Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ax5lcpPst-CN0hBu7RDWtfM8NMA.roa
File: ax5lcpPst-CN0hBu7RDWtfM8NMA.roa (raw, json)
Hash identifier: Vph2essOtTnUYO179b4UbuiliekkKSVyT/nqUGLzhrM=
Subject key identifier: 6B:1E:65:72:93:EC:B7:E0:8D:D2:10:6E:ED:10:D6:B5:F3:3C:34:C0
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AC4
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ax5lcpPst-CN0hBu7RDWtfM8NMA.roa
Signing time: Wed 29 Sep 2021 02:41:02 +0000
ROA not before: Wed 29 Sep 2021 02:41:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17716
IP address blocks: 120.96.240.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2756 (0xac4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6B1E657293ECB7E08DD2106EED10D6B5F33C34C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b8:9f:c7:47:61:3b:56:4a:71:95:bc:16:bb:
87:5f:6b:5c:69:a3:6e:a3:8c:38:45:b0:43:97:22:
b2:52:44:99:75:93:b3:a2:2d:c3:43:15:17:07:b7:
b7:65:9c:a1:d1:7c:e8:c0:a1:cf:c5:29:29:07:3d:
c3:b6:88:92:71:4c:d8:a0:0a:84:21:5f:0a:e8:3b:
3c:41:a3:9b:32:29:6e:52:7c:a0:76:c7:a8:74:f4:
03:02:d7:9a:4c:fb:7e:e9:be:5a:b3:a1:4c:ac:d5:
a2:7a:4e:86:48:ab:68:8f:4a:12:14:57:ce:d4:39:
4d:5f:08:03:1c:c8:c0:e8:f0:a0:5f:da:44:b9:5f:
6d:b6:06:cf:1a:04:35:93:e5:4b:e0:dc:e2:90:e0:
1c:ae:ad:84:1d:40:0e:10:3a:f8:ce:aa:c9:9e:64:
5f:9b:6a:e1:c8:eb:94:c1:45:15:56:46:2b:6b:b0:
d9:bd:60:2a:29:bb:17:cc:e1:73:00:dd:47:11:e2:
f1:34:61:fc:3a:80:b3:4c:0e:5f:0c:e0:78:9b:b8:
47:af:58:27:02:65:e7:ee:a2:02:1c:c4:c1:1f:23:
3b:6e:64:d3:d4:6f:b4:da:00:06:bb:9b:0e:3a:85:
6d:f0:ba:70:b3:45:ef:4f:bc:92:07:0c:80:58:dc:
8b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:1E:65:72:93:EC:B7:E0:8D:D2:10:6E:ED:10:D6:B5:F3:3C:34:C0
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ax5lcpPst-CN0hBu7RDWtfM8NMA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.240.0/21
Signature Algorithm: sha256WithRSAEncryption
73:3c:55:4c:7e:a6:bc:98:92:0e:37:69:e3:ba:f1:16:cd:50:
f9:cc:ba:58:a4:cd:24:62:e0:96:17:fd:29:9b:b2:95:61:81:
98:da:14:5f:7b:b1:e6:cf:f3:ce:01:69:76:b8:c8:75:29:d6:
65:c3:fe:05:52:44:d0:69:b2:de:4c:a9:8a:3d:87:11:bd:f9:
ef:f2:35:6e:f1:80:cb:02:0f:bf:66:ba:b5:b6:52:1e:d1:04:
68:9e:13:a5:f3:21:58:6c:da:ac:dd:be:ce:77:d3:20:b8:d1:
c5:ea:85:ce:86:9e:97:c0:84:d4:ef:ce:1c:8a:79:60:87:ff:
06:db:5b:ef:e2:c5:4c:b0:c9:66:5d:e5:58:1f:04:28:4f:0b:
7a:62:32:55:a3:94:50:72:7c:03:83:73:ae:ac:96:17:9f:e7:
4f:20:b6:bf:18:fb:26:bc:fd:2a:21:dd:49:d6:0a:5c:07:ab:
5e:a6:bb:0f:85:ec:40:f2:c5:7f:cf:fa:1c:39:76:7e:be:1e:
fe:30:40:54:76:5e:61:6c:68:dd:74:e0:53:34:58:7c:24:26:
a1:1c:01:26:99:52:b7:01:3a:52:2c:50:8a:31:be:93:5f:54:
c9:a3:36:55:a5:9a:a1:f4:a4:4a:a8:4c:c0:ea:6a:c0:3b:8f:
47:41:2f:67
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCsQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMTA5Mjkw
MjQxMDJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDZCMUU2NTcyOTNFQ0I3
RTA4REQyMTA2RUVEMTBENkI1RjMzQzM0QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFuJ/HR2E7VkpxlbwWu4dfa1xpo26jjDhFsEOXIrJSRJl1k7Oi
LcNDFRcHt7dlnKHRfOjAoc/FKSkHPcO2iJJxTNigCoQhXwroOzxBo5syKW5SfKB2
x6h09AMC15pM+37pvlqzoUys1aJ6ToZIq2iPShIUV87UOU1fCAMcyMDo8KBf2kS5
X222Bs8aBDWT5Uvg3OKQ4ByurYQdQA4QOvjOqsmeZF+bauHI65TBRRVWRitrsNm9
YCopuxfM4XMA3UcR4vE0Yfw6gLNMDl8M4HibuEevWCcCZefuogIcxMEfIztuZNPU
b7TaAAa7mw46hW3wunCzRe9PvJIHDIBY3IvPAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUax5lcpPst+CN0hBu7RDWtfM8NMAwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9heDVsY3BQc3QtQ04waEJ1N1JE
V3RmTThOTUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDeGDw
MA0GCSqGSIb3DQEBCwUAA4IBAQBzPFVMfqa8mJION2njuvEWzVD5zLpYpM0kYuCW
F/0pm7KVYYGY2hRfe7Hmz/POAWl2uMh1KdZlw/4FUkTQabLeTKmKPYcRvfnv8jVu
8YDLAg+/Zrq1tlIe0QRonhOl8yFYbNqs3b7Od9MguNHF6oXOhp6XwITU784cinlg
h/8G21vv4sVMsMlmXeVYHwQoTwt6YjJVo5RQcnwDg3OurJYXn+dPILa/GPsmvP0q
Id1J1gpcB6teprsPhexA8sV/z/ocOXZ+vh7+MEBUdl5hbGjddOBTNFh8JCahHAEm
mVK3ATpSLFCKMb6TX1TJozZVpZqh9KRKqEzA6mrAO49HQS9n
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org