Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Zn_MTN5O7tK__DXnfqjl1by8IKE.roa
File: Zn_MTN5O7tK__DXnfqjl1by8IKE.roa (raw, json)
Hash identifier: Y5SIouUT9/AqckdZwoq07XdMe9vP/oo2jSyZBzoWugY=
Subject key identifier: 66:7F:CC:4C:DE:4E:EE:D2:BF:FC:35:E7:7E:A8:E5:D5:BC:BC:20:A1
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 08C7
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Zn_MTN5O7tK__DXnfqjl1by8IKE.roa
Signing time: Sun 07 Feb 2021 11:46:55 +0000
ROA not before: Sun 07 Feb 2021 11:46:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 43.255.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2247 (0x8c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Feb 7 11:46:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=667FCC4CDE4EEED2BFFC35E77EA8E5D5BCBC20A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:94:3e:63:13:75:44:c9:c5:47:90:7b:4c:6f:
62:38:c1:cc:5b:25:65:c0:60:58:00:a7:73:73:d8:
34:9e:97:18:43:ce:b1:fb:27:5c:c2:46:8d:9e:bc:
6a:78:12:34:b0:3f:41:82:57:b9:df:c3:cf:3c:72:
53:9a:cc:72:ba:9d:61:bd:83:37:ff:05:0a:eb:a3:
8c:c2:20:86:02:79:03:3b:99:83:62:8b:b9:4d:d3:
d1:9a:ea:ab:72:31:d0:b0:0d:0c:20:66:d9:bf:52:
6e:6b:b2:0b:1e:ff:26:c7:e3:76:19:20:4e:b1:ea:
ba:bf:25:28:de:72:1a:6f:d6:e5:bb:28:f9:85:eb:
a0:32:81:d8:c8:d8:99:75:ab:ff:92:86:67:12:14:
d1:7c:7c:c9:7c:e6:76:d3:d4:86:9c:fd:08:f0:4e:
10:52:6a:f4:1d:a6:77:4b:f4:a9:df:37:6d:6b:fd:
eb:43:42:68:09:25:ba:77:79:07:f0:6f:26:2a:fc:
7c:ab:0f:49:aa:58:91:65:92:2c:e0:3f:58:39:33:
6d:a0:fc:52:2b:34:13:18:6a:08:84:f9:bc:f1:23:
48:30:87:f6:bb:21:bb:27:f7:51:d0:df:3a:35:dc:
f0:e6:6f:db:f1:ed:ca:e4:1a:89:e0:7b:a3:ab:8f:
9c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7F:CC:4C:DE:4E:EE:D2:BF:FC:35:E7:7E:A8:E5:D5:BC:BC:20:A1
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Zn_MTN5O7tK__DXnfqjl1by8IKE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.12.0/22
Signature Algorithm: sha256WithRSAEncryption
26:76:9d:a9:07:fa:e9:ab:c9:b0:b6:32:c8:51:16:8e:05:c5:
62:36:d2:5f:36:73:0a:21:5c:a5:d0:7e:e2:9b:70:2d:23:53:
27:bd:16:b0:e5:d3:3d:c0:ae:ca:25:33:55:bd:2b:16:e6:99:
87:b9:31:f1:42:b9:da:15:e1:e7:b6:bf:05:8b:d9:88:a8:c5:
b0:96:23:39:1d:eb:c9:d2:c2:7e:57:f1:84:2a:1e:71:0c:f3:
24:6e:49:22:6e:81:b1:78:04:f0:99:69:5b:68:81:bd:1c:d7:
25:65:20:6c:71:00:e0:d8:5a:a5:13:d4:9c:54:3d:e8:5b:9c:
c7:04:3a:e0:bb:19:e9:9a:69:c8:e2:33:b1:4d:24:01:98:3f:
f9:99:60:b2:28:de:b4:cf:79:88:06:4a:40:c4:cb:e2:2f:30:
1b:42:14:0b:df:64:c9:ab:37:c1:ae:a3:1f:71:c4:03:53:5b:
82:d7:2b:cd:eb:8a:2c:1a:a1:22:ae:13:43:2c:d4:ba:fe:5d:
b4:dc:57:87:ae:b5:0a:de:5e:32:9a:bc:9a:95:84:6d:1c:3c:
ea:75:ef:c2:9c:3c:00:bd:35:a1:3b:01:72:72:8a:63:43:b8:
3f:c0:c0:6b:22:e9:7f:c9:b6:e5:82:87:4f:b9:32:30:b6:dc:
70:37:ce:5c
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCMcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1
NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yMTAyMDcx
MTQ2NTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDY2N0ZDQzRDREU0RUVF
RDJCRkZDMzVFNzdFQThFNUQ1QkNCQzIwQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDplD5jE3VEycVHkHtMb2I4wcxbJWXAYFgAp3Nz2DSelxhDzrH7
J1zCRo2evGp4EjSwP0GCV7nfw888clOazHK6nWG9gzf/BQrro4zCIIYCeQM7mYNi
i7lN09Ga6qtyMdCwDQwgZtm/Um5rsgse/ybH43YZIE6x6rq/JSjechpv1uW7KPmF
66AygdjI2Jl1q/+ShmcSFNF8fMl85nbT1Iac/QjwThBSavQdpndL9KnfN21r/etD
QmgJJbp3eQfwbyYq/HyrD0mqWJFlkizgP1g5M22g/FIrNBMYagiE+bzxI0gwh/a7
Ibsn91HQ3zo13PDmb9vx7crkGonge6Orj5zHAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUZn/MTN5O7tK//DXnfqjl1by8IKEwHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N
UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83
NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2L1puX01UTjVPN3RL
X19EWG5mcWpsMWJ5OElLRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAIr/wwwDQYJKoZIhvcNAQELBQADggEBACZ2nakH+umrybC2MshRFo4FxWI2
0l82cwohXKXQfuKbcC0jUye9FrDl0z3ArsolM1W9KxbmmYe5MfFCudoV4ee2vwWL
2YioxbCWIzkd68nSwn5X8YQqHnEM8yRuSSJugbF4BPCZaVtogb0c1yVlIGxxAODY
WqUT1JxUPehbnMcEOuC7GemaacjiM7FNJAGYP/mZYLIo3rTPeYgGSkDEy+IvMBtC
FAvfZMmrN8Guox9xxANTW4LXK83riiwaoSKuE0Ms1Lr+XbTcV4eutQreXjKavJqV
hG0cPOp178KcPAC9NaE7AXJyimNDuD/AwGsi6X/JtuWCh0+5MjC23HA3zlw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org