Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/JdZ7qxYr8RrrMYHzsyis8fCekho.roa
File: JdZ7qxYr8RrrMYHzsyis8fCekho.roa (raw, json)
Hash identifier: FfA0G53+KymEW6/OrzAjLXmMZmGXx8xEeZ+pjdy1Skc=
Subject key identifier: 25:D6:7B:AB:16:2B:F1:1A:EB:31:81:F3:B3:28:AC:F1:F0:9E:92:1A
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09EE
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/JdZ7qxYr8RrrMYHzsyis8fCekho.roa
Signing time: Sun 07 Feb 2021 12:39:34 +0000
ROA not before: Sun 07 Feb 2021 12:39:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38844
IP address blocks: 203.68.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2542 (0x9ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:34 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=25D67BAB162BF11AEB3181F3B328ACF1F09E921A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4b:57:7f:7a:ab:a2:b0:05:8e:0d:b7:12:e0:
a4:f4:1f:83:d6:3d:6f:10:49:30:ec:71:ba:e3:11:
aa:e3:e4:e7:88:e1:7e:d2:69:97:08:d6:85:96:dc:
31:f9:99:4b:b6:41:93:e8:59:d6:40:e3:96:2c:b5:
f6:1f:87:8e:6e:4c:a6:ad:34:f9:17:8e:90:ab:f7:
d8:bb:25:ea:db:ed:00:54:f1:06:71:3f:7e:5b:41:
19:7d:bb:4e:0d:7b:98:d6:4d:b6:57:3d:6e:95:01:
cd:75:3c:e0:d6:f2:d1:70:58:0d:35:f1:04:8c:cf:
dd:4a:95:53:cd:6c:70:87:d1:7d:95:78:fc:29:a6:
62:cc:ac:24:84:9a:e1:03:fc:ba:02:fc:d0:37:30:
0a:18:0a:17:59:63:a9:cc:c6:f9:04:2c:f7:8c:d1:
fc:c5:b0:b5:6f:b0:e2:2e:c3:36:d9:a3:c7:7a:a0:
a3:8c:33:fb:ff:f9:51:8b:07:14:c3:99:50:56:05:
eb:64:37:8c:ef:c8:b5:bb:de:61:cf:db:f2:77:3d:
33:5d:ab:bd:e1:af:69:30:11:f0:4b:6e:ab:30:75:
ea:53:f2:0d:e7:a6:35:69:4a:5c:04:c5:d6:79:11:
39:30:bf:cb:79:67:80:0d:d1:36:ed:1d:61:31:9f:
08:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D6:7B:AB:16:2B:F1:1A:EB:31:81:F3:B3:28:AC:F1:F0:9E:92:1A
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/JdZ7qxYr8RrrMYHzsyis8fCekho.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.68.168.0/24
Signature Algorithm: sha256WithRSAEncryption
87:56:6d:44:5f:ce:e5:84:b7:13:42:c6:0d:80:93:d8:36:eb:
b0:53:2d:98:23:31:fd:7d:c5:e5:95:aa:78:fc:4d:1d:d8:86:
99:67:8c:a4:bd:67:7e:8c:a3:f4:cf:62:90:08:36:cf:07:68:
12:e4:a2:6a:df:d5:70:61:41:f0:03:a1:2b:34:ae:40:2e:00:
0e:90:fc:a8:fb:51:6f:d3:0e:b2:53:9d:03:40:30:60:f8:33:
32:22:60:e9:99:51:a8:ed:44:ef:f9:c8:4e:ee:68:27:70:ab:
2d:e7:15:48:23:8f:c0:f3:4c:7d:ae:5a:18:a0:71:b1:68:45:
04:fe:71:d1:c2:27:61:f8:1b:98:32:7f:09:68:9e:b7:4f:01:
17:f0:61:cd:6a:b4:96:91:d4:92:72:23:d9:c6:32:1c:5f:bd:
65:95:44:c3:c9:3f:eb:f6:dc:cb:6d:ea:21:ad:ae:01:65:9d:
ac:30:d2:58:6a:14:43:28:70:aa:39:1e:1d:85:73:4d:a1:91:
ec:76:de:17:82:d1:3a:c6:74:8b:b1:ee:4a:3e:5a:a2:80:cc:
67:60:10:35:ce:1d:7e:62:c1:f7:e8:49:21:7d:21:3e:b9:23:
5d:cc:7f:4c:d3:77:17:db:64:ee:be:c1:cc:4a:0b:c6:b4:21:
61:d8:30:21
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCe4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMTAyMDcx
MjM5MzRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDI1RDY3QkFCMTYyQkYx
MUFFQjMxODFGM0IzMjhBQ0YxRjA5RTkyMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsS1d/equisAWODbcS4KT0H4PWPW8QSTDscbrjEarj5OeI4X7S
aZcI1oWW3DH5mUu2QZPoWdZA45YstfYfh45uTKatNPkXjpCr99i7Jerb7QBU8QZx
P35bQRl9u04Ne5jWTbZXPW6VAc11PODW8tFwWA018QSMz91KlVPNbHCH0X2VePwp
pmLMrCSEmuED/LoC/NA3MAoYChdZY6nMxvkELPeM0fzFsLVvsOIuwzbZo8d6oKOM
M/v/+VGLBxTDmVBWBetkN4zvyLW73mHP2/J3PTNdq73hr2kwEfBLbqswdepT8g3n
pjVpSlwExdZ5ETkwv8t5Z4AN0TbtHWExnwjvAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUJdZ7qxYr8RrrMYHzsyis8fCekhowHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9KZFo3cXhZcjhScnJNWUh6c3lp
czhmQ2VraG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0So
MA0GCSqGSIb3DQEBCwUAA4IBAQCHVm1EX87lhLcTQsYNgJPYNuuwUy2YIzH9fcXl
lap4/E0d2IaZZ4ykvWd+jKP0z2KQCDbPB2gS5KJq39VwYUHwA6ErNK5ALgAOkPyo
+1Fv0w6yU50DQDBg+DMyImDpmVGo7UTv+chO7mgncKst5xVII4/A80x9rloYoHGx
aEUE/nHRwidh+BuYMn8JaJ63TwEX8GHNarSWkdSSciPZxjIcX71llUTDyT/r9tzL
beohra4BZZ2sMNJYahRDKHCqOR4dhXNNoZHsdt4XgtE6xnSLse5KPlqigMxnYBA1
zh1+YsH36EkhfSE+uSNdzH9M03cX22TuvsHMSgvGtCFh2DAh
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org