Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/YbocZwwRhH-7LWkpdRBrBS3YoNU.roa
File: YbocZwwRhH-7LWkpdRBrBS3YoNU.roa (raw, json)
Hash identifier: edSU2WmOlBtdmNzfIARjKnmWimjH5D3Y8eeK5RZk5Rw=
Subject key identifier: 61:BA:1C:67:0C:11:84:7F:BB:2D:69:29:75:10:6B:05:2D:D8:A0:D5
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0803
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/YbocZwwRhH-7LWkpdRBrBS3YoNU.roa
Signing time: Tue 29 Sep 2020 10:06:43 +0000
ROA not before: Tue 29 Sep 2020 10:06:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 120.96.0.0/11 maxlen: 11
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2051 (0x803)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=61BA1C670C11847FBB2D692975106B052DD8A0D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:dd:f6:d9:fb:f2:db:34:b1:a3:7d:98:9b:af:
fc:ba:66:57:3e:7c:0d:48:7e:76:8f:ad:60:6a:f8:
b1:63:a2:f1:52:48:14:a9:3e:2d:86:30:2b:16:40:
6e:55:5d:f1:eb:bf:77:28:ed:07:4b:ea:24:1f:f3:
15:98:04:51:3f:35:33:f9:2c:62:fa:a7:11:d6:7e:
74:d9:ac:68:cf:18:be:df:19:04:03:e1:d3:76:1c:
8b:50:89:5e:2c:86:53:ee:bb:cc:6b:ae:1c:e9:34:
45:77:1d:e6:c0:cd:b9:58:43:aa:0b:f9:df:35:64:
8d:c0:02:7c:de:5a:ab:85:1c:53:8a:61:ad:33:20:
a6:4d:cc:d8:67:4f:e6:03:3d:87:5b:fd:72:cc:59:
ed:a0:cc:a7:26:7f:6f:e5:32:bc:30:52:e3:cc:5c:
fd:3b:a4:72:e6:60:55:7b:2b:54:47:73:e4:ba:ce:
17:cb:d8:b6:0b:06:2f:f4:db:62:be:bd:40:64:d9:
57:a3:9d:58:8c:3c:4f:21:c8:e1:2f:b8:24:6b:3f:
bc:6f:19:3c:86:2a:89:28:d3:7e:5a:07:e1:a9:52:
15:c8:38:e7:5e:b3:63:cd:07:88:94:1b:d3:b8:d8:
d4:33:3a:07:a9:71:dc:25:5c:df:bd:6b:c0:90:3d:
b6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:BA:1C:67:0C:11:84:7F:BB:2D:69:29:75:10:6B:05:2D:D8:A0:D5
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/YbocZwwRhH-7LWkpdRBrBS3YoNU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.0.0/11
Signature Algorithm: sha256WithRSAEncryption
b4:7b:49:a0:11:12:15:3b:d5:64:85:8f:8b:81:2e:dd:4a:50:
5f:14:c9:d0:7f:07:4b:51:33:65:32:23:c5:84:78:11:14:e2:
fd:e6:8b:3c:d7:2b:6f:9b:2c:a6:38:2c:f8:21:c2:75:7e:b6:
34:cd:27:3b:4a:56:63:ab:71:f9:40:8d:8f:08:c9:86:2a:10:
0c:51:98:cc:e9:1d:60:1a:30:1e:60:7e:52:c6:fd:d9:af:41:
df:ab:ee:8b:a1:b6:d3:b7:b2:ff:ca:f7:33:42:66:ac:fb:8d:
74:f6:55:69:92:75:0d:1c:4a:63:87:38:52:9d:8d:dd:8a:2a:
8c:bb:5e:6c:38:89:7c:49:55:09:db:0c:1b:0f:45:de:43:5e:
bc:06:67:23:38:d0:0d:c4:b2:b5:9f:2d:d3:31:5f:b1:8f:ef:
03:9b:ad:e1:cc:99:f6:06:7b:09:5a:ee:44:bb:42:89:a8:d0:
64:a7:b3:52:ba:b5:06:b1:80:50:97:8b:58:b7:2a:d0:3c:fe:
18:7d:43:06:1d:f5:27:4e:6d:94:82:af:0f:c5:68:33:56:dd:
c1:2d:9a:63:fd:ba:48:b6:a9:33:2b:43:be:a9:ee:ba:d7:85:
a1:8e:09:70:e8:fe:a6:a6:8e:1e:2a:9e:28:0c:61:73:09:43:
e1:27:5d:2d
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMDA5Mjkx
MDA2NDNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDYxQkExQzY3MEMxMTg0
N0ZCQjJENjkyOTc1MTA2QjA1MkREOEEwRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC73fbZ+/LbNLGjfZibr/y6Zlc+fA1IfnaPrWBq+LFjovFSSBSp
Pi2GMCsWQG5VXfHrv3co7QdL6iQf8xWYBFE/NTP5LGL6pxHWfnTZrGjPGL7fGQQD
4dN2HItQiV4shlPuu8xrrhzpNEV3HebAzblYQ6oL+d81ZI3AAnzeWquFHFOKYa0z
IKZNzNhnT+YDPYdb/XLMWe2gzKcmf2/lMrwwUuPMXP07pHLmYFV7K1RHc+S6zhfL
2LYLBi/022K+vUBk2VejnViMPE8hyOEvuCRrP7xvGTyGKoko035aB+GpUhXIOOde
s2PNB4iUG9O42NQzOgepcdwlXN+9a8CQPbaLAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUYbocZwwRhH+7LWkpdRBrBS3YoNUwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9ZYm9jWnd3UmhILTdMV2twZFJC
ckJTM1lvTlUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMFeGAw
DQYJKoZIhvcNAQELBQADggEBALR7SaAREhU71WSFj4uBLt1KUF8UydB/B0tRM2Uy
I8WEeBEU4v3mizzXK2+bLKY4LPghwnV+tjTNJztKVmOrcflAjY8IyYYqEAxRmMzp
HWAaMB5gflLG/dmvQd+r7ouhttO3sv/K9zNCZqz7jXT2VWmSdQ0cSmOHOFKdjd2K
Koy7Xmw4iXxJVQnbDBsPRd5DXrwGZyM40A3EsrWfLdMxX7GP7wObreHMmfYGewla
7kS7Qomo0GSns1K6tQaxgFCXi1i3KtA8/hh9QwYd9SdObZSCrw/FaDNW3cEtmmP9
uki2qTMrQ76p7rrXhaGOCXDo/qamjh4qnigMYXMJQ+EnXS0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org