Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/p68EZ_wHzo45p9w5GTVMUT2QAUc.roa
File: p68EZ_wHzo45p9w5GTVMUT2QAUc.roa (raw, json)
Hash identifier: hVOA+/IM2x/IO24eHlrbk8L2pAgpGlSkkZsYiudMgfA=
Subject key identifier: A7:AF:04:67:FC:07:CE:8E:39:A7:DC:39:19:35:4C:51:3D:90:01:47
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/p68EZ_wHzo45p9w5GTVMUT2QAUc.roa
Signing time: Thu 15 Sep 2022 02:41:23 +0000
ROA not before: Thu 15 Sep 2022 02:41:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131150
IP address blocks: 163.32.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A7AF0467FC07CE8E39A7DC3919354C513D900147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8a:6f:58:c6:5f:69:19:c8:b1:ae:79:fe:ff:
8b:11:cb:27:cc:50:1d:39:97:ac:c3:95:20:23:e9:
21:dc:20:11:f5:b1:c8:4d:58:37:9d:63:6f:a6:20:
3c:85:bc:77:aa:e8:0e:0d:0c:03:a4:91:e0:59:1d:
d5:3d:e7:59:be:17:f2:36:08:1a:41:d2:28:f2:ce:
c8:7f:8a:1b:03:81:89:7b:17:1d:4a:9a:28:a7:b0:
47:17:58:a5:ca:e6:e5:aa:36:6e:bb:ac:ee:1c:c8:
51:e1:5c:51:e4:18:35:ed:ae:9e:ce:5b:f4:34:d3:
41:be:0a:d7:d2:77:9f:5b:53:e6:ed:c7:47:f1:a2:
02:41:51:e3:fa:c8:ca:7f:b5:ba:94:90:7e:73:fe:
6a:3a:7f:f9:10:9c:ac:cf:a8:e0:57:44:0a:e5:fe:
43:74:28:5a:2a:5e:e0:87:7b:de:0e:2b:d3:ed:78:
bb:4c:32:b8:ac:63:31:0d:88:62:e0:5a:39:4f:aa:
52:7d:a7:41:f7:a4:24:45:89:95:17:fe:50:46:82:
e9:77:ce:8b:35:2f:f4:d8:5b:4e:7e:5b:c2:59:39:
cd:12:0b:9c:a6:2c:4c:d8:a7:5a:e6:11:98:59:e0:
9a:7c:a2:43:23:06:27:fc:fe:14:27:15:63:a9:4a:
e6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:AF:04:67:FC:07:CE:8E:39:A7:DC:39:19:35:4C:51:3D:90:01:47
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/p68EZ_wHzo45p9w5GTVMUT2QAUc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.136.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:1a:6f:af:92:5c:ec:32:ce:71:bd:26:c1:09:e7:84:f2:fb:
f4:9d:a3:4d:a4:71:eb:2a:2e:57:64:93:6c:9a:41:a2:31:5f:
5f:22:c4:26:1a:0d:cc:d8:4f:ef:97:d0:c0:92:21:ef:a6:38:
ad:3d:74:24:74:34:1d:18:28:47:48:7c:17:30:d7:a2:a0:66:
af:58:a0:3b:20:4c:9f:d4:63:b2:04:aa:eb:aa:7c:75:88:03:
2b:72:09:0a:cb:da:88:9c:9b:10:e3:02:78:90:b9:c5:e6:b2:
71:33:a0:a6:fc:90:50:19:95:4c:43:40:9e:d9:9d:c6:e4:b5:
f2:3a:a1:51:13:63:86:9a:d9:6d:12:6b:a0:8d:ab:71:3e:e3:
47:37:50:e3:3f:cb:05:2e:be:33:eb:b4:9b:08:ed:81:77:92:
d5:85:19:7a:18:c9:c1:e2:8a:bd:13:d3:83:8f:8f:f2:2f:bd:
c6:bc:0a:3f:fa:c5:d2:73:ad:c9:94:7d:97:7a:b5:89:fc:c8:
c4:77:5c:5c:3e:f8:df:b7:4e:d9:b9:f3:d5:da:0e:03:b5:05:
c2:78:97:94:30:1e:08:0a:8c:49:ea:6c:23:85:4d:fc:31:f1:
08:e1:e2:d0:8d:91:39:2a:1a:d3:a3:6e:69:10:63:fe:95:3b:
31:71:f0:12
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICC9gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMjA5MTUw
MjQxMjNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE3QUYwNDY3RkMwN0NF
OEUzOUE3REMzOTE5MzU0QzUxM0Q5MDAxNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJim9Yxl9pGcixrnn+/4sRyyfMUB05l6zDlSAj6SHcIBH1schN
WDedY2+mIDyFvHeq6A4NDAOkkeBZHdU951m+F/I2CBpB0ijyzsh/ihsDgYl7Fx1K
miinsEcXWKXK5uWqNm67rO4cyFHhXFHkGDXtrp7OW/Q000G+CtfSd59bU+btx0fx
ogJBUeP6yMp/tbqUkH5z/mo6f/kQnKzPqOBXRArl/kN0KFoqXuCHe94OK9PteLtM
MrisYzENiGLgWjlPqlJ9p0H3pCRFiZUX/lBGgul3zos1L/TYW05+W8JZOc0SC5ym
LEzYp1rmEZhZ4Jp8okMjBif8/hQnFWOpSub7AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUp68EZ/wHzo45p9w5GTVMUT2QAUcwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9wNjhFWl93SHpvNDVwOXc1R1RW
TVVUMlFBVWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCoyCI
MA0GCSqGSIb3DQEBCwUAA4IBAQCpGm+vklzsMs5xvSbBCeeE8vv0naNNpHHrKi5X
ZJNsmkGiMV9fIsQmGg3M2E/vl9DAkiHvpjitPXQkdDQdGChHSHwXMNeioGavWKA7
IEyf1GOyBKrrqnx1iAMrcgkKy9qInJsQ4wJ4kLnF5rJxM6Cm/JBQGZVMQ0Ce2Z3G
5LXyOqFRE2OGmtltEmugjatxPuNHN1DjP8sFLr4z67SbCO2Bd5LVhRl6GMnB4oq9
E9ODj4/yL73GvAo/+sXSc63JlH2XerWJ/MjEd1xcPvjft07ZufPV2g4DtQXCeJeU
MB4ICoxJ6mwjhU38MfEI4eLQjZE5KhrTo25pEGP+lTsxcfAS
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org