Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/KlV8bXAuvTiHWicFPuksYO2mtlU.roa
File: KlV8bXAuvTiHWicFPuksYO2mtlU.roa (raw, json)
Hash identifier: yUlBLx6V1xCaSokcdXV0Fhus20uxL8mTGxIJmuoqkJo=
Subject key identifier: 2A:55:7C:6D:70:2E:BD:38:87:5A:27:05:3E:E9:2C:60:ED:A6:B6:55
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 09D5
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/KlV8bXAuvTiHWicFPuksYO2mtlU.roa
Signing time: Sun 07 Feb 2021 13:13:05 +0000
ROA not before: Sun 07 Feb 2021 13:13:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9916
IP address blocks: 192.83.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2517 (0x9d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 13:13:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2A557C6D702EBD38875A27053EE92C60EDA6B655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4b:24:c4:18:b6:1b:eb:f3:ce:52:03:19:ec:
00:1b:87:ef:64:fd:18:22:6f:6f:0e:5b:2a:3d:10:
7a:49:e7:36:f3:97:3b:4c:6a:f1:4f:6f:ce:b2:82:
c0:3d:63:83:b4:2c:63:e2:59:42:7c:ab:77:3d:fe:
fe:2b:09:e4:87:b4:e1:a1:b0:2e:46:77:6a:c5:d5:
a9:c0:83:3d:19:35:6a:05:80:86:65:34:4e:41:e4:
1f:90:dd:0a:6e:9b:bd:27:dd:eb:8e:3a:f8:a7:04:
8a:90:d0:15:13:3b:0e:3e:dc:c5:4f:c8:19:95:0d:
f4:d2:c2:94:bd:3c:40:8e:f8:1e:eb:bd:86:8d:27:
04:03:63:f1:4d:f6:5c:79:0d:c5:11:16:81:ce:1e:
1c:20:cc:65:d3:c7:d4:5a:37:28:ce:4a:24:6c:b1:
14:75:ee:0b:78:a3:05:33:b2:b0:dd:f3:fe:83:09:
e8:4c:ce:bc:83:8b:fd:84:d9:e5:6d:4c:c3:c8:0a:
9a:78:f1:87:ce:97:3c:8a:a0:e9:92:6a:b2:f3:8e:
d5:12:ed:4f:14:da:86:32:24:6b:80:b3:13:3a:c1:
d8:eb:df:26:5f:bd:f5:a4:18:bf:0d:59:d7:3b:d4:
f1:23:dd:0d:21:06:60:84:14:1e:fa:3e:85:7a:ad:
d0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:55:7C:6D:70:2E:BD:38:87:5A:27:05:3E:E9:2C:60:ED:A6:B6:55
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/KlV8bXAuvTiHWicFPuksYO2mtlU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.179.0/24
Signature Algorithm: sha256WithRSAEncryption
34:d9:e6:96:d6:a2:fe:e8:d4:e6:36:5d:7a:0a:2a:fb:b9:ef:
70:19:af:6a:bb:a7:bd:6c:d0:21:00:a5:8c:96:3a:cd:bf:a5:
38:5d:77:b6:34:c3:60:d6:71:cc:b9:14:80:65:59:84:18:0b:
06:01:43:d1:09:13:71:12:49:3b:4a:12:60:e8:a9:1e:d5:cc:
28:17:fc:73:19:3e:7d:03:14:22:d7:2a:e3:3d:af:e9:3f:98:
01:5a:f7:2a:d4:f2:05:7b:fa:94:0b:e4:96:01:69:71:56:e2:
50:70:98:c8:3f:8f:46:d8:a9:72:15:be:27:44:83:1f:5e:e5:
93:30:16:b4:8d:5c:43:53:24:64:f4:2b:66:96:a4:b7:50:26:
99:3a:fd:b7:ed:dc:19:89:3f:02:f5:04:66:55:dc:32:08:0a:
72:08:28:a5:c6:0b:00:f9:c6:e7:df:4a:d5:9b:0c:3b:7c:18:
21:ff:f4:df:48:0b:fb:a7:39:2c:69:99:16:32:1e:22:df:e6:
aa:cc:16:3d:55:42:a4:99:80:74:14:d3:e1:38:2f:0d:92:10:
6d:96:af:fb:0d:4a:6d:bc:af:69:99:c7:2b:3d:5c:f2:3b:81:
c0:31:6d:e1:97:8b:27:bf:18:b6:df:14:c6:ae:c8:ad:8c:9b:
6a:c1:61:2c
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCdUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMTAyMDcx
MzEzMDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDJBNTU3QzZENzAyRUJE
Mzg4NzVBMjcwNTNFRTkyQzYwRURBNkI2NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6SyTEGLYb6/POUgMZ7AAbh+9k/Rgib28OWyo9EHpJ5zbzlztM
avFPb86ygsA9Y4O0LGPiWUJ8q3c9/v4rCeSHtOGhsC5Gd2rF1anAgz0ZNWoFgIZl
NE5B5B+Q3Qpum70n3euOOvinBIqQ0BUTOw4+3MVPyBmVDfTSwpS9PECO+B7rvYaN
JwQDY/FN9lx5DcURFoHOHhwgzGXTx9RaNyjOSiRssRR17gt4owUzsrDd8/6DCehM
zryDi/2E2eVtTMPICpp48YfOlzyKoOmSarLzjtUS7U8U2oYyJGuAsxM6wdjr3yZf
vfWkGL8NWdc71PEj3Q0hBmCEFB76PoV6rdAZAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUKlV8bXAuvTiHWicFPuksYO2mtlUwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9LbFY4YlhBdXZUaUhXaWNGUHVr
c1lPMm10bFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwFOz
MA0GCSqGSIb3DQEBCwUAA4IBAQA02eaW1qL+6NTmNl16Cir7ue9wGa9qu6e9bNAh
AKWMljrNv6U4XXe2NMNg1nHMuRSAZVmEGAsGAUPRCRNxEkk7ShJg6Kke1cwoF/xz
GT59AxQi1yrjPa/pP5gBWvcq1PIFe/qUC+SWAWlxVuJQcJjIP49G2KlyFb4nRIMf
XuWTMBa0jVxDUyRk9CtmlqS3UCaZOv237dwZiT8C9QRmVdwyCApyCCilxgsA+cbn
30rVmww7fBgh//TfSAv7pzksaZkWMh4i3+aqzBY9VUKkmYB0FNPhOC8NkhBtlq/7
DUptvK9pmccrPVzyO4HAMW3hl4snvxi23xTGrsitjJtqwWEs
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org