Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Zxv0y2bQsSoQ5eouroDPC31qvd0.roa
File: Zxv0y2bQsSoQ5eouroDPC31qvd0.roa (raw, json)
Hash identifier: H0aaPkIGE7cC0PmK2pJl+Alk1j8wgeYMM5WffigkbJ4=
Subject key identifier: 67:1B:F4:CB:66:D0:B1:2A:10:E5:EA:2E:AE:80:CF:0B:7D:6A:BD:DD
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Zxv0y2bQsSoQ5eouroDPC31qvd0.roa
Signing time: Thu 15 Sep 2022 02:41:10 +0000
ROA not before: Thu 15 Sep 2022 02:41:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38845
IP address blocks: 140.136.0.0/16 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=671BF4CB66D0B12A10E5EA2EAE80CF0B7D6ABDDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e5:3b:75:d2:11:10:92:cd:71:4b:76:5f:56:
16:a0:ba:d8:58:1e:76:20:0e:a9:74:45:cd:89:c3:
f3:87:b2:98:7b:54:71:bb:fa:e5:92:08:74:cd:97:
e0:f0:04:8d:d1:83:ed:70:18:4d:17:41:b0:86:a1:
49:50:b1:a0:a0:66:55:f8:2f:7e:74:a2:4c:72:04:
89:3f:9c:e5:08:b1:78:cb:f7:06:b9:b0:79:b1:e5:
ff:c1:e5:a4:48:9d:72:16:80:ff:eb:0c:c7:8e:4e:
16:a2:0b:16:f0:ae:24:b9:7d:8e:7d:05:eb:16:35:
e7:63:fd:18:94:8e:71:11:5a:2f:30:f0:44:25:03:
e4:b3:69:fe:84:54:52:f7:1f:f7:2e:91:60:52:6f:
e4:f8:89:50:68:36:42:44:ec:08:ae:95:f5:18:eb:
34:69:65:4a:63:cf:90:0f:f4:3b:4d:f9:ab:e2:8e:
de:32:40:74:54:48:17:72:c5:34:f7:9d:c2:76:31:
96:8d:f0:63:ad:69:cb:41:e4:08:d4:63:f5:dc:79:
73:6c:1f:31:fc:9a:0d:67:bb:f9:40:e3:4e:3f:03:
8d:25:93:a1:43:28:ba:82:5a:aa:fe:b5:bf:5d:a5:
26:fd:d3:f1:33:10:d4:04:03:5f:1b:d4:8e:27:d3:
77:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:1B:F4:CB:66:D0:B1:2A:10:E5:EA:2E:AE:80:CF:0B:7D:6A:BD:DD
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Zxv0y2bQsSoQ5eouroDPC31qvd0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.0.0/16
Signature Algorithm: sha256WithRSAEncryption
02:bb:d4:56:74:ea:f3:7c:c4:60:ea:27:cf:79:50:9f:83:f0:
9c:2b:18:93:5e:cd:f0:35:df:e3:43:7a:44:a4:a8:b5:0b:38:
6d:03:1b:d8:0c:12:f1:1b:8a:db:7e:2f:d5:be:3d:23:7b:f0:
b1:57:41:03:27:21:13:85:07:7a:fe:e6:92:1c:37:6f:86:a4:
65:e3:56:da:1c:e5:a7:f9:3e:ee:22:ec:b2:73:dd:ac:79:57:
ce:ff:d6:aa:c4:ae:0d:8d:2c:7d:19:fd:f5:08:c0:5e:21:32:
55:71:ee:03:5e:39:ce:ad:fd:e5:d2:2f:3a:3b:18:1d:c2:8e:
b5:8a:67:ce:0d:c1:41:89:ea:e0:5a:9c:46:8d:31:86:59:b9:
ef:3f:f2:a5:fe:3a:95:08:85:d1:de:b7:40:ef:95:f3:24:f0:
fa:c0:b5:36:05:ba:ab:37:76:c0:73:30:16:0a:ba:8d:37:0a:
ec:9c:06:fb:d5:64:07:89:22:59:6c:1e:92:65:95:08:56:82:
68:f3:3e:54:e5:35:ce:58:30:82:a7:02:4e:8d:40:64:52:ca:
aa:7e:55:50:7e:c7:7b:ad:29:35:05:39:a9:07:84:63:68:fc:
5c:66:52:57:14:cb:92:ad:0a:20:c2:49:35:ad:5a:be:95:8c:
8f:0f:2f:9f
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICC4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMjA5MTUw
MjQxMTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDY3MUJGNENCNjZEMEIx
MkExMEU1RUEyRUFFODBDRjBCN0Q2QUJEREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC15Tt10hEQks1xS3ZfVhaguthYHnYgDql0Rc2Jw/OHsph7VHG7
+uWSCHTNl+DwBI3Rg+1wGE0XQbCGoUlQsaCgZlX4L350okxyBIk/nOUIsXjL9wa5
sHmx5f/B5aRInXIWgP/rDMeOThaiCxbwriS5fY59BesWNedj/RiUjnERWi8w8EQl
A+Szaf6EVFL3H/cukWBSb+T4iVBoNkJE7AiulfUY6zRpZUpjz5AP9DtN+avijt4y
QHRUSBdyxTT3ncJ2MZaN8GOtactB5AjUY/XceXNsHzH8mg1nu/lA404/A40lk6FD
KLqCWqr+tb9dpSb90/EzENQEA18b1I4n03c/AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUZxv0y2bQsSoQ5eouroDPC31qvd0wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9aeHYweTJiUXNTb1E1ZW91cm9E
UEMzMXF2ZDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjIgw
DQYJKoZIhvcNAQELBQADggEBAAK71FZ06vN8xGDqJ895UJ+D8JwrGJNezfA13+ND
ekSkqLULOG0DG9gMEvEbitt+L9W+PSN78LFXQQMnIROFB3r+5pIcN2+GpGXjVtoc
5af5Pu4i7LJz3ax5V87/1qrErg2NLH0Z/fUIwF4hMlVx7gNeOc6t/eXSLzo7GB3C
jrWKZ84NwUGJ6uBanEaNMYZZue8/8qX+OpUIhdHet0DvlfMk8PrAtTYFuqs3dsBz
MBYKuo03CuycBvvVZAeJIllsHpJllQhWgmjzPlTlNc5YMIKnAk6NQGRSyqp+VVB+
x3utKTUFOakHhGNo/FxmUlcUy5KtCiDCSTWtWr6VjI8PL58=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org