Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/RyXE1cUbxKC3ZmxULVDevmH0H-4.roa
File: RyXE1cUbxKC3ZmxULVDevmH0H-4.roa (raw, json)
Hash identifier: 4O/aFETOyagwnqTz6F00BT5OHDFVacep7+cEKwU2ioQ=
Subject key identifier: 47:25:C4:D5:C5:1B:C4:A0:B7:66:6C:54:2D:50:DE:BE:61:F4:1F:EE
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RyXE1cUbxKC3ZmxULVDevmH0H-4.roa
Signing time: Thu 15 Sep 2022 02:41:09 +0000
ROA not before: Thu 15 Sep 2022 02:41:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 192.83.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4725C4D5C51BC4A0B7666C542D50DEBE61F41FEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a5:5c:7c:56:57:f8:5e:b5:70:71:84:58:89:
26:19:34:cc:1f:9c:6b:89:71:a6:26:3b:0b:97:75:
a3:5c:8b:3c:3f:68:76:5d:4a:1f:68:e0:87:13:cf:
d0:50:52:ef:b4:63:9c:0b:a6:ce:9c:86:57:fb:ed:
83:a9:fc:d4:a3:8c:7b:ec:84:a1:fd:08:e0:6a:84:
07:c4:cd:d4:b8:ec:42:6c:85:b7:e1:b9:78:ca:25:
a9:c5:f1:e3:c6:36:f0:77:6b:12:cf:3e:00:fb:c4:
3d:6a:6c:b7:ff:56:e4:31:85:6c:e5:ad:5b:ba:c8:
6a:e7:14:e0:c7:0a:bd:03:88:f3:8f:52:ff:b7:ca:
08:dd:bc:5b:ab:ff:0d:1d:29:fd:d3:9a:1c:ad:59:
d2:d2:3e:dc:45:da:ad:1c:79:b5:17:64:a5:53:58:
e6:d0:66:54:01:6a:d5:20:28:a4:af:55:d3:58:49:
e9:99:43:b1:ac:b2:e4:39:b3:11:f8:e5:81:f3:87:
8d:55:55:95:b5:3c:4b:66:77:4c:ac:d0:c6:af:5b:
17:ae:bc:69:b5:3b:56:db:df:86:56:9f:11:aa:3d:
bb:df:1b:e4:96:7d:7b:d6:7e:d2:c2:7f:f6:a0:44:
46:d7:08:aa:4f:c1:38:fa:57:e8:56:c4:67:ab:34:
57:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:25:C4:D5:C5:1B:C4:A0:B7:66:6C:54:2D:50:DE:BE:61:F4:1F:EE
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RyXE1cUbxKC3ZmxULVDevmH0H-4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.196.0/24
Signature Algorithm: sha256WithRSAEncryption
22:8e:b2:9d:e6:1f:c0:4a:44:63:52:5f:cc:1e:04:b6:7a:6c:
e8:f1:c8:0a:81:a8:2c:e2:25:51:40:f6:af:14:70:a9:bc:f8:
27:bb:ea:50:9c:73:da:e0:2f:8b:db:61:69:ac:c7:e2:33:28:
3a:81:21:58:12:21:97:57:93:b2:3d:53:66:ac:69:fa:2a:ed:
09:cc:37:b8:c8:bb:b6:60:fa:8d:cc:14:bd:85:92:46:77:8e:
52:50:e0:97:b0:61:c0:01:89:f5:40:16:52:cc:c5:d2:0d:dc:
6e:4b:21:62:1d:09:11:a3:2d:08:43:2f:04:45:5f:42:53:f8:
ef:17:0e:3a:e4:3d:eb:b6:0a:02:8d:cb:79:21:06:8f:37:77:
ca:ff:d4:1c:62:9e:fa:fc:2d:95:47:81:38:42:bb:85:8e:db:
46:bf:47:09:11:0e:9c:e4:8c:43:e5:3f:94:95:e0:9d:78:5a:
27:00:16:aa:89:7a:95:2b:2e:7d:43:31:fe:7b:62:33:57:16:
85:14:ad:08:5f:04:ad:8f:8b:ea:99:58:53:48:8c:2a:aa:97:
ed:f9:8a:73:9e:aa:a6:87:62:5a:f3:6e:9a:f9:db:bb:d0:c8:
55:d4:5f:a7:42:b9:20:8a:b3:d6:8d:b2:34:ac:ad:25:80:98:
cb:3f:ed:26
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICC4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMjA5MTUw
MjQxMDlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQ3MjVDNEQ1QzUxQkM0
QTBCNzY2NkM1NDJENTBERUJFNjFGNDFGRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNpVx8Vlf4XrVwcYRYiSYZNMwfnGuJcaYmOwuXdaNcizw/aHZd
Sh9o4IcTz9BQUu+0Y5wLps6chlf77YOp/NSjjHvshKH9COBqhAfEzdS47EJshbfh
uXjKJanF8ePGNvB3axLPPgD7xD1qbLf/VuQxhWzlrVu6yGrnFODHCr0DiPOPUv+3
ygjdvFur/w0dKf3TmhytWdLSPtxF2q0cebUXZKVTWObQZlQBatUgKKSvVdNYSemZ
Q7GssuQ5sxH45YHzh41VVZW1PEtmd0ys0MavWxeuvGm1O1bb34ZWnxGqPbvfG+SW
fXvWftLCf/agREbXCKpPwTj6V+hWxGerNFf3AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQURyXE1cUbxKC3ZmxULVDevmH0H+4wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9SeVhFMWNVYnhLQzNabXhVTFZE
ZXZtSDBILTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwFPE
MA0GCSqGSIb3DQEBCwUAA4IBAQAijrKd5h/ASkRjUl/MHgS2emzo8cgKgags4iVR
QPavFHCpvPgnu+pQnHPa4C+L22FprMfiMyg6gSFYEiGXV5OyPVNmrGn6Ku0JzDe4
yLu2YPqNzBS9hZJGd45SUOCXsGHAAYn1QBZSzMXSDdxuSyFiHQkRoy0IQy8ERV9C
U/jvFw465D3rtgoCjct5IQaPN3fK/9QcYp76/C2VR4E4QruFjttGv0cJEQ6c5IxD
5T+UleCdeFonABaqiXqVKy59QzH+e2IzVxaFFK0IXwStj4vqmVhTSIwqqpft+Ypz
nqqmh2Ja826a+du70MhV1F+nQrkgirPWjbI0rK0lgJjLP+0m
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org