Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ef9OJ02A4jrLlYSQtwpCxOBDe6w.roa
File: ef9OJ02A4jrLlYSQtwpCxOBDe6w.roa (raw, json)
Hash identifier: knKZtrYCC88Yw90McT3Y8b0hJBiqrOaB2QxhzoP8eaY=
Subject key identifier: 79:FF:4E:27:4D:80:E2:3A:CB:95:84:90:B7:0A:42:C4:E0:43:7B:AC
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0986
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ef9OJ02A4jrLlYSQtwpCxOBDe6w.roa
Signing time: Sun 07 Feb 2021 12:38:51 +0000
ROA not before: Sun 07 Feb 2021 12:38:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18420
IP address blocks: 140.115.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2438 (0x986)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:38:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=79FF4E274D80E23ACB958490B70A42C4E0437BAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:37:d5:ec:71:c1:40:f9:e7:ef:35:96:2a:33:
2f:6e:42:14:03:b7:db:94:fd:42:9c:06:68:51:9b:
77:99:05:0c:fd:29:3d:78:bb:60:e2:1d:f1:6a:cd:
9e:f6:25:3a:42:5a:ee:80:6c:1d:30:9f:7d:c2:82:
a0:66:f9:08:53:06:cb:9a:e6:ee:f4:49:e7:bc:62:
cb:69:3e:d9:59:3f:10:b1:54:4f:aa:6b:07:94:1b:
d7:4f:c0:a1:3c:26:67:51:64:db:28:d5:d7:6f:26:
ab:77:f0:87:dd:cd:85:85:30:c7:9a:0d:05:bc:0a:
fe:30:8f:3a:4d:0c:1a:ee:15:9d:77:69:a1:e4:1a:
92:8a:b1:ee:35:16:0e:b7:9a:04:5f:2f:fd:b2:47:
d6:be:e9:b3:4f:ee:6b:fa:36:57:91:1f:78:6b:0a:
ff:9d:c5:01:dd:8f:db:b2:3e:69:52:a9:f8:73:ab:
ac:8d:a5:dc:c2:36:c0:82:19:84:c8:45:f1:2f:7f:
41:54:3c:e2:c7:49:40:84:b4:20:43:fd:d8:1f:d2:
da:db:4a:f1:99:41:a5:1d:62:3f:6c:eb:d0:6d:10:
4b:52:9e:5a:c5:9d:dd:60:53:c3:df:d2:95:d8:66:
03:13:e1:37:9c:8e:23:9a:63:6c:a6:6b:a2:2e:7d:
d4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:FF:4E:27:4D:80:E2:3A:CB:95:84:90:B7:0A:42:C4:E0:43:7B:AC
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ef9OJ02A4jrLlYSQtwpCxOBDe6w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.115.0.0/16
Signature Algorithm: sha256WithRSAEncryption
96:6e:ed:6f:4b:7b:d3:c0:e3:a5:28:4b:5a:a0:af:3a:7d:9a:
e0:97:46:aa:fd:ad:ca:08:ab:4d:32:62:44:fd:19:2c:6d:34:
a0:a6:33:16:0c:b5:3e:01:be:b1:c1:05:ca:15:33:9b:e8:92:
d6:92:86:fb:74:64:a8:43:a1:b6:9f:43:a7:94:0b:7d:88:1e:
ed:2b:45:ae:e2:a2:9a:cb:43:2b:0d:b3:23:8c:5d:c1:2e:0a:
1b:61:28:91:07:f6:63:19:e7:c7:0e:8c:59:05:ff:02:ec:de:
cd:11:f5:33:4b:2f:e9:c4:7f:3d:7c:4a:62:51:01:8e:08:3f:
87:ba:33:04:5f:01:c0:cb:fc:f0:e6:d6:fd:7e:1c:3c:7b:24:
bf:c1:50:b4:0f:53:ba:a4:85:a9:96:63:45:3c:2f:72:52:35:
13:b8:fc:6c:30:c6:1e:a8:f1:e9:ef:6d:b9:ac:7c:02:56:18:
4e:77:39:50:59:ef:9d:6c:96:84:37:ea:13:de:ad:07:35:e8:
89:77:3b:98:02:2f:4b:ef:1b:cd:92:f7:dd:4b:e4:fc:35:4f:
a8:c6:08:55:f5:fe:2a:a6:9d:f7:67:97:07:8f:10:41:b8:b5:
a0:a1:8c:ef:29:1a:da:69:64:cd:ea:cb:c3:cd:d0:90:73:bc:
07:c4:b5:40
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCYYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMTAyMDcx
MjM4NTFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDc5RkY0RTI3NEQ4MEUy
M0FDQjk1ODQ5MEI3MEE0MkM0RTA0MzdCQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwN9XsccFA+efvNZYqMy9uQhQDt9uU/UKcBmhRm3eZBQz9KT14
u2DiHfFqzZ72JTpCWu6AbB0wn33CgqBm+QhTBsua5u70See8YstpPtlZPxCxVE+q
aweUG9dPwKE8JmdRZNso1ddvJqt38IfdzYWFMMeaDQW8Cv4wjzpNDBruFZ13aaHk
GpKKse41Fg63mgRfL/2yR9a+6bNP7mv6NleRH3hrCv+dxQHdj9uyPmlSqfhzq6yN
pdzCNsCCGYTIRfEvf0FUPOLHSUCEtCBD/dgf0trbSvGZQaUdYj9s69BtEEtSnlrF
nd1gU8Pf0pXYZgMT4TecjiOaY2yma6IufdSfAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUef9OJ02A4jrLlYSQtwpCxOBDe6wwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9lZjlPSjAyQTRqckxsWVNRdHdw
Q3hPQkRlNncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHMw
DQYJKoZIhvcNAQELBQADggEBAJZu7W9Le9PA46UoS1qgrzp9muCXRqr9rcoIq00y
YkT9GSxtNKCmMxYMtT4BvrHBBcoVM5voktaShvt0ZKhDobafQ6eUC32IHu0rRa7i
oprLQysNsyOMXcEuChthKJEH9mMZ58cOjFkF/wLs3s0R9TNLL+nEfz18SmJRAY4I
P4e6MwRfAcDL/PDm1v1+HDx7JL/BULQPU7qkhamWY0U8L3JSNRO4/Gwwxh6o8env
bbmsfAJWGE53OVBZ751sloQ36hPerQc16Il3O5gCL0vvG82S991L5Pw1T6jGCFX1
/iqmnfdnlwePEEG4taChjO8pGtppZM3qy8PN0JBzvAfEtUA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org