Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ZtGJEg0nHXQhoYDBH1V4rHZmRAE.roa
File: ZtGJEg0nHXQhoYDBH1V4rHZmRAE.roa (raw, json)
Hash identifier: 6E2GhqiLwEvT28C2VivkfieP5Bo1AEn2TwtFjY8q1x8=
Subject key identifier: 66:D1:89:12:0D:27:1D:74:21:A1:80:C1:1F:55:78:AC:76:66:44:01
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ZtGJEg0nHXQhoYDBH1V4rHZmRAE.roa
Signing time: Thu 15 Sep 2022 02:41:08 +0000
ROA not before: Thu 15 Sep 2022 02:41:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17716
IP address blocks: 120.96.240.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=66D189120D271D7421A180C11F5578AC76664401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9f:6a:29:17:b7:e9:f5:f0:eb:72:c4:be:4e:
9c:af:04:2a:29:99:ff:e3:e0:50:9f:f7:62:f0:ab:
dd:ab:1d:94:0d:43:81:e7:81:0c:73:7f:0e:1f:ee:
87:ac:0f:92:06:41:41:40:7d:8c:fa:a2:3b:85:53:
fe:6b:85:2c:e0:14:8a:49:f3:54:bb:08:87:01:11:
9d:63:67:cd:64:70:40:d4:1f:69:a7:98:9a:28:3f:
45:4c:28:3b:97:96:b4:7c:7d:79:04:2c:34:69:20:
ed:7d:d3:b5:d2:fa:ab:1d:e1:ef:2a:8f:d3:2e:f9:
e8:df:d7:7e:02:46:f1:b9:39:ea:82:90:27:35:ef:
bc:d5:5c:e5:ec:48:cf:ee:e6:b7:b9:8e:3d:74:3f:
5c:b7:10:f3:78:10:d3:ba:67:87:8f:db:bf:ef:fe:
63:c1:76:24:8c:36:c3:eb:f6:99:c4:c2:f3:2d:7d:
a0:66:79:8c:bc:91:b1:71:87:6d:04:8f:65:b0:a8:
46:30:27:b8:16:32:fb:82:b0:c3:2f:e9:f7:f3:53:
43:ad:12:50:92:f8:03:4f:21:2b:32:b7:92:51:59:
56:d2:a7:07:52:87:54:7e:e4:a1:b0:a7:b1:f9:95:
0f:9f:6e:ff:82:96:7e:dc:80:ee:b6:6e:71:82:07:
1a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D1:89:12:0D:27:1D:74:21:A1:80:C1:1F:55:78:AC:76:66:44:01
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ZtGJEg0nHXQhoYDBH1V4rHZmRAE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.240.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:f5:c1:a3:39:9d:2b:df:91:8b:2e:68:62:50:39:eb:e9:84:
2b:05:b3:8e:7d:33:be:34:0c:f9:31:90:98:a2:4e:29:9d:5a:
0c:f6:65:30:9e:e2:63:c0:0d:b6:7e:9e:ab:d7:aa:3d:ce:00:
22:4f:a3:aa:1c:63:c6:6c:9b:a9:55:7d:3f:7d:23:69:13:7e:
c6:b6:3c:17:83:b3:8d:d4:36:b5:c7:2d:f7:3f:98:4a:0b:96:
0e:f5:e1:6d:9d:3a:c0:02:dc:ff:57:2d:c0:b9:54:ec:f8:eb:
ef:62:8f:93:b5:75:89:fe:ed:20:e9:4a:e2:ec:40:79:18:49:
48:d3:2d:42:5a:30:a9:09:81:d3:13:e8:b3:da:43:7f:33:a4:
fd:47:09:e4:dc:80:c1:f1:83:a6:50:28:a9:58:2d:fc:7e:d9:
f6:50:f9:c1:63:0c:36:63:e0:28:24:1d:54:29:57:b3:4d:e8:
87:40:61:a8:6d:7a:6b:4f:bf:b4:61:9c:58:49:22:00:84:13:
a3:8a:4b:86:82:32:67:0f:78:b0:9a:06:80:22:1f:f2:fa:a7:
f6:35:00:a2:ba:6c:aa:d0:b1:81:d5:62:36:19:46:b5:45:9a:
f5:74:54:d8:c4:b0:7a:6b:24:4f:e5:5c:d7:c5:67:f0:03:3a:
75:7d:36:d0
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICC9gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMjA5MTUw
MjQxMDhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDY2RDE4OTEyMEQyNzFE
NzQyMUExODBDMTFGNTU3OEFDNzY2NjQ0MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUn2opF7fp9fDrcsS+TpyvBCopmf/j4FCf92Lwq92rHZQNQ4Hn
gQxzfw4f7oesD5IGQUFAfYz6ojuFU/5rhSzgFIpJ81S7CIcBEZ1jZ81kcEDUH2mn
mJooP0VMKDuXlrR8fXkELDRpIO1907XS+qsd4e8qj9Mu+ejf134CRvG5OeqCkCc1
77zVXOXsSM/u5re5jj10P1y3EPN4ENO6Z4eP27/v/mPBdiSMNsPr9pnEwvMtfaBm
eYy8kbFxh20Ej2WwqEYwJ7gWMvuCsMMv6ffzU0OtElCS+ANPISsyt5JRWVbSpwdS
h1R+5KGwp7H5lQ+fbv+Cln7cgO62bnGCBxpdAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUZtGJEg0nHXQhoYDBH1V4rHZmRAEwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9adEdKRWcwbkhYUWhvWURCSDFW
NHJIWm1SQUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDeGDw
MA0GCSqGSIb3DQEBCwUAA4IBAQA89cGjOZ0r35GLLmhiUDnr6YQrBbOOfTO+NAz5
MZCYok4pnVoM9mUwnuJjwA22fp6r16o9zgAiT6OqHGPGbJupVX0/fSNpE37GtjwX
g7ON1Da1xy33P5hKC5YO9eFtnTrAAtz/Vy3AuVTs+OvvYo+TtXWJ/u0g6Uri7EB5
GElI0y1CWjCpCYHTE+iz2kN/M6T9Rwnk3IDB8YOmUCipWC38ftn2UPnBYww2Y+Ao
JB1UKVezTeiHQGGobXprT7+0YZxYSSIAhBOjikuGgjJnD3iwmgaAIh/y+qf2NQCi
umyq0LGB1WI2GUa1RZr1dFTYxLB6ayRP5VzXxWfwAzp1fTbQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org