:11:ff:3f:c3:
07:ff:f8:6b:fa:a4:fe:de:8f:71:33:0d:60:76:7e:1f:6f:f5:
52:86:64:86:95:49:f0:65:1a:a9:0a:8c:74:08:cd:48:95:55:
f3:08:50:08:b7:b5:2d:d6:9d:1e:21:a4:7d:a3:16:95:36:74:
e7:97:0e:da:dc:0f:e5:d5:9e:c7:2c:b9:46:b7:a5:b0:b1:71:
9e:a4:09:3e:54:ff:51:07:aa:c3:61:aa:ea:d6:16:9d:65:d8:
ae:57:24:7d:90:c4:9c:1d:02:5f:cc:e7:80:3c:e9:a3:31:1d:
0a:b9:89:4f:da:82:96:0a:77:25:47:38:1a:e3:3c:b5:ea:9b:
1f:e7:01:5e:92:a5:8a:3b:c6:fc:95:b8:84:20:97:21:d3:96:
1f:7a:4d:2d:a6:e3:a0:3b:09:b6:0f:d8:b6:b6:af:ba:24:b6:
30:0e:61:19:bb:2c:e9:94:ab:4e:5e:48:1c:1f:62:11:0c:dc:
60:46:17:b1:ee:b0:a4:45:38:dc:a3:80:b4:8e:cc:1c:17:03:
2a:27:8f:bd
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMTAyMDcx
MTQ5MTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk5Q0M1MDYyRjQ0NDU1
NzhBMzY5N0Q3NjA0QkQ0RDE1QjRENkNEQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC15yK1geiwU8vyWeYLoxMmzQM6SxPrsElfIr6RS8FFQc1JeI7x
bN30LEzmtqZQB23db/MdEwuP188BOGO5qj8VI9eesTMekq2Y1SCiV4XsgrCJ1npg
TQT+0kS//hQyaizZEbqk8HTozAfNd6UahswGcS/PY0oCwKQmNOKDKngE3IHNTQB1
AeBzUIuTUeiwtozWTjNrwMOChcO21OtY6nZvIGzA2MsGnB8P2domJBhrZaNEe7kx
z9Sr1Fv+3+4+b7aZ9YBSf9gf82JX26eyILJ4xXPZGNyUSZ+bwyQZhITSu/nVV3IK
UNPItdyk56T1HgItn6huWXOP80U1zS/8SybvAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUmcxQYvREVXijaX12BL1NFbTWzaowHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9tY3hRWXZSRVZYaWphWDEyQkwx
TkZiVFd6YW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCloFI
MA0GCSqGSIb3DQEBCwUAA4IBAQBKx03zTua8AaKWHWl8BmOeeuRFBkJUdqB4Gr6X
7vLAJHbYXfpmQlXxjjRA5A5Abo09ZhH/P8MH//hr+qT+3o9xMw1gdn4fb/VShmSG
lUnwZRqpCox0CM1IlVXzCFAIt7Ut1p0eIaR9oxaVNnTnlw7a3A/l1Z7HLLlGt6Ww
sXGepAk+VP9RB6rDYarq1hadZdiuVyR9kMScHQJfzOeAPOmjMR0KuYlP2oKWCncl
Rzga4zy16psf5wFekqWKO8b8lbiEIJch05Yfek0tpuOgOwm2D9i2tq+6JLYwDmEZ
uyzplKtOXkgcH2IRDNxgRhex7rCkRTjco4C0jswcFwMqJ4+9
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org