Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/KkFN8if72F0C82opT1EUKwv8ZFo.roa
File: KkFN8if72F0C82opT1EUKwv8ZFo.roa (raw, json)
Hash identifier: ngLJBg1D+UXOqW3+Ya6XfbWYtXdiCj4Q5+YoLGZzVAQ=
Subject key identifier: 2A:41:4D:F2:27:FB:D8:5D:02:F3:6A:29:4F:51:14:2B:0B:FC:64:5A
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AD5
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/KkFN8if72F0C82opT1EUKwv8ZFo.roa
Signing time: Wed 29 Sep 2021 02:41:08 +0000
ROA not before: Wed 29 Sep 2021 02:41:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 163.30.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2773 (0xad5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2A414DF227FBD85D02F36A294F51142B0BFC645A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:98:92:22:ec:7f:7e:84:84:8e:c6:bb:01:82:
32:5b:e3:eb:9b:3f:b5:26:95:de:3a:af:e3:b0:03:
a5:20:70:1a:d9:c4:9d:3b:26:ec:9d:86:7a:ef:b0:
50:37:29:51:25:ad:c0:56:2c:89:a9:a8:28:31:fe:
04:a1:27:f2:82:4c:9f:a9:69:91:80:5d:91:fc:48:
e1:e8:67:28:b2:e3:c5:74:fe:3d:e4:12:b3:b7:33:
84:72:61:56:52:69:5d:ca:56:ba:58:72:36:c2:0c:
b3:04:a4:de:b5:41:4c:d1:25:5e:0f:25:ab:97:8c:
ea:73:11:99:83:3d:d9:47:39:da:a9:b7:5f:fd:bf:
0e:fa:75:ea:f9:f9:a1:f5:83:1a:df:96:54:ca:e4:
1e:b9:b0:ca:43:2f:b7:56:b8:5c:dc:07:bd:2f:55:
55:ff:49:39:f6:d0:03:d7:9b:61:39:e0:59:5b:07:
fc:b0:03:bf:fe:14:1f:8e:08:f0:6c:aa:c5:51:43:
5c:40:91:80:cf:23:7b:84:10:74:d7:6d:73:19:52:
44:1d:ff:86:29:c6:2a:62:76:12:55:a6:65:3f:33:
81:05:42:da:d8:cf:17:0b:49:82:6f:c3:11:fc:24:
c2:e9:64:f0:05:ea:89:46:e1:85:cc:de:44:9f:a7:
4f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:41:4D:F2:27:FB:D8:5D:02:F3:6A:29:4F:51:14:2B:0B:FC:64:5A
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/KkFN8if72F0C82opT1EUKwv8ZFo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.30.0.0/15
Signature Algorithm: sha256WithRSAEncryption
ad:56:a3:21:c5:9d:d6:5a:1c:25:a3:fc:bc:f0:bb:d4:24:11:
93:01:3e:8b:d3:f7:a1:ad:04:63:7b:68:f5:f9:4f:63:9c:d4:
c7:b8:f1:ac:c6:1a:fe:8e:2a:50:fc:48:73:71:ad:39:aa:7f:
d0:9e:e3:09:fb:bd:0d:0a:29:f6:28:93:ee:e3:3d:cb:9a:d0:
d3:72:ce:c5:86:6b:36:e3:31:30:70:d5:a5:32:86:f0:1d:d0:
a2:c4:7d:82:4d:bf:24:4b:7c:71:68:d3:f5:34:59:fb:8e:ca:
12:69:f1:32:58:76:47:9a:bd:e8:5d:47:49:f3:ca:e1:c2:0b:
6c:03:34:12:96:7b:aa:64:06:5b:b8:02:fb:13:49:f7:de:d4:
bf:87:c5:15:3d:50:0c:64:d7:95:a5:c6:a6:33:cf:60:05:1e:
58:12:1a:e7:1c:03:db:8b:22:e5:22:35:d4:47:3d:00:56:01:
97:6d:a6:af:ce:45:a4:7a:97:eb:96:fe:5c:a2:9e:1a:23:28:
3f:dc:63:1e:bc:5d:07:9f:b2:91:45:09:23:84:03:0e:26:c9:
3c:37:0d:12:21:d5:ac:0a:06:13:fb:f4:fb:3e:04:29:36:6c:
d4:d8:b5:69:30:8f:fd:9c:a8:e2:21:6f:b7:a2:54:83:99:ee:
ca:0b:5c:1b
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCtUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMTA5Mjkw
MjQxMDhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDJBNDE0REYyMjdGQkQ4
NUQwMkYzNkEyOTRGNTExNDJCMEJGQzY0NUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6mJIi7H9+hISOxrsBgjJb4+ubP7Umld46r+OwA6UgcBrZxJ07
JuydhnrvsFA3KVElrcBWLImpqCgx/gShJ/KCTJ+paZGAXZH8SOHoZyiy48V0/j3k
ErO3M4RyYVZSaV3KVrpYcjbCDLMEpN61QUzRJV4PJauXjOpzEZmDPdlHOdqpt1/9
vw76der5+aH1gxrfllTK5B65sMpDL7dWuFzcB70vVVX/STn20APXm2E54FlbB/yw
A7/+FB+OCPBsqsVRQ1xAkYDPI3uEEHTXbXMZUkQd/4YpxipidhJVpmU/M4EFQtrY
zxcLSYJvwxH8JMLpZPAF6olG4YXM3kSfp0+bAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUKkFN8if72F0C82opT1EUKwv8ZFowHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9La0ZOOGlmNzJGMEM4Mm9wVDFF
VUt3djhaRm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBox4w
DQYJKoZIhvcNAQELBQADggEBAK1WoyHFndZaHCWj/Lzwu9QkEZMBPovT96GtBGN7
aPX5T2Oc1Me48azGGv6OKlD8SHNxrTmqf9Ce4wn7vQ0KKfYok+7jPcua0NNyzsWG
azbjMTBw1aUyhvAd0KLEfYJNvyRLfHFo0/U0WfuOyhJp8TJYdkeavehdR0nzyuHC
C2wDNBKWe6pkBlu4AvsTSffe1L+HxRU9UAxk15WlxqYzz2AFHlgSGuccA9uLIuUi
NdRHPQBWAZdtpq/ORaR6l+uW/lyinhojKD/cYx68XQefspFFCSOEAw4myTw3DRIh
1awKBhP79Ps+BCk2bNTYtWkwj/2cqOIhb7eiVIOZ7soLXBs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org