Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/QuBc0QwCGDGQ0DHezn5IDn_xsno.roa
File: QuBc0QwCGDGQ0DHezn5IDn_xsno.roa (raw, json)
Hash identifier: 75QIJR+f5E4Mly7Fjv0kFoGvGucNj8SFH4+1bAPc2Ng=
Subject key identifier: 42:E0:5C:D1:0C:02:18:31:90:D0:31:DE:CE:7E:48:0E:7F:F1:B2:7A
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07E3
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/QuBc0QwCGDGQ0DHezn5IDn_xsno.roa
Signing time: Tue 29 Sep 2020 10:06:36 +0000
ROA not before: Tue 29 Sep 2020 10:06:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18185
IP address blocks: 120.117.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2019 (0x7e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=42E05CD10C02183190D031DECE7E480E7FF1B27A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f7:ca:b3:4e:38:84:60:9a:9f:81:67:b7:54:
1e:1c:2e:48:80:11:91:b3:a4:70:bf:c2:bb:e1:7c:
56:94:57:2e:f0:77:7b:a4:4e:8e:1f:d2:f6:0a:a0:
4e:d2:c8:d9:1e:ab:fb:75:1f:a1:bc:f7:42:9c:70:
66:25:c8:5e:5a:48:63:7f:cc:b0:5f:20:25:df:2c:
2b:a3:f0:52:b2:fa:10:dd:e9:3a:1a:e7:50:4a:5c:
1f:a4:dd:5b:d6:eb:e4:31:00:a5:02:a6:6d:a0:3f:
54:6f:04:80:ae:32:d0:f5:90:83:d6:9a:c6:16:7f:
cf:2d:a3:bf:d6:16:e5:1e:f5:c2:85:90:ff:17:54:
c9:7e:19:cc:b4:98:f8:7a:cd:d9:1e:ec:cc:f4:88:
b4:da:a9:f6:78:a1:9e:d2:16:ca:d5:c1:fc:8a:e3:
e0:79:e9:8b:54:0f:52:97:88:96:ef:24:74:14:7f:
38:ca:ab:e0:af:b4:4a:48:21:e1:c1:83:ba:c1:14:
27:ec:09:e2:f0:76:f8:61:40:ad:2e:d5:1a:98:be:
40:43:5b:53:eb:dd:07:e2:ce:53:73:de:5c:f1:d9:
8e:c5:d5:7b:d8:98:7d:2d:db:59:2c:d9:49:a1:c1:
54:70:8f:32:c2:43:d1:47:fd:e8:4b:de:f9:62:ef:
b1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E0:5C:D1:0C:02:18:31:90:D0:31:DE:CE:7E:48:0E:7F:F1:B2:7A
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/QuBc0QwCGDGQ0DHezn5IDn_xsno.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.117.1.0/24
Signature Algorithm: sha256WithRSAEncryption
74:fe:8c:6f:b7:90:67:66:41:55:1e:06:68:30:f2:e5:c3:cf:
47:e6:b0:24:2b:cf:8a:3e:89:3c:49:6f:06:c2:0a:e3:fe:be:
f5:e8:d5:69:e6:4f:dd:d2:bc:91:41:88:1c:30:64:5a:47:9d:
ae:34:ed:6e:99:50:ca:df:81:71:d7:bc:df:8c:8f:2c:ae:93:
a7:04:d1:2c:5b:61:38:6b:51:79:13:97:49:b9:af:a5:c4:f8:
43:c2:72:40:47:c8:61:99:ce:5a:05:89:56:a1:0c:73:22:7d:
01:ab:b6:77:1e:18:f0:51:c8:6d:fa:d2:a1:7a:85:d9:06:e3:
3c:35:f7:b0:69:40:de:19:38:47:77:44:af:42:82:48:4e:b1:
2d:9e:df:37:6f:48:51:5c:6c:6d:b7:39:e9:a2:75:fa:d8:76:
73:ae:e1:e9:3d:d5:67:84:1d:fc:92:df:15:a1:07:fc:8a:e0:
87:b7:b0:32:a2:47:de:b6:bd:55:54:cc:0f:d4:c8:67:fe:d0:
98:4d:ca:13:00:e6:34:3b:6e:0b:40:32:38:20:1d:45:2d:9a:
1c:3a:c6:90:b6:1b:2b:1f:29:4d:d5:99:b5:cd:2b:24:10:8d:
9b:9f:36:8c:8c:0b:84:62:20:44:b2:f0:c9:51:cd:c9:51:69:
fc:76:30:af
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB+MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMDA5Mjkx
MDA2MzZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQyRTA1Q0QxMEMwMjE4
MzE5MEQwMzFERUNFN0U0ODBFN0ZGMUIyN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCq98qzTjiEYJqfgWe3VB4cLkiAEZGzpHC/wrvhfFaUVy7wd3uk
To4f0vYKoE7SyNkeq/t1H6G890KccGYlyF5aSGN/zLBfICXfLCuj8FKy+hDd6Toa
51BKXB+k3VvW6+QxAKUCpm2gP1RvBICuMtD1kIPWmsYWf88to7/WFuUe9cKFkP8X
VMl+Gcy0mPh6zdke7Mz0iLTaqfZ4oZ7SFsrVwfyK4+B56YtUD1KXiJbvJHQUfzjK
q+CvtEpIIeHBg7rBFCfsCeLwdvhhQK0u1RqYvkBDW1Pr3QfizlNz3lzx2Y7F1XvY
mH0t21ks2UmhwVRwjzLCQ9FH/ehL3vli77FlAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUQuBc0QwCGDGQ0DHezn5IDn/xsnowHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9RdUJjMFF3Q0dER1EwREhlem41
SURuX3hzbm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeHUB
MA0GCSqGSIb3DQEBCwUAA4IBAQB0/oxvt5BnZkFVHgZoMPLlw89H5rAkK8+KPok8
SW8Gwgrj/r716NVp5k/d0ryRQYgcMGRaR52uNO1umVDK34Fx17zfjI8srpOnBNEs
W2E4a1F5E5dJua+lxPhDwnJAR8hhmc5aBYlWoQxzIn0Bq7Z3HhjwUcht+tKheoXZ
BuM8NfewaUDeGThHd0SvQoJITrEtnt83b0hRXGxttznponX62HZzruHpPdVnhB38
kt8VoQf8iuCHt7Ayokfetr1VVMwP1Mhn/tCYTcoTAOY0O24LQDI4IB1FLZocOsaQ
thsrHylN1Zm1zSskEI2bnzaMjAuEYiBEsvDJUc3JUWn8djCv
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org