Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/JQShKJGWFiigoapPj-kptMBEoOU.roa
File: JQShKJGWFiigoapPj-kptMBEoOU.roa (raw, json)
Hash identifier: hgtGiWGtl/j/kK6ggbDDSDen//75xA8Ox28guU4Z6yA=
Subject key identifier: 25:04:A1:28:91:96:16:28:A0:A1:AA:4F:8F:E9:29:B4:C0:44:A0:E5
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A91
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/JQShKJGWFiigoapPj-kptMBEoOU.roa
Signing time: Wed 29 Sep 2021 02:41:22 +0000
ROA not before: Wed 29 Sep 2021 02:41:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 192.83.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2705 (0xa91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2504A12891961628A0A1AA4F8FE929B4C044A0E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:59:ee:0f:16:ed:8c:06:31:b0:4d:b7:3a:49:
55:eb:bc:03:ca:28:1d:ad:01:43:f3:35:92:27:74:
ec:7c:aa:10:24:c3:c6:a7:08:9e:3c:8b:0e:b0:ce:
4a:fe:30:32:ba:eb:39:6e:dc:0e:e0:51:40:e7:fa:
11:6c:91:56:c5:d7:bc:cf:f9:d6:b1:11:11:a5:2f:
b1:33:b8:97:1e:69:64:33:41:22:ea:31:88:5c:a2:
e7:e6:d8:1f:be:cf:01:45:37:c1:65:8b:6d:e9:5d:
ca:de:ca:2b:2a:24:22:5b:bb:38:0f:6a:a0:d5:91:
aa:89:af:7e:b9:2f:5e:35:c7:14:4a:df:16:e2:a7:
98:3f:99:b4:23:6a:b6:7f:8c:cf:dd:53:ad:30:48:
56:c6:72:60:a3:c2:0d:b2:bc:3c:dc:a3:a8:14:40:
64:67:e6:d4:f7:e2:b9:af:97:9c:78:17:8a:b9:b3:
b1:95:5a:92:03:eb:7d:3d:34:75:97:1f:fb:4b:78:
66:6b:ef:ee:04:50:76:33:c6:92:18:95:fb:34:eb:
6c:0e:a7:65:9f:98:02:46:79:78:64:81:9d:bc:36:
08:1d:87:a0:54:61:d9:bb:b1:df:37:08:f6:05:8e:
98:19:75:b6:c6:bc:f6:c1:f2:c0:70:51:ca:4f:ec:
17:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:04:A1:28:91:96:16:28:A0:A1:AA:4F:8F:E9:29:B4:C0:44:A0:E5
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/JQShKJGWFiigoapPj-kptMBEoOU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.196.0/24
Signature Algorithm: sha256WithRSAEncryption
10:79:0e:a6:0e:6e:37:8d:57:00:01:34:ce:8b:26:ed:f2:ef:
ae:d7:da:6c:95:61:71:b2:b0:d2:8d:fd:f5:79:e8:17:ee:05:
9b:18:03:37:8a:a4:37:14:d9:0b:ae:49:43:70:17:07:11:47:
c4:d3:f7:3b:37:ad:eb:ad:74:5c:80:3e:8d:b4:f3:ef:07:37:
92:ee:62:64:fa:5f:f7:2b:29:99:87:42:81:f5:04:b3:f7:05:
2f:d9:60:de:f0:41:e6:a2:79:a4:ad:cc:7b:5f:90:87:d3:2a:
09:bf:9a:58:41:f4:4b:06:52:cc:ae:b2:dc:e6:76:83:f9:33:
7f:d7:cd:a5:86:83:50:53:51:83:e5:87:74:0d:1c:d8:da:08:
f1:c4:02:5e:d7:57:0b:1a:a0:59:c0:52:52:9e:b4:e8:e7:02:
53:a2:bc:5c:b5:8f:ec:eb:c1:3c:c6:07:1e:c4:ab:de:c9:c3:
5e:64:63:71:7e:34:df:b9:c3:bb:2d:97:fa:fb:8a:ab:43:1c:
c1:b2:0d:60:07:89:07:cf:02:84:33:ff:4d:59:1c:6f:fd:dc:
2f:88:5a:83:15:df:91:ef:9b:1b:0c:bf:35:b7:78:c2:35:c8:
54:c4:6a:c6:4d:09:dc:30:31:13:7f:d8:3a:ec:47:0a:46:1b:
88:18:ef:38
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCpEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMTA5Mjkw
MjQxMjJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDI1MDRBMTI4OTE5NjE2
MjhBMEExQUE0RjhGRTkyOUI0QzA0NEEwRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDcWe4PFu2MBjGwTbc6SVXrvAPKKB2tAUPzNZIndOx8qhAkw8an
CJ48iw6wzkr+MDK66zlu3A7gUUDn+hFskVbF17zP+daxERGlL7EzuJceaWQzQSLq
MYhcoufm2B++zwFFN8Fli23pXcreyisqJCJbuzgPaqDVkaqJr365L141xxRK3xbi
p5g/mbQjarZ/jM/dU60wSFbGcmCjwg2yvDzco6gUQGRn5tT34rmvl5x4F4q5s7GV
WpID6309NHWXH/tLeGZr7+4EUHYzxpIYlfs062wOp2WfmAJGeXhkgZ28Nggdh6BU
Ydm7sd83CPYFjpgZdbbGvPbB8sBwUcpP7Bd5AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUJQShKJGWFiigoapPj+kptMBEoOUwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9KUVNoS0pHV0ZpaWdvYXBQai1r
cHRNQkVvT1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwFPE
MA0GCSqGSIb3DQEBCwUAA4IBAQAQeQ6mDm43jVcAATTOiybt8u+u19pslWFxsrDS
jf31eegX7gWbGAM3iqQ3FNkLrklDcBcHEUfE0/c7N63rrXRcgD6NtPPvBzeS7mJk
+l/3KymZh0KB9QSz9wUv2WDe8EHmonmkrcx7X5CH0yoJv5pYQfRLBlLMrrLc5naD
+TN/182lhoNQU1GD5Yd0DRzY2gjxxAJe11cLGqBZwFJSnrTo5wJTorxctY/s68E8
xgcexKveycNeZGNxfjTfucO7LZf6+4qrQxzBsg1gB4kHzwKEM/9NWRxv/dwviFqD
Fd+R75sbDL81t3jCNchUxGrGTQncMDETf9g67EcKRhuIGO84
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org