Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/566-erk2eEEeivC354DXJuaaUK0.roa
File: 566-erk2eEEeivC354DXJuaaUK0.roa (raw, json)
Hash identifier: 49yZNNyou6JOoGnweyRpe/Hcf/3tcD8d99oB22Th9HA=
Subject key identifier: E7:AE:BE:7A:B9:36:78:41:1E:8A:F0:B7:E7:80:D7:26:E6:9A:50:AD
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0A6B
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/566-erk2eEEeivC354DXJuaaUK0.roa
Signing time: Thu 15 Sep 2022 02:42:03 +0000
ROA not before: Thu 15 Sep 2022 02:42:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131584
IP address blocks: 111.125.128.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2667 (0xa6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 15 02:42:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E7AEBE7AB93678411E8AF0B7E780D726E69A50AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:15:3b:9b:0f:0c:3e:60:7f:d2:7f:88:0e:ef:
3d:98:be:f2:35:9d:bc:28:c0:47:04:0c:d1:f4:7f:
3e:79:51:e3:49:fa:f9:ac:23:ba:cc:20:43:f5:a9:
84:d1:e1:e2:18:9f:38:8b:cd:c8:71:da:6b:6f:e2:
67:64:d9:77:96:57:bd:11:54:b8:54:27:c2:13:28:
ef:bb:d5:b4:01:58:2e:6f:d2:7a:6e:20:43:66:36:
8f:55:10:c2:64:38:0e:f4:c9:4c:33:9e:7e:79:28:
e7:f2:a5:9f:ec:47:f8:7e:18:8f:7c:ae:4d:0d:90:
b2:1b:8a:55:46:5c:76:a6:77:43:23:80:b5:5d:3a:
78:1a:83:3f:97:8b:7a:99:2a:dc:e7:68:04:ee:d9:
4d:70:52:68:4a:c8:7a:d3:03:79:a6:95:75:74:4c:
b8:62:3b:17:d2:e1:06:0e:3f:ce:3b:b3:55:a7:f0:
28:27:b9:cf:70:4d:65:00:99:69:a7:8e:5f:25:80:
45:8f:bc:60:15:c5:cc:ae:ab:85:89:ec:f8:77:65:
4e:93:26:4b:80:91:af:5e:ed:99:4f:50:47:3d:00:
bf:49:c3:9e:47:d4:b1:50:88:bc:af:63:d1:99:cf:
f4:e4:d6:aa:ca:95:72:e7:08:8d:59:b9:70:ac:78:
7a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:AE:BE:7A:B9:36:78:41:1E:8A:F0:B7:E7:80:D7:26:E6:9A:50:AD
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/566-erk2eEEeivC354DXJuaaUK0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.125.128.0/21
Signature Algorithm: sha256WithRSAEncryption
67:14:88:c8:9f:eb:d3:7c:c6:9e:cf:2f:ea:56:a5:bd:f8:ff:
34:46:74:8c:ee:ad:a6:aa:ec:76:02:92:34:7d:83:9b:ef:b7:
e8:1d:34:b6:b9:7f:5b:9f:4b:82:90:43:8a:46:65:c0:01:b6:
95:4f:f2:6a:cb:8f:0f:d5:8d:30:71:4f:76:55:3e:83:3b:e5:
94:d5:24:1c:e6:a4:ea:b2:0a:1f:68:06:bf:95:95:52:d1:0e:
f3:f1:66:62:8c:15:34:3e:35:0f:2c:54:2c:20:b2:b5:13:c9:
ee:b5:ba:76:77:6a:a2:ef:b9:3d:82:60:ec:69:04:17:e0:72:
02:74:60:b8:4f:9e:fe:23:9e:12:d9:4a:99:8f:c1:41:85:9f:
a4:e9:f7:c9:a3:04:0e:08:14:fd:f1:a0:2f:17:3c:7c:ce:67:
84:df:b2:13:87:26:7f:7d:db:91:f6:62:76:d4:b1:e9:1d:46:
cc:05:68:04:2d:73:6a:ef:0c:b4:fd:6b:0b:c4:72:ef:c1:63:
4b:03:3e:f2:00:c8:f6:d3:98:30:98:35:b2:b5:66:e0:cb:34:
bd:43:10:76:fb:c7:d6:ab:34:b1:0e:bb:58:57:71:cd:ac:0e:
51:18:13:f0:18:14:fe:21:00:56:6b:51:56:eb:d1:6c:2b:0d:
ad:4b:ab:82
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCmswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1
NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yMjA5MTUw
MjQyMDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU3QUVCRTdBQjkzNjc4
NDExRThBRjBCN0U3ODBENzI2RTY5QTUwQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCSFTubDww+YH/Sf4gO7z2YvvI1nbwowEcEDNH0fz55UeNJ+vms
I7rMIEP1qYTR4eIYnziLzchx2mtv4mdk2XeWV70RVLhUJ8ITKO+71bQBWC5v0npu
IENmNo9VEMJkOA70yUwznn55KOfypZ/sR/h+GI98rk0NkLIbilVGXHamd0MjgLVd
Ongagz+Xi3qZKtznaATu2U1wUmhKyHrTA3mmlXV0TLhiOxfS4QYOP847s1Wn8Cgn
uc9wTWUAmWmnjl8lgEWPvGAVxcyuq4WJ7Ph3ZU6TJkuAka9e7ZlPUEc9AL9Jw55H
1LFQiLyvY9GZz/Tk1qrKlXLnCI1ZuXCseHo3AgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQU566+erk2eEEeivC354DXJuaaUK0wHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N
UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83
NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2LzU2Ni1lcmsyZUVF
ZWl2QzM1NERYSnVhYVVLMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBANvfYAwDQYJKoZIhvcNAQELBQADggEBAGcUiMif69N8xp7PL+pWpb34/zRG
dIzuraaq7HYCkjR9g5vvt+gdNLa5f1ufS4KQQ4pGZcABtpVP8mrLjw/VjTBxT3ZV
PoM75ZTVJBzmpOqyCh9oBr+VlVLRDvPxZmKMFTQ+NQ8sVCwgsrUTye61unZ3aqLv
uT2CYOxpBBfgcgJ0YLhPnv4jnhLZSpmPwUGFn6Tp98mjBA4IFP3xoC8XPHzOZ4Tf
shOHJn9925H2YnbUsekdRswFaAQtc2rvDLT9awvEcu/BY0sDPvIAyPbTmDCYNbK1
ZuDLNL1DEHb7x9arNLEOu1hXcc2sDlEYE/AYFP4hAFZrUVbr0WwrDa1Lq4I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org