Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Z4M8jG7uiyWi4XS_Cg2t8zax-6c.roa
File: Z4M8jG7uiyWi4XS_Cg2t8zax-6c.roa (raw, json)
Hash identifier: sS3sABLpowdpUqBwgfaX7FvTMnXWjGGoPPKTaiV8fQo=
Subject key identifier: 67:83:3C:8C:6E:EE:8B:25:A2:E1:74:BF:0A:0D:AD:F3:36:B1:FB:A7
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09DC
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Z4M8jG7uiyWi4XS_Cg2t8zax-6c.roa
Signing time: Sun 07 Feb 2021 12:39:17 +0000
ROA not before: Sun 07 Feb 2021 12:39:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 163.30.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2524 (0x9dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=67833C8C6EEE8B25A2E174BF0A0DADF336B1FBA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e6:14:9b:24:68:70:22:73:50:14:72:0b:a2:
ca:77:15:f6:60:07:82:a4:57:a3:02:86:da:0a:33:
b8:43:63:a7:ab:bf:89:e9:bb:e2:f3:56:ec:6b:91:
cd:34:ae:b9:cb:8f:1b:5d:18:f5:c5:4a:b8:19:4b:
66:46:0f:07:52:b6:56:78:7f:3f:4c:bf:b6:61:7a:
84:8a:2a:a5:86:e9:7c:8c:69:33:c9:07:f7:e9:ee:
1e:74:85:d3:30:6d:18:b3:b9:f3:3c:e9:91:be:4a:
17:f9:38:25:da:51:db:aa:11:34:81:9f:27:04:48:
81:68:46:c8:71:d5:bb:d6:5a:6e:f8:ab:9d:86:23:
a4:f9:a9:ac:0f:77:4b:21:ac:11:68:b8:32:2d:97:
1f:b8:b3:7a:71:0d:77:e8:fa:5b:f8:bb:20:23:05:
3e:d4:3c:74:68:2a:79:20:36:11:ec:90:ed:a6:2c:
42:7f:c5:5d:e7:22:b9:e6:74:2a:ca:2d:0d:86:6e:
4e:6a:a4:5d:9e:d5:5f:f2:b6:98:b4:ee:c2:75:80:
80:38:bb:d0:3f:62:91:ac:56:cb:38:c4:e6:4e:16:
a2:02:ef:3f:f3:b3:4d:da:64:ac:4f:e5:4b:1c:77:
54:73:e3:19:e2:9e:77:c2:b1:2f:9a:f2:70:88:62:
bd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:83:3C:8C:6E:EE:8B:25:A2:E1:74:BF:0A:0D:AD:F3:36:B1:FB:A7
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Z4M8jG7uiyWi4XS_Cg2t8zax-6c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.30.0.0/15
Signature Algorithm: sha256WithRSAEncryption
40:f5:3f:96:fe:44:e1:c5:88:85:69:7e:cf:e1:d8:58:af:ee:
e8:5b:d9:4d:f3:19:19:4e:20:73:dd:26:dc:7b:ce:71:af:98:
ee:6a:61:3e:d9:1d:56:39:32:52:aa:a4:ea:f1:f4:b3:f4:20:
06:0b:4f:16:77:7a:3f:8b:98:2b:34:7d:f2:81:92:4f:a9:5b:
4d:de:9a:47:1c:b6:b7:1f:50:fe:eb:8a:cf:fd:6f:88:a3:6a:
77:07:eb:46:5e:2f:78:8f:d9:96:35:5b:38:57:e3:57:2e:f0:
fc:10:87:1d:4f:5b:3d:ef:31:00:71:27:c4:15:c3:cd:27:4e:
34:2e:bc:29:a9:d8:21:f7:50:e1:be:fc:42:42:5e:54:3f:54:
8b:08:18:ca:4d:25:3e:f3:7e:db:14:0b:31:5e:9e:1f:92:1f:
c9:09:e3:1c:4e:03:ef:31:06:44:17:f4:c1:12:c6:50:e0:12:
10:b3:5f:7e:8e:87:aa:ef:3c:0a:58:67:ad:32:29:57:8d:1e:
1b:fa:44:f8:25:f2:17:40:e1:4a:d9:b7:c3:a4:6b:41:7a:5d:
ca:80:f0:0f:a5:a0:4a:5b:97:e3:b9:d0:05:bb:4a:c2:71:2c:
54:97:3f:2a:32:80:a6:13:8b:26:73:44:28:32:55:2a:f8:c0:
83:4d:ae:40
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCdwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMTAyMDcx
MjM5MTdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDY3ODMzQzhDNkVFRThC
MjVBMkUxNzRCRjBBMERBREYzMzZCMUZCQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDd5hSbJGhwInNQFHILosp3FfZgB4KkV6MChtoKM7hDY6erv4np
u+LzVuxrkc00rrnLjxtdGPXFSrgZS2ZGDwdStlZ4fz9Mv7ZheoSKKqWG6XyMaTPJ
B/fp7h50hdMwbRizufM86ZG+Shf5OCXaUduqETSBnycESIFoRshx1bvWWm74q52G
I6T5qawPd0shrBFouDItlx+4s3pxDXfo+lv4uyAjBT7UPHRoKnkgNhHskO2mLEJ/
xV3nIrnmdCrKLQ2Gbk5qpF2e1V/ytpi07sJ1gIA4u9A/YpGsVss4xOZOFqIC7z/z
s03aZKxP5Uscd1Rz4xninnfCsS+a8nCIYr1TAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUZ4M8jG7uiyWi4XS/Cg2t8zax+6cwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9aNE04akc3dWl5V2k0WFNfQ2cy
dDh6YXgtNmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBox4w
DQYJKoZIhvcNAQELBQADggEBAED1P5b+ROHFiIVpfs/h2Fiv7uhb2U3zGRlOIHPd
Jtx7znGvmO5qYT7ZHVY5MlKqpOrx9LP0IAYLTxZ3ej+LmCs0ffKBkk+pW03emkcc
trcfUP7ris/9b4ijancH60ZeL3iP2ZY1WzhX41cu8PwQhx1PWz3vMQBxJ8QVw80n
TjQuvCmp2CH3UOG+/EJCXlQ/VIsIGMpNJT7zftsUCzFenh+SH8kJ4xxOA+8xBkQX
9MESxlDgEhCzX36Oh6rvPApYZ60yKVeNHhv6RPgl8hdA4UrZt8Oka0F6XcqA8A+l
oEpbl+O50AW7SsJxLFSXPyoygKYTiyZzRCgyVSr4wINNrkA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org