Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/dlCq4OoI3rwIZPFiuD7Ga-5pEYc.roa
File: dlCq4OoI3rwIZPFiuD7Ga-5pEYc.roa (raw, json)
Hash identifier: 8VqKs5T6JN+/ZeG7HNjZVq3r8vtB4HrBqLO+z1GCYbA=
Subject key identifier: 76:50:AA:E0:EA:08:DE:BC:08:64:F1:62:B8:3E:C6:6B:EE:69:11:87
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/dlCq4OoI3rwIZPFiuD7Ga-5pEYc.roa
Signing time: Thu 15 Sep 2022 02:41:25 +0000
ROA not before: Thu 15 Sep 2022 02:41:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 192.83.176.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7650AAE0EA08DEBC0864F162B83EC66BEE691187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:78:99:c5:23:56:9b:42:ae:97:40:56:cb:a1:
6d:66:fe:f3:f9:ef:c9:8c:61:d3:8b:33:ab:8b:07:
44:f5:a7:1d:ce:ea:5a:d4:b6:03:25:dc:2c:27:5d:
2c:86:8b:a2:9e:57:c4:fd:2b:9d:d6:4e:23:97:cd:
a6:d6:e2:06:bb:82:be:cc:24:cf:7c:26:bb:bb:f4:
b8:f5:31:fa:48:99:5c:51:5e:9e:59:19:5b:ea:f6:
7a:58:e0:2e:14:6c:e2:b6:33:eb:9e:c6:fc:f4:1d:
27:79:8e:a8:55:0e:b6:55:0b:87:42:48:9e:54:c2:
0e:f7:90:0e:dc:d3:16:4c:ba:93:16:c3:46:9b:53:
8c:56:91:df:e8:e1:ea:cd:85:38:d9:77:8e:8b:89:
1c:86:b4:85:9e:e6:67:47:97:77:ae:e0:ae:dd:3a:
b9:f3:16:cb:94:6d:39:5a:ec:b2:39:8a:85:7f:c1:
ea:46:9f:71:e0:40:e2:03:65:bd:2c:b2:6a:fa:47:
e8:3c:14:f5:e4:f3:9a:06:39:c6:07:d8:d1:ca:a2:
8e:a4:2a:41:38:f2:f1:fa:1c:90:2e:52:0e:b3:a7:
7b:71:28:bb:68:c2:96:f3:16:09:8b:85:d5:b5:f9:
cc:e5:54:57:4d:fd:b3:e4:92:eb:9d:1c:58:15:54:
a9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:50:AA:E0:EA:08:DE:BC:08:64:F1:62:B8:3E:C6:6B:EE:69:11:87
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/dlCq4OoI3rwIZPFiuD7Ga-5pEYc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.176.0/20
Signature Algorithm: sha256WithRSAEncryption
2b:b4:af:e7:7d:af:20:d8:46:6f:52:80:67:9a:e2:57:76:3a:
f7:22:66:b4:07:ce:56:d5:a0:7e:57:9d:48:46:81:0c:ae:04:
02:28:6a:c5:17:68:eb:a9:7e:a4:c9:04:87:7a:3a:d2:8e:e8:
a2:85:d3:82:0d:a6:d3:cb:39:f6:99:16:21:87:3b:83:49:d3:
71:71:7d:5e:8e:c3:81:40:ab:85:b5:b0:c2:e6:f2:dd:6a:ad:
3c:66:c9:65:2a:20:99:b5:6e:25:d6:74:8b:9f:0a:fa:8e:21:
15:ea:6b:ab:f9:c3:df:1b:21:5a:02:21:ae:23:5f:23:cc:13:
97:6a:4b:78:fb:5d:95:17:f6:a9:38:36:3a:21:66:0c:69:83:
93:f8:22:78:66:c0:a1:67:0f:12:59:74:cc:d5:f3:26:80:03:
07:17:10:b6:66:62:21:af:1a:88:28:04:f6:0f:89:d0:08:06:
3b:91:f0:2b:a2:02:3f:9a:a1:9a:fc:56:44:8b:87:1d:70:25:
aa:75:30:38:f4:a4:ed:60:a8:d7:c6:f4:a8:45:5a:90:b5:97:
c8:db:f1:b6:53:f6:b8:49:86:ff:29:cc:8d:2b:6f:03:15:01:
5a:e2:b1:a2:ba:64:7e:75:12:dc:db:44:3e:14:06:b7:5d:e8:
22:0a:db:4d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICC4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMjA5MTUw
MjQxMjVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDc2NTBBQUUwRUEwOERF
QkMwODY0RjE2MkI4M0VDNjZCRUU2OTExODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMeJnFI1abQq6XQFbLoW1m/vP578mMYdOLM6uLB0T1px3O6lrU
tgMl3CwnXSyGi6KeV8T9K53WTiOXzabW4ga7gr7MJM98Jru79Lj1MfpImVxRXp5Z
GVvq9npY4C4UbOK2M+uexvz0HSd5jqhVDrZVC4dCSJ5Uwg73kA7c0xZMupMWw0ab
U4xWkd/o4erNhTjZd46LiRyGtIWe5mdHl3eu4K7dOrnzFsuUbTla7LI5ioV/wepG
n3HgQOIDZb0ssmr6R+g8FPXk85oGOcYH2NHKoo6kKkE48vH6HJAuUg6zp3txKLto
wpbzFgmLhdW1+czlVFdN/bPkkuudHFgVVKmXAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUdlCq4OoI3rwIZPFiuD7Ga+5pEYcwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9kbENxNE9vSTNyd0laUEZpdUQ3
R2EtNXBFWWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEwFOw
MA0GCSqGSIb3DQEBCwUAA4IBAQArtK/nfa8g2EZvUoBnmuJXdjr3Ima0B85W1aB+
V51IRoEMrgQCKGrFF2jrqX6kyQSHejrSjuiihdOCDabTyzn2mRYhhzuDSdNxcX1e
jsOBQKuFtbDC5vLdaq08ZsllKiCZtW4l1nSLnwr6jiEV6mur+cPfGyFaAiGuI18j
zBOXakt4+12VF/apODY6IWYMaYOT+CJ4ZsChZw8SWXTM1fMmgAMHFxC2ZmIhrxqI
KAT2D4nQCAY7kfArogI/mqGa/FZEi4cdcCWqdTA49KTtYKjXxvSoRVqQtZfI2/G2
U/a4SYb/KcyNK28DFQFa4rGiumR+dRLc20Q+FAa3XegiCttN
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org