Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/-Pyl5Wuj6KdQhYeseZpotO39JTo.roa
File: -Pyl5Wuj6KdQhYeseZpotO39JTo.roa (raw, json)
Hash identifier: 0GJHiN8TOHHh71rOf9JE1OsczIQHV28BRHP3s26/Na0=
Subject key identifier: F8:FC:A5:E5:6B:A3:E8:A7:50:85:87:AC:79:9A:68:B4:ED:FD:25:3A
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/-Pyl5Wuj6KdQhYeseZpotO39JTo.roa
Signing time: Thu 15 Sep 2022 02:41:09 +0000
ROA not before: Thu 15 Sep 2022 02:41:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9916
IP address blocks: 140.129.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F8FCA5E56BA3E8A7508587AC799A68B4EDFD253A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6e:02:90:69:d5:dd:e4:c7:e5:09:ea:b1:8f:
90:ec:bc:3a:b7:ec:2a:6b:f8:38:03:06:4e:0a:4a:
16:1e:a3:03:04:c9:7e:ec:9a:a1:f3:f8:c9:2a:96:
9d:1d:c0:d4:36:18:a9:31:9b:e4:7c:dc:af:4b:2a:
85:c3:7b:3b:bb:45:06:b7:01:66:f1:11:27:a3:c6:
56:42:58:1e:a4:27:40:67:ca:78:f2:e3:1a:71:fa:
95:7c:c5:0b:4c:45:e9:cb:49:b0:1e:de:bf:7d:56:
78:26:89:36:1c:75:7c:11:b9:28:07:fb:4e:09:f2:
1f:24:7f:eb:17:40:79:ea:40:b2:5c:a7:8c:33:43:
f4:b5:db:50:00:de:19:ce:48:17:3c:f1:b6:1a:c1:
03:26:cf:cf:fc:52:27:4f:4a:72:d3:b1:c2:3c:0e:
d9:ac:a4:bb:cc:06:fc:f2:2f:4c:d4:fb:ea:87:f4:
b7:e3:b3:fc:7b:94:78:6c:4c:7c:30:05:39:79:3d:
55:85:8b:bf:da:86:5b:e5:09:2a:60:ae:b8:ee:3d:
01:30:c1:a5:c5:27:56:a4:29:a8:34:bd:3b:b4:16:
7d:28:5f:84:59:25:d4:01:8e:39:23:a7:78:2f:cd:
e6:8f:2d:f5:3a:b9:74:ba:fe:dc:2a:84:3d:67:cf:
44:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:FC:A5:E5:6B:A3:E8:A7:50:85:87:AC:79:9A:68:B4:ED:FD:25:3A
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/-Pyl5Wuj6KdQhYeseZpotO39JTo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.129.52.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:33:90:a1:74:30:b1:25:55:38:91:f8:d3:b2:74:b4:fa:b4:
da:4b:1e:07:a1:24:91:cd:e0:54:a6:a0:b4:8f:9f:5c:0d:c8:
f2:dd:43:e4:e2:ae:e6:57:67:ab:88:4b:d6:a3:f4:97:2d:34:
d4:ca:2d:91:33:09:7f:7d:56:93:b6:88:b4:79:6c:99:d9:63:
bd:fb:46:37:24:91:c4:c9:f6:ab:bc:8e:0e:a4:29:df:1f:47:
7c:cd:91:51:ac:5c:ad:b5:b1:aa:3e:c7:05:9d:8c:a0:15:ba:
2c:69:ed:48:2f:f4:68:cd:c1:89:69:b0:ed:bd:d0:66:8e:61:
94:e0:cf:c8:5d:45:ab:6e:a6:cd:6b:05:84:91:a0:14:d0:4f:
6f:a6:95:34:69:0c:20:0c:8d:32:19:b9:84:2d:b2:5f:fe:94:
ea:14:fd:a2:33:41:15:d0:4a:20:67:e4:8d:b2:07:ea:1e:ef:
ba:45:7e:cd:f5:d1:b6:59:cb:8e:c5:7f:ce:68:7f:05:51:e2:
56:d4:ec:be:1f:6c:a6:f4:04:e1:ba:cd:ba:14:6e:91:81:a4:
0e:56:c6:f2:53:0c:11:4e:32:5e:a4:64:c8:e5:e5:15:3e:b4:
07:bb:9f:67:d5:55:6e:8f:fb:27:4d:0c:41:a7:17:f7:fb:7d:
03:1d:b4:84
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICC4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMjA5MTUw
MjQxMDlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEY4RkNBNUU1NkJBM0U4
QTc1MDg1ODdBQzc5OUE2OEI0RURGRDI1M0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9bgKQadXd5MflCeqxj5DsvDq37Cpr+DgDBk4KShYeowMEyX7s
mqHz+Mkqlp0dwNQ2GKkxm+R83K9LKoXDezu7RQa3AWbxESejxlZCWB6kJ0Bnynjy
4xpx+pV8xQtMRenLSbAe3r99VngmiTYcdXwRuSgH+04J8h8kf+sXQHnqQLJcp4wz
Q/S121AA3hnOSBc88bYawQMmz8/8UidPSnLTscI8DtmspLvMBvzyL0zU++qH9Lfj
s/x7lHhsTHwwBTl5PVWFi7/ahlvlCSpgrrjuPQEwwaXFJ1akKag0vTu0Fn0oX4RZ
JdQBjjkjp3gvzeaPLfU6uXS6/twqhD1nz0SrAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU+Pyl5Wuj6KdQhYeseZpotO39JTowHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8tUHlsNVd1ajZLZFFoWWVzZVpw
b3RPMzlKVG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCjIE0
MA0GCSqGSIb3DQEBCwUAA4IBAQCMM5ChdDCxJVU4kfjTsnS0+rTaSx4HoSSRzeBU
pqC0j59cDcjy3UPk4q7mV2eriEvWo/SXLTTUyi2RMwl/fVaTtoi0eWyZ2WO9+0Y3
JJHEyfarvI4OpCnfH0d8zZFRrFyttbGqPscFnYygFbosae1IL/RozcGJabDtvdBm
jmGU4M/IXUWrbqbNawWEkaAU0E9vppU0aQwgDI0yGbmELbJf/pTqFP2iM0EV0Eog
Z+SNsgfqHu+6RX7N9dG2WcuOxX/OaH8FUeJW1Oy+H2ym9AThus26FG6RgaQOVsby
UwwRTjJepGTI5eUVPrQHu59n1VVuj/snTQxBpxf3+30DHbSE
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org