Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/afGIXFxl12cKAJSJHwumHs41vxQ.roa
File: afGIXFxl12cKAJSJHwumHs41vxQ.roa (raw, json)
Hash identifier: dUSdN2bEcwomAIyXvNlzbkcrjCWehk6CgksDjtxFP5g=
Subject key identifier: 69:F1:88:5C:5C:65:D7:67:0A:00:94:89:1F:0B:A6:1E:CE:35:BF:14
Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Certificate serial: 08DF
Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/afGIXFxl12cKAJSJHwumHs41vxQ.roa
Signing time: Sun 07 Feb 2021 11:55:22 +0000
ROA not before: Sun 07 Feb 2021 11:55:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4783
IP address blocks: 210.67.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2271 (0x8df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Validity
Not Before: Feb 7 11:55:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=69F1885C5C65D7670A0094891F0BA61ECE35BF14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f9:fa:58:6c:5f:83:e8:cc:04:77:bb:b0:ec:
f8:18:4c:99:42:7e:41:dc:73:8a:c5:86:6c:ec:d1:
b2:a3:fe:31:ad:94:35:67:ba:82:37:f1:f9:be:04:
3c:21:8a:19:6d:9e:48:75:94:9c:4e:4d:41:be:d1:
b9:5d:82:0f:4e:2d:7a:bb:27:78:b9:8a:13:ef:72:
7b:6c:95:90:74:fa:b4:43:54:f6:ee:89:c2:eb:18:
c0:8d:7d:f6:dd:70:f3:81:8b:d1:4e:19:d5:31:ec:
63:08:3b:fa:ec:04:11:2a:5e:c2:31:f6:cd:fa:f9:
10:63:44:92:5c:0d:92:e3:99:27:43:cd:94:83:29:
e1:b9:c5:e3:7b:87:69:08:f4:f1:57:d3:82:dc:91:
df:17:8a:c9:72:78:e6:e8:d6:ba:e1:1d:fd:7f:a3:
a6:6d:48:0e:0c:82:bb:2e:2e:4e:b3:e8:f9:16:75:
26:92:ee:47:d4:3b:ed:49:3c:26:91:ce:dc:1e:b1:
84:2c:d7:de:d2:54:7d:85:df:06:57:f8:5b:41:55:
bb:85:b7:9b:71:26:fd:38:49:f2:e4:63:9f:26:e4:
4f:af:b7:d5:b8:fa:ed:ee:8a:dc:ad:f9:76:4e:a7:
d6:08:3b:08:dd:49:09:f4:0f:b1:9b:2d:fc:6b:e4:
48:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F1:88:5C:5C:65:D7:67:0A:00:94:89:1F:0B:A6:1E:CE:35:BF:14
X509v3 Authority Key Identifier:
keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/afGIXFxl12cKAJSJHwumHs41vxQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.112.0/20
Signature Algorithm: sha256WithRSAEncryption
41:ac:b8:99:29:13:42:34:80:33:98:aa:bb:23:90:78:11:87:
6d:36:21:04:32:0e:0b:6e:2f:98:d2:55:d7:58:45:68:83:31:
56:1e:3d:bb:3a:15:72:95:13:96:66:51:a9:48:bd:89:56:f5:
3d:61:10:d1:f9:82:ac:7d:c2:cf:65:04:82:e1:7a:29:00:b2:
60:8e:ec:45:88:82:52:11:e3:09:f8:ff:42:16:0d:01:17:ce:
31:42:a8:db:5f:4a:85:44:78:f6:44:2c:2c:a4:f6:a8:2b:a0:
e7:96:62:fe:73:4b:cc:38:85:3c:b8:c7:4e:80:c4:a8:a1:f2:
71:1d:a8:51:48:0a:13:43:55:85:76:88:ab:23:8f:f3:b8:f9:
b5:d3:ac:7b:5e:ba:ab:f7:48:de:05:1f:10:d4:ef:d8:98:45:
77:fc:ea:7b:da:86:b2:b6:b0:97:3d:68:02:13:fb:8c:1c:86:
11:f9:9d:60:a5:bc:99:25:e2:c2:fe:81:9c:55:78:eb:31:e0:
c3:07:14:8a:14:56:73:06:3a:66:b7:23:62:02:8e:4e:fb:3d:
f1:d1:3c:54:d7:99:61:e8:b7:25:f3:5d:88:b7:9a:92:9c:de:
2d:be:f3:f1:3a:ce:2e:c2:54:11:1b:3b:bd:a4:0a:21:28:48:
5f:8e:c0:e5
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCN8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC
Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yMTAyMDcx
MTU1MjJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDY5RjE4ODVDNUM2NUQ3
NjcwQTAwOTQ4OTFGMEJBNjFFQ0UzNUJGMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1+fpYbF+D6MwEd7uw7PgYTJlCfkHcc4rFhmzs0bKj/jGtlDVn
uoI38fm+BDwhihltnkh1lJxOTUG+0bldgg9OLXq7J3i5ihPvcntslZB0+rRDVPbu
icLrGMCNffbdcPOBi9FOGdUx7GMIO/rsBBEqXsIx9s36+RBjRJJcDZLjmSdDzZSD
KeG5xeN7h2kI9PFX04Lckd8XislyeObo1rrhHf1/o6ZtSA4MgrsuLk6z6PkWdSaS
7kfUO+1JPCaRztwesYQs197SVH2F3wZX+FtBVbuFt5txJv04SfLkY58m5E+vt9W4
+u3uityt+XZOp9YIOwjdSQn0D7GbLfxr5EhdAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUafGIXFxl12cKAJSJHwumHs41vxQwHwYDVR0jBBgwFoAUlruUtFf52CoptbL9
nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU
L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL2FmR0lYRnhsMTJjS0FKU0pI
d3VtSHM0MXZ4US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATS
Q3AwDQYJKoZIhvcNAQELBQADggEBAEGsuJkpE0I0gDOYqrsjkHgRh202IQQyDgtu
L5jSVddYRWiDMVYePbs6FXKVE5ZmUalIvYlW9T1hENH5gqx9ws9lBILheikAsmCO
7EWIglIR4wn4/0IWDQEXzjFCqNtfSoVEePZELCyk9qgroOeWYv5zS8w4hTy4x06A
xKih8nEdqFFIChNDVYV2iKsjj/O4+bXTrHteuqv3SN4FHxDU79iYRXf86nvahrK2
sJc9aAIT+4wchhH5nWClvJkl4sL+gZxVeOsx4MMHFIoUVnMGOma3I2ICjk77PfHR
PFTXmWHotyXzXYi3mpKc3i2+8/E6zi7CVBEbO72kCiEoSF+OwOU=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:21 2025 by rpki-client