Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/QZ3nEhK7puDRKdBHUqsZ-ghEszs.roa
File: QZ3nEhK7puDRKdBHUqsZ-ghEszs.roa (raw, json)
Hash identifier: ycMQCY4VMiDQINVD6uN2sPtp9HT4dlY/fmT7Dx3hyBk=
Subject key identifier: 41:9D:E7:12:12:BB:A6:E0:D1:29:D0:47:52:AB:19:FA:08:44:B3:3B
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07E1
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/QZ3nEhK7puDRKdBHUqsZ-ghEszs.roa
Signing time: Tue 29 Sep 2020 10:06:35 +0000
ROA not before: Tue 29 Sep 2020 10:06:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 203.68.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2017 (0x7e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=419DE71212BBA6E0D129D04752AB19FA0844B33B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ab:04:48:44:c1:6d:17:52:d1:23:1d:43:da:
e4:95:ad:5c:1f:25:ce:e6:92:06:57:d0:36:9c:1f:
02:d7:57:2e:1d:49:9f:29:e4:6a:02:c6:6c:45:27:
2e:42:49:33:f3:3d:a2:17:ee:35:dc:4d:2a:78:55:
96:6c:e1:ef:ed:ee:2e:cc:b3:7f:2f:e5:38:43:ab:
4c:a4:c6:a7:eb:55:f0:48:6e:13:bb:a8:4d:e8:61:
77:11:cb:0b:a7:7b:69:46:85:55:b8:1a:09:d6:02:
91:a2:66:a4:73:d1:01:75:33:a3:9a:2b:52:50:58:
f2:8b:23:ba:b6:13:da:9a:d7:51:fd:27:1a:04:ff:
24:5e:af:6f:d9:35:37:f3:fa:10:b1:96:82:43:42:
2f:e9:71:e8:8f:63:c3:c7:fa:b5:c5:e0:b4:a7:81:
fa:f5:64:5f:9b:25:ec:d2:08:df:45:3c:31:e5:fd:
25:31:45:06:dc:d0:8d:63:7d:be:b6:0d:2a:4d:ba:
72:4c:f4:58:61:10:a7:93:fc:47:ac:d1:1c:f9:47:
b4:7e:19:0c:fa:6a:5c:4d:80:4b:84:ab:73:7c:38:
f5:95:a8:87:bd:85:33:0a:ed:be:6f:f6:97:bc:b8:
a1:05:08:bb:b3:ae:0c:45:c5:52:70:a3:a2:9b:c4:
72:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:9D:E7:12:12:BB:A6:E0:D1:29:D0:47:52:AB:19:FA:08:44:B3:3B
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/QZ3nEhK7puDRKdBHUqsZ-ghEszs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.68.0.0/16
Signature Algorithm: sha256WithRSAEncryption
12:e9:56:8b:53:20:fd:00:11:41:ee:0d:c9:9c:67:4f:60:06:
a7:e5:59:a7:0d:ca:43:91:26:53:07:20:4e:59:96:10:23:46:
cc:b0:32:80:74:e6:21:d7:58:0c:d2:1e:f1:6b:c2:b4:9c:41:
5d:94:3a:ad:b3:25:57:37:19:85:c7:02:40:a8:08:82:cf:88:
96:a1:ff:67:6f:4d:47:11:35:30:f1:9b:c4:51:cb:44:76:fd:
bb:31:8c:6f:9a:53:fb:b6:00:bf:b9:96:52:eb:1f:1d:12:ab:
80:22:3d:33:e1:7d:e4:3e:b2:89:de:7e:ba:8b:ad:fd:6e:ee:
ff:41:c8:f0:68:45:90:9d:b4:e1:3a:45:51:18:e8:3f:ce:39:
95:2b:9a:cd:4d:f4:19:00:3e:c3:a2:d0:6b:05:1f:62:e5:45:
0a:86:68:39:ba:76:3b:f6:45:80:be:3e:41:f1:0b:14:87:c4:
17:8e:4e:c2:7f:a5:51:13:2d:c6:22:2d:de:d4:2d:f5:3d:31:
14:1b:55:c8:43:ff:aa:2f:57:25:be:e2:32:87:31:62:0d:54:
ef:4e:b2:28:fa:75:44:4a:a5:24:6d:39:c0:e8:7d:8b:00:18:
f6:ad:70:be:b6:30:d5:30:cb:eb:d0:7d:e9:1d:d6:89:3f:de:
53:01:03:4e
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICB+EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMDA5Mjkx
MDA2MzVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQxOURFNzEyMTJCQkE2
RTBEMTI5RDA0NzUyQUIxOUZBMDg0NEIzM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9qwRIRMFtF1LRIx1D2uSVrVwfJc7mkgZX0DacHwLXVy4dSZ8p
5GoCxmxFJy5CSTPzPaIX7jXcTSp4VZZs4e/t7i7Ms38v5ThDq0ykxqfrVfBIbhO7
qE3oYXcRywune2lGhVW4GgnWApGiZqRz0QF1M6OaK1JQWPKLI7q2E9qa11H9JxoE
/yRer2/ZNTfz+hCxloJDQi/pceiPY8PH+rXF4LSngfr1ZF+bJezSCN9FPDHl/SUx
RQbc0I1jfb62DSpNunJM9FhhEKeT/Ees0Rz5R7R+GQz6alxNgEuEq3N8OPWVqIe9
hTMK7b5v9pe8uKEFCLuzrgxFxVJwo6KbxHLHAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUQZ3nEhK7puDRKdBHUqsZ+ghEszswHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9RWjNuRWhLN3B1RFJLZEJIVXFz
Wi1naEVzenMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0Qw
DQYJKoZIhvcNAQELBQADggEBABLpVotTIP0AEUHuDcmcZ09gBqflWacNykORJlMH
IE5ZlhAjRsywMoB05iHXWAzSHvFrwrScQV2UOq2zJVc3GYXHAkCoCILPiJah/2dv
TUcRNTDxm8RRy0R2/bsxjG+aU/u2AL+5llLrHx0Sq4AiPTPhfeQ+sonefrqLrf1u
7v9ByPBoRZCdtOE6RVEY6D/OOZUrms1N9BkAPsOi0GsFH2LlRQqGaDm6djv2RYC+
PkHxCxSHxBeOTsJ/pVETLcYiLd7ULfU9MRQbVchD/6ovVyW+4jKHMWINVO9Osij6
dURKpSRtOcDofYsAGPatcL62MNUwy+vQfekd1ok/3lMBA04=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org