Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/G0ze-r4r2ENFn6hq00lWReMUozU.roa
File: G0ze-r4r2ENFn6hq00lWReMUozU.roa (raw, json)
Hash identifier: N7iDcJ4DRoD81WcdyixwOu4l2I9y6fFl8clFlF7FS3Y=
Subject key identifier: 1B:4C:DE:FA:BE:2B:D8:43:45:9F:A8:6A:D3:49:56:45:E3:14:A3:35
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 09C6
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/G0ze-r4r2ENFn6hq00lWReMUozU.roa
Signing time: Sun 07 Feb 2021 12:42:50 +0000
ROA not before: Sun 07 Feb 2021 12:42:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 192.83.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2502 (0x9c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:42:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1B4CDEFABE2BD843459FA86AD3495645E314A335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:91:ec:75:7c:0f:53:3e:9f:2c:6c:d9:d6:13:
f1:3b:6b:33:f2:6a:74:79:d8:be:56:aa:64:9a:2d:
70:8c:b2:7e:34:42:67:21:ed:9d:96:27:ec:96:b5:
0d:44:c6:0c:97:b0:3c:26:e8:2e:a7:c2:6c:7e:e1:
b1:fb:67:69:54:78:f5:f4:9b:e4:6a:04:33:27:54:
9f:b6:0f:0e:c3:9b:0a:86:fa:c0:7d:02:0d:b6:25:
f9:f8:aa:e0:31:fa:cd:5f:f0:18:26:24:fc:07:ca:
b9:ee:34:07:f0:a6:2d:97:59:e9:94:20:46:9b:9d:
28:36:6a:aa:7b:50:26:4a:21:1e:51:05:fb:93:7b:
de:25:35:7f:52:1d:ee:7c:5a:99:a6:0a:21:56:5a:
ea:f6:14:c9:bd:f4:ef:e1:9d:30:0b:50:92:a6:9f:
ba:93:41:f2:e9:dd:25:a5:7f:39:5d:e9:07:05:b9:
fc:d9:d5:14:b3:96:2e:40:2b:e4:39:96:9e:62:12:
7e:20:9e:a6:0f:26:66:1a:cb:5e:af:10:62:07:48:
d0:92:09:6d:7e:7c:e8:39:16:89:e2:55:f7:4e:bb:
07:52:c0:2c:6a:96:88:1e:8f:ff:87:d3:c1:ed:40:
5b:c5:63:4d:4e:ba:05:d6:d2:c0:95:dc:00:ed:eb:
28:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:4C:DE:FA:BE:2B:D8:43:45:9F:A8:6A:D3:49:56:45:E3:14:A3:35
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/G0ze-r4r2ENFn6hq00lWReMUozU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.192.0/22
Signature Algorithm: sha256WithRSAEncryption
45:32:c1:36:df:fc:56:91:99:17:f6:c6:95:75:11:0a:6b:c2:
35:6e:a0:84:8c:1b:3a:76:13:fc:94:75:ce:ff:70:86:66:d2:
57:1a:04:bb:7f:1c:56:d5:0a:52:4c:5a:4d:35:f5:b3:d0:b5:
5f:9b:7e:20:89:84:bc:0c:57:e7:b7:4b:9e:df:7f:97:5c:4a:
35:b1:bc:97:ee:3e:68:81:3e:c3:ea:3f:f3:23:5a:bf:56:eb:
c5:44:26:bc:76:c1:e0:5e:5d:ae:71:ac:ad:d7:12:7b:3f:1f:
ea:f4:cf:89:05:0a:43:3e:61:41:cf:97:9a:ec:3e:f7:a0:38:
77:7d:56:0a:a7:51:7b:f9:03:ba:fd:19:c3:a3:c1:40:97:b0:
09:91:7d:2a:34:40:45:10:13:72:03:ad:17:3e:fe:7f:70:0d:
cd:6c:df:42:8e:0f:c6:c7:31:b9:c2:8a:08:39:bf:0d:c9:36:
34:08:c6:eb:a7:67:99:d1:e5:3c:d1:a3:cb:e9:b6:e4:5a:06:
31:62:16:bf:9e:1f:c8:fd:d7:3d:3a:86:d8:96:4b:25:c4:46:
b1:68:75:83:1f:37:e9:ac:0b:9a:c7:a5:5d:cd:0f:11:ce:c4:
9f:49:03:16:f3:9a:cd:88:ea:e0:dd:c8:45:90:71:c4:eb:a0:
3f:ba:f7:b6
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMTAyMDcx
MjQyNTBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFCNENERUZBQkUyQkQ4
NDM0NTlGQTg2QUQzNDk1NjQ1RTMxNEEzMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDgkex1fA9TPp8sbNnWE/E7azPyanR52L5WqmSaLXCMsn40Qmch
7Z2WJ+yWtQ1ExgyXsDwm6C6nwmx+4bH7Z2lUePX0m+RqBDMnVJ+2Dw7DmwqG+sB9
Ag22Jfn4quAx+s1f8BgmJPwHyrnuNAfwpi2XWemUIEabnSg2aqp7UCZKIR5RBfuT
e94lNX9SHe58WpmmCiFWWur2FMm99O/hnTALUJKmn7qTQfLp3SWlfzld6QcFufzZ
1RSzli5AK+Q5lp5iEn4gnqYPJmYay16vEGIHSNCSCW1+fOg5FoniVfdOuwdSwCxq
logej/+H08HtQFvFY01OugXW0sCV3ADt6ygVAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUG0ze+r4r2ENFn6hq00lWReMUozUwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9HMHplLXI0cjJFTkZuNmhxMDBs
V1JlTVVvelUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwFPA
MA0GCSqGSIb3DQEBCwUAA4IBAQBFMsE23/xWkZkX9saVdREKa8I1bqCEjBs6dhP8
lHXO/3CGZtJXGgS7fxxW1QpSTFpNNfWz0LVfm34giYS8DFfnt0ue33+XXEo1sbyX
7j5ogT7D6j/zI1q/VuvFRCa8dsHgXl2ucayt1xJ7Px/q9M+JBQpDPmFBz5ea7D73
oDh3fVYKp1F7+QO6/RnDo8FAl7AJkX0qNEBFEBNyA60XPv5/cA3NbN9Cjg/GxzG5
wooIOb8NyTY0CMbrp2eZ0eU80aPL6bbkWgYxYha/nh/I/dc9OobYlkslxEaxaHWD
HzfprAuax6VdzQ8RzsSfSQMW85rNiOrg3chFkHHE66A/uve2
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org