Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/QjbwD3lz8jrNxiI4u16UE_Izr14.roa
File: QjbwD3lz8jrNxiI4u16UE_Izr14.roa (raw, json)
Hash identifier: U5p5C3P2F8m4QzCuLkGtgMqxMrZolj7nEn5xWys8YAQ=
Subject key identifier: 42:36:F0:0F:79:73:F2:3A:CD:C6:22:38:BB:5E:94:13:F2:33:AF:5E
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0942
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/QjbwD3lz8jrNxiI4u16UE_Izr14.roa
Signing time: Thu 07 Jan 2021 06:47:59 +0000
ROA not before: Thu 07 Jan 2021 06:47:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 203.72.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2370 (0x942)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Jan 7 06:47:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4236F00F7973F23ACDC62238BB5E9413F233AF5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:72:50:6d:df:1a:95:9e:09:9b:e3:0a:1c:f9:
a0:64:ef:80:9f:65:43:e8:93:0e:b5:82:b7:77:e6:
d2:c2:2f:e6:8d:d6:1f:bf:6e:35:82:b6:3a:ed:60:
fb:f8:c3:fd:10:66:99:1b:4a:8a:98:96:09:c8:fe:
6c:84:f3:40:76:78:25:e8:26:e7:f6:ff:c4:27:a5:
5a:75:7e:ae:c8:7a:0f:15:d2:a1:38:7a:4a:4b:6f:
da:6d:89:ba:2b:c3:a4:08:2f:f1:25:44:8e:44:87:
fd:a1:93:8f:b7:5d:ae:7b:27:78:3d:d0:e8:86:ae:
22:b6:20:e5:b4:6c:24:6f:3f:c5:81:8a:04:37:eb:
47:4a:ef:67:fe:75:ec:f4:93:30:14:b1:1a:d0:2c:
48:25:9f:0b:fd:e3:16:f4:e2:f7:19:1c:16:e0:4c:
20:8f:ba:75:c9:ec:4a:17:a2:c7:77:5c:35:40:a5:
82:96:93:80:98:2a:6c:47:e8:3a:b3:da:02:74:c4:
d6:6e:5d:35:d5:13:90:a3:50:4b:5c:1a:6c:f9:72:
1d:80:e3:2e:04:62:e9:45:94:99:47:0f:87:d4:fa:
cf:a7:45:46:30:c9:7e:43:f6:ee:b7:95:17:fe:b5:
a4:45:3a:af:27:06:d9:2f:67:75:05:00:55:7e:47:
e8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:36:F0:0F:79:73:F2:3A:CD:C6:22:38:BB:5E:94:13:F2:33:AF:5E
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/QjbwD3lz8jrNxiI4u16UE_Izr14.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.72.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5c:d5:ed:3f:9b:e1:a8:c6:20:46:10:e7:75:d0:a2:b5:3e:a6:
fc:fb:52:e0:af:b5:0e:a8:e0:2b:95:8c:01:f4:11:e5:a7:18:
7f:93:41:95:b7:d0:25:71:24:e9:9a:cd:37:ce:db:af:68:f3:
2c:8f:1f:c7:ea:f7:30:5d:2e:fa:8d:c1:5d:06:c4:3f:89:2e:
5c:5d:60:4c:d7:c7:84:21:e1:e2:9e:ec:42:6b:07:58:88:aa:
cc:be:66:8c:7c:ba:fe:a4:3c:61:6d:99:02:9b:b2:15:10:17:
40:93:41:fd:1c:34:52:58:20:e1:86:c4:7e:12:28:2b:fd:34:
13:5d:e8:ed:60:0d:49:ff:9c:d4:16:e0:eb:ec:32:f9:38:51:
39:de:c6:0f:11:90:a3:d4:b1:4b:9f:5f:9b:e4:f1:66:54:9d:
cc:57:81:0a:ef:47:6c:54:79:16:46:53:4d:21:bf:d6:68:a1:
05:b8:7a:11:61:a7:39:fb:34:e9:eb:33:82:43:ed:bb:f9:a8:
4f:d8:9b:f0:3b:b6:7c:53:53:cd:a6:28:55:04:c1:b0:1e:03:
df:31:05:0a:d0:c2:27:d5:f1:4b:fa:f8:cd:1d:a2:9b:23:28:
7f:70:a2:fd:78:be:ce:a4:76:81:90:be:4b:3f:87:24:00:87:
35:d4:64:c3
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCUIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMTAxMDcw
NjQ3NTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQyMzZGMDBGNzk3M0Yy
M0FDREM2MjIzOEJCNUU5NDEzRjIzM0FGNUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDrclBt3xqVngmb4woc+aBk74CfZUPokw61grd35tLCL+aN1h+/
bjWCtjrtYPv4w/0QZpkbSoqYlgnI/myE80B2eCXoJuf2/8QnpVp1fq7Ieg8V0qE4
ekpLb9ptiborw6QIL/ElRI5Eh/2hk4+3Xa57J3g90OiGriK2IOW0bCRvP8WBigQ3
60dK72f+dez0kzAUsRrQLEglnwv94xb04vcZHBbgTCCPunXJ7EoXosd3XDVApYKW
k4CYKmxH6Dqz2gJ0xNZuXTXVE5CjUEtcGmz5ch2A4y4EYulFlJlHD4fU+s+nRUYw
yX5D9u63lRf+taRFOq8nBtkvZ3UFAFV+R+jjAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUQjbwD3lz8jrNxiI4u16UE/Izr14wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9RamJ3RDNsejhqck54aUk0dTE2
VUVfSXpyMTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0gw
DQYJKoZIhvcNAQELBQADggEBAFzV7T+b4ajGIEYQ53XQorU+pvz7UuCvtQ6o4CuV
jAH0EeWnGH+TQZW30CVxJOmazTfO269o8yyPH8fq9zBdLvqNwV0GxD+JLlxdYEzX
x4Qh4eKe7EJrB1iIqsy+Zox8uv6kPGFtmQKbshUQF0CTQf0cNFJYIOGGxH4SKCv9
NBNd6O1gDUn/nNQW4OvsMvk4UTnexg8RkKPUsUufX5vk8WZUncxXgQrvR2xUeRZG
U00hv9ZooQW4ehFhpzn7NOnrM4JD7bv5qE/Ym/A7tnxTU82mKFUEwbAeA98xBQrQ
wifV8Uv6+M0dopsjKH9wov14vs6kdoGQvks/hyQAhzXUZMM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org