Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/QXVGHBbbDnjiYz72lL7GAOsCIPc.roa
File: QXVGHBbbDnjiYz72lL7GAOsCIPc.roa (raw, json)
Hash identifier: hNZAvH0uY5ZduuM3tJEc+AHSh40424NP4Mrbv8xOGWk=
Subject key identifier: 41:75:46:1C:16:DB:0E:78:E2:63:3E:F6:94:BE:C6:00:EB:02:20:F7
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0783
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/QXVGHBbbDnjiYz72lL7GAOsCIPc.roa
Signing time: Tue 29 Sep 2020 10:06:21 +0000
ROA not before: Tue 29 Sep 2020 10:06:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 43.255.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1923 (0x783)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 29 10:06:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4175461C16DB0E78E2633EF694BEC600EB0220F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fc:46:3a:ac:79:d1:64:e6:f5:e8:5a:57:96:
92:a9:02:3c:da:88:14:2f:40:cd:5a:e2:df:b5:02:
54:1d:3a:26:2f:79:9a:0d:91:1b:3a:67:93:1b:bf:
64:81:83:ce:d8:2f:2f:d9:0f:cd:03:3e:b1:44:94:
bb:70:be:e7:f7:22:03:4e:77:1b:c7:68:48:1b:12:
45:0e:ef:20:77:cc:4b:c1:08:90:68:e0:85:93:0c:
41:9e:1f:65:1b:9f:54:fe:c9:06:b5:ab:9b:9e:48:
11:7a:cf:68:10:32:74:ba:23:23:7c:48:92:88:23:
be:50:65:ef:a8:0f:12:f8:bc:e4:d2:ed:17:2e:35:
9a:41:25:2d:a3:fe:69:88:33:27:ae:cc:09:90:64:
bf:c3:92:fb:1b:f2:83:8b:2e:19:f0:bb:81:db:2d:
92:6b:fb:2f:20:16:c5:3c:ca:c1:e7:93:39:b4:94:
23:1d:ce:92:b4:17:65:a2:f1:64:c4:34:41:af:de:
4d:a5:ac:7f:ae:bf:fe:7c:9a:39:51:f0:b3:64:f5:
26:6c:0a:53:f4:bf:5d:4f:c8:a2:b1:ed:1b:bc:87:
79:de:45:d9:70:c5:68:66:70:35:41:ea:80:dc:59:
fd:ee:94:6b:11:f3:33:0d:56:b6:9a:c3:b8:9c:b1:
63:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:75:46:1C:16:DB:0E:78:E2:63:3E:F6:94:BE:C6:00:EB:02:20:F7
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/QXVGHBbbDnjiYz72lL7GAOsCIPc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.12.0/22
Signature Algorithm: sha256WithRSAEncryption
37:77:d3:37:cc:71:71:1d:a6:48:e1:67:49:86:a2:83:8c:1d:
74:8d:9c:98:03:f5:7d:ec:5e:1e:85:5f:96:c3:13:2a:2e:89:
2a:9b:93:22:67:e5:c1:70:ea:f2:0d:2b:66:02:4e:52:09:45:
8e:a1:08:ea:05:f6:52:f7:80:8c:2b:1a:82:27:56:9f:68:c6:
56:a6:b7:06:78:74:05:5c:fa:dc:96:1e:dc:de:c2:b3:30:5e:
64:fb:79:13:0d:97:3e:ab:9a:af:d2:19:7f:b4:0c:09:73:e2:
1e:2c:ef:20:d2:d3:e2:5f:ef:62:2f:01:1f:9e:6a:a0:f3:e7:
97:2f:55:1b:29:ba:e3:4e:0e:fd:8b:31:00:8a:c3:49:c6:3d:
4c:fb:e9:eb:e7:3c:4e:d5:5e:74:61:ae:90:1e:d0:25:50:01:
8a:ac:82:2e:71:31:af:ac:0d:e8:92:5c:c5:2f:b6:05:c0:7e:
4e:35:6d:1f:89:b3:0b:dc:cd:8f:24:ee:fa:ed:f2:32:28:21:
37:ff:d8:b7:b3:45:b9:15:cb:dd:71:30:ea:32:ef:c9:70:f4:
08:27:29:80:0c:60:d9:6e:e3:23:bd:3f:91:3d:fa:17:0f:66:
e5:32:4b:63:5b:7d:75:91:b5:4a:3e:c7:64:30:63:bb:ab:7d:
89:e8:c4:fc
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICB4MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1
NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yMDA5Mjkx
MDA2MjFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQxNzU0NjFDMTZEQjBF
NzhFMjYzM0VGNjk0QkVDNjAwRUIwMjIwRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQ/EY6rHnRZOb16FpXlpKpAjzaiBQvQM1a4t+1AlQdOiYveZoN
kRs6Z5Mbv2SBg87YLy/ZD80DPrFElLtwvuf3IgNOdxvHaEgbEkUO7yB3zEvBCJBo
4IWTDEGeH2Ubn1T+yQa1q5ueSBF6z2gQMnS6IyN8SJKII75QZe+oDxL4vOTS7Rcu
NZpBJS2j/mmIMyeuzAmQZL/Dkvsb8oOLLhnwu4HbLZJr+y8gFsU8ysHnkzm0lCMd
zpK0F2Wi8WTENEGv3k2lrH+uv/58mjlR8LNk9SZsClP0v11PyKKx7Ru8h3neRdlw
xWhmcDVB6oDcWf3ulGsR8zMNVraaw7icsWN3AgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUQXVGHBbbDnjiYz72lL7GAOsCIPcwHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N
UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83
NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2L1FYVkdIQmJiRG5q
aVl6NzJsTDdHQU9zQ0lQYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAIr/wwwDQYJKoZIhvcNAQELBQADggEBADd30zfMcXEdpkjhZ0mGooOMHXSN
nJgD9X3sXh6FX5bDEyouiSqbkyJn5cFw6vINK2YCTlIJRY6hCOoF9lL3gIwrGoIn
Vp9oxlamtwZ4dAVc+tyWHtzewrMwXmT7eRMNlz6rmq/SGX+0DAlz4h4s7yDS0+Jf
72IvAR+eaqDz55cvVRspuuNODv2LMQCKw0nGPUz76evnPE7VXnRhrpAe0CVQAYqs
gi5xMa+sDeiSXMUvtgXAfk41bR+JswvczY8k7vrt8jIoITf/2LezRbkVy91xMOoy
78lw9AgnKYAMYNlu4yO9P5E9+hcPZuUyS2NbfXWRtUo+x2QwY7urfYnoxPw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org