Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/tgfqjbvUrYCqExG-aOHtOwLnDac.roa
File: tgfqjbvUrYCqExG-aOHtOwLnDac.roa (raw, json)
Hash identifier: pL8SlTwxk6KgZjv2gQruhkM7/MT8cJ3aif/pulrC7nY=
Subject key identifier: B6:07:EA:8D:BB:D4:AD:80:AA:13:11:BE:68:E1:ED:3B:02:E7:0D:A7
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0BAE
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/tgfqjbvUrYCqExG-aOHtOwLnDac.roa
Signing time: Tue 28 Nov 2023 06:07:17 +0000
ROA not before: Tue 28 Nov 2023 06:07:17 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9922
IP address blocks: 39.1.32.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2990 (0xbae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Nov 28 06:07:17 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B607EA8DBBD4AD80AA1311BE68E1ED3B02E70DA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bf:46:df:31:1e:e9:97:ad:5e:ea:87:1e:0b:
f0:dd:a9:6c:3c:13:bf:8a:1c:9f:f9:f8:9f:f6:b6:
26:53:b5:19:33:cf:c5:20:b5:39:fb:9d:ea:1d:6c:
29:23:9d:2b:22:70:79:cc:24:f7:f0:df:62:90:c6:
00:f8:90:f9:5c:14:30:26:5a:b4:c9:74:a9:7c:49:
3c:00:d6:31:c1:5d:5a:bd:d8:6b:5b:b9:e7:87:5e:
e1:06:5f:02:ee:eb:80:70:b1:ed:9c:0e:4c:a1:89:
b0:b2:ec:18:3c:4a:c0:19:a4:66:eb:c0:48:ab:7a:
52:2d:a5:d6:79:03:c3:ec:e8:1c:6b:ca:92:0e:fa:
9d:00:6d:4e:aa:67:51:8b:25:45:8d:8c:00:19:1d:
38:bf:03:de:98:f7:fd:91:15:94:26:0e:da:46:c5:
2b:d6:94:bc:71:55:42:18:cf:78:b3:78:d0:ad:ec:
63:e5:9e:b1:da:a2:bd:8d:41:5a:e0:19:b9:4d:4c:
d8:18:e0:c0:54:ac:e8:f2:05:dc:bc:bb:d1:06:44:
44:43:25:67:1b:de:23:63:36:8d:a9:08:bf:44:54:
5c:6a:b9:2f:43:34:05:ee:d7:51:c2:20:83:f2:28:
f6:94:78:b6:a0:1b:9c:f0:f3:5f:86:7d:1e:58:3e:
6f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:07:EA:8D:BB:D4:AD:80:AA:13:11:BE:68:E1:ED:3B:02:E7:0D:A7
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/tgfqjbvUrYCqExG-aOHtOwLnDac.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.1.32.0/21
Signature Algorithm: sha256WithRSAEncryption
b6:de:3e:47:aa:c8:0e:55:c2:5b:ba:ad:48:e0:dc:9c:9b:79:
24:c9:b6:eb:c4:3e:e3:78:ef:8d:87:55:95:d6:84:e6:63:f1:
80:82:99:3d:80:f0:87:7f:bd:db:49:29:01:ea:03:40:d4:22:
b1:e6:79:d3:1a:fb:96:4e:fb:e5:5b:1f:57:08:9d:5b:34:e7:
e4:a9:b4:28:ef:ba:b9:00:fe:9a:a5:0e:95:ed:02:3e:7f:52:
ee:fa:f5:52:2c:3d:b0:81:d6:cf:0e:60:16:16:f1:4e:a7:15:
d6:33:49:d5:71:43:7c:5a:8c:42:b6:f9:88:cc:6d:5d:e3:94:
d8:7d:22:4f:96:55:e7:58:20:c3:bc:b9:e2:0a:63:2e:98:11:
cf:77:52:79:60:b1:60:12:cf:d7:23:51:10:ae:c3:6d:e6:48:
71:a6:5d:06:19:8a:d1:b1:14:de:50:49:13:f5:7e:9a:d0:c9:
7d:1d:24:e4:24:b4:a3:2a:41:ec:62:03:a7:67:6c:fc:bb:1c:
a3:78:a2:45:7c:15:1b:1d:95:12:79:c0:ba:12:60:d6:e3:e7:
8c:73:6b:d7:a7:f0:e6:c3:b1:23:75:ab:37:a6:80:32:47:c7:
ae:0c:d0:dc:42:68:a2:fc:b8:66:af:b4:a0:a1:c2:72:f6:9a:
8c:17:f1:af
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICC64wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC
NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMzExMjgw
NjA3MTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI2MDdFQThEQkJENEFE
ODBBQTEzMTFCRTY4RTFFRDNCMDJFNzBEQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5v0bfMR7pl61e6oceC/DdqWw8E7+KHJ/5+J/2tiZTtRkzz8Ug
tTn7neodbCkjnSsicHnMJPfw32KQxgD4kPlcFDAmWrTJdKl8STwA1jHBXVq92Gtb
ueeHXuEGXwLu64Bwse2cDkyhibCy7Bg8SsAZpGbrwEirelItpdZ5A8Ps6BxrypIO
+p0AbU6qZ1GLJUWNjAAZHTi/A96Y9/2RFZQmDtpGxSvWlLxxVUIYz3izeNCt7GPl
nrHaor2NQVrgGblNTNgY4MBUrOjyBdy8u9EGRERDJWcb3iNjNo2pCL9EVFxquS9D
NAXu11HCIIPyKPaUeLagG5zw81+GfR5YPm9ZAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUtgfqjbvUrYCqExG+aOHtOwLnDacwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5
B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv
ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC90Z2ZxamJ2VXJZQ3FFeEctYU9I
dE93TG5EYWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDJwEg
MA0GCSqGSIb3DQEBCwUAA4IBAQC23j5HqsgOVcJbuq1I4Nycm3kkybbrxD7jeO+N
h1WV1oTmY/GAgpk9gPCHf73bSSkB6gNA1CKx5nnTGvuWTvvlWx9XCJ1bNOfkqbQo
77q5AP6apQ6V7QI+f1Lu+vVSLD2wgdbPDmAWFvFOpxXWM0nVcUN8WoxCtvmIzG1d
45TYfSJPllXnWCDDvLniCmMumBHPd1J5YLFgEs/XI1EQrsNt5khxpl0GGYrRsRTe
UEkT9X6a0Ml9HSTkJLSjKkHsYgOnZ2z8uxyjeKJFfBUbHZUSecC6EmDW4+eMc2vX
p/Dmw7Ejdas3poAyR8euDNDcQmii/Lhmr7SgocJy9pqMF/Gv
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:15 2025 by rpki-client