Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/d4h2F9FGLnw_iqmq-KILhb694vg.roa
File: d4h2F9FGLnw_iqmq-KILhb694vg.roa (raw, json)
Hash identifier: p4ujxRo/N8C+PRjHZPnQhKKEXE4rANZO/Ckc796CIWk=
Subject key identifier: 77:88:76:17:D1:46:2E:7C:3F:8A:A9:AA:F8:A2:0B:85:BE:BD:E2:F8
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07F3
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/d4h2F9FGLnw_iqmq-KILhb694vg.roa
Signing time: Tue 29 Sep 2020 10:06:39 +0000
ROA not before: Tue 29 Sep 2020 10:06:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 163.32.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2035 (0x7f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=77887617D1462E7C3F8AA9AAF8A20B85BEBDE2F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5e:5d:89:01:44:34:30:03:74:a7:5b:9c:cc:
aa:75:fe:9f:3f:a4:a0:e8:73:82:44:12:d8:c1:15:
b2:e0:95:44:97:f5:02:3d:71:00:98:47:64:91:23:
f9:ed:a6:f7:32:64:ac:23:84:2d:f5:3c:44:6d:d5:
a1:68:15:d0:d6:30:c5:1b:ae:1a:93:89:b6:95:4b:
89:a2:a3:fe:84:4a:50:66:35:f4:70:cd:c5:7d:18:
1d:3c:74:25:f9:18:8a:40:8c:f6:f4:df:a8:c2:10:
75:d1:9e:6a:de:8c:bb:33:cc:b1:9c:99:c1:e4:3a:
b8:cd:0f:bc:6a:b9:6c:71:15:ec:51:c7:7a:06:b6:
f9:73:8b:22:20:58:fa:ba:b8:ee:f1:d5:8a:39:bb:
ef:a0:3b:8d:6e:59:32:4f:26:4b:07:4a:4a:be:c3:
76:66:49:cc:57:c8:a0:29:54:4e:d6:1b:2f:df:1e:
74:21:bd:e8:e8:d7:33:f0:89:15:37:1c:10:e9:3e:
79:92:b9:52:ff:fc:e5:f4:dc:c3:a6:c5:b9:82:5c:
5c:e4:3e:6c:96:aa:38:1c:51:dc:bf:70:ee:35:fe:
d6:8a:af:67:05:d4:6f:57:18:b2:e3:f3:34:9c:c1:
78:11:6d:d1:1e:06:53:5c:ab:25:44:e3:be:3f:34:
35:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:88:76:17:D1:46:2E:7C:3F:8A:A9:AA:F8:A2:0B:85:BE:BD:E2:F8
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/d4h2F9FGLnw_iqmq-KILhb694vg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
89:c4:49:65:24:00:c4:d2:73:4b:fe:b4:7a:7c:53:cd:aa:df:
d8:5c:e6:95:9c:7b:cc:9a:4c:4f:39:bd:9e:6b:51:05:5b:e1:
47:01:67:ed:a0:62:eb:fd:a1:e1:ef:4f:7d:c3:ad:e2:d8:56:
31:bf:d4:2b:27:b5:2f:fe:7f:11:7b:64:28:2d:0f:43:7b:48:
16:6f:95:3d:6c:96:1d:6b:40:7a:18:18:03:0c:30:d4:fa:c4:
01:0f:aa:c8:bd:9c:b8:83:e9:ec:96:f6:64:63:f6:7a:40:04:
ac:3c:51:29:94:df:d5:45:4e:68:e6:d2:04:3f:f9:8e:ee:a6:
51:2b:63:a6:46:21:0a:15:3b:12:37:8c:5b:61:68:8b:c5:18:
5f:66:52:a5:ad:cb:66:9c:17:d7:aa:7e:49:fc:9e:70:70:75:
cf:06:a1:96:e5:7c:23:72:ca:2c:a8:d2:4e:78:99:24:10:7a:
01:ff:29:64:9c:ae:75:6c:1c:6b:9f:8f:3e:e7:b0:1f:93:5d:
6b:fe:11:a6:2e:66:3b:e1:33:a1:2b:e5:2e:7a:52:e0:ab:8f:
a7:69:e6:9c:d6:3e:90:1f:36:18:dd:c2:50:69:05:f0:08:e0:
bb:e3:c6:67:f4:02:0e:fb:c6:ae:da:8d:84:d5:95:50:9d:99:
68:b9:4f:f5
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICB/MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMDA5Mjkx
MDA2MzlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDc3ODg3NjE3RDE0NjJF
N0MzRjhBQTlBQUY4QTIwQjg1QkVCREUyRjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdXl2JAUQ0MAN0p1uczKp1/p8/pKDoc4JEEtjBFbLglUSX9QI9
cQCYR2SRI/ntpvcyZKwjhC31PERt1aFoFdDWMMUbrhqTibaVS4mio/6ESlBmNfRw
zcV9GB08dCX5GIpAjPb036jCEHXRnmrejLszzLGcmcHkOrjND7xquWxxFexRx3oG
tvlziyIgWPq6uO7x1Yo5u++gO41uWTJPJksHSkq+w3ZmScxXyKApVE7WGy/fHnQh
vejo1zPwiRU3HBDpPnmSuVL//OX03MOmxbmCXFzkPmyWqjgcUdy/cO41/taKr2cF
1G9XGLLj8zScwXgRbdEeBlNcqyVE474/NDWFAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUd4h2F9FGLnw/iqmq+KILhb694vgwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9kNGgyRjlGR0xud19pcW1xLUtJ
TGhiNjk0dmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAoyAw
DQYJKoZIhvcNAQELBQADggEBAInESWUkAMTSc0v+tHp8U82q39hc5pWce8yaTE85
vZ5rUQVb4UcBZ+2gYuv9oeHvT33DreLYVjG/1CsntS/+fxF7ZCgtD0N7SBZvlT1s
lh1rQHoYGAMMMNT6xAEPqsi9nLiD6eyW9mRj9npABKw8USmU39VFTmjm0gQ/+Y7u
plErY6ZGIQoVOxI3jFthaIvFGF9mUqWty2acF9eqfkn8nnBwdc8GoZblfCNyyiyo
0k54mSQQegH/KWScrnVsHGufjz7nsB+TXWv+EaYuZjvhM6Er5S56UuCrj6dp5pzW
PpAfNhjdwlBpBfAI4Lvjxmf0Ag77xq7ajYTVlVCdmWi5T/U=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org