Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/pw03AOBaX6kZniG2qxRvILoeDog.roa
File: pw03AOBaX6kZniG2qxRvILoeDog.roa (raw, json)
Hash identifier: moDNhzTEZj+O0owuJ6b/bQ1mlzxNtCRm7q+gjoyX45k=
Subject key identifier: A7:0D:37:00:E0:5A:5F:A9:19:9E:21:B6:AB:14:6F:20:BA:1E:0E:88
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 09D7
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/pw03AOBaX6kZniG2qxRvILoeDog.roa
Signing time: Sun 07 Feb 2021 13:13:07 +0000
ROA not before: Sun 07 Feb 2021 13:13:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9916
IP address blocks: 192.83.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2519 (0x9d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 13:13:07 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A70D3700E05A5FA9199E21B6AB146F20BA1E0E88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fb:14:79:0b:18:a8:d2:7e:07:bd:a1:dc:dd:
3a:02:f0:61:c6:3b:65:95:e0:bc:fb:13:1f:bd:9e:
3c:dc:3e:fb:1b:74:44:61:b5:ef:24:f1:86:6f:25:
8f:95:bf:27:e8:b7:aa:8c:c1:38:06:ed:74:3d:02:
2e:9c:9a:af:c4:69:84:43:5e:52:67:16:99:60:87:
9e:15:f3:9d:61:85:c7:01:af:9b:15:47:c9:4b:54:
24:20:4e:1c:af:4f:11:6f:13:7e:b8:0e:32:c9:19:
88:a1:7e:89:8b:b6:56:00:10:01:52:7e:99:e6:95:
58:8a:ea:bf:23:ec:5e:7a:fa:49:f4:42:23:04:5a:
21:38:ac:89:a6:9b:35:87:20:e0:6a:22:c4:d2:da:
f5:61:42:98:33:d8:91:cb:54:ca:66:2b:e7:85:72:
50:e4:a5:20:79:1d:c9:36:93:97:42:9f:6b:cb:21:
45:a3:db:79:5f:5f:73:70:6b:0b:4e:cc:cb:07:a0:
bc:3d:9c:77:c7:18:3a:11:42:f1:d5:d9:d2:68:50:
51:7d:08:01:72:7e:05:31:7b:5d:d8:d8:bf:5d:c4:
0b:a7:e3:2e:9b:3c:2b:36:da:0a:ec:d9:b3:a9:be:
f2:d4:cd:76:1c:a0:d3:2a:14:3f:4f:74:1e:52:59:
a6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:0D:37:00:E0:5A:5F:A9:19:9E:21:B6:AB:14:6F:20:BA:1E:0E:88
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/pw03AOBaX6kZniG2qxRvILoeDog.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.180.0/24
Signature Algorithm: sha256WithRSAEncryption
55:9b:d4:40:3e:2f:a7:11:61:dd:75:33:c0:55:37:9c:a6:58:
92:f0:dc:14:78:23:fa:82:be:5f:79:b2:78:3f:1c:65:32:5b:
ab:30:bd:d0:1a:7f:ab:5c:86:e9:ed:21:19:a9:72:3d:f5:53:
83:d7:65:de:5b:9d:90:fe:4b:82:14:56:1a:f2:9a:39:49:b6:
4e:4b:14:47:1f:05:94:57:e6:17:64:9d:2e:ec:d9:d6:13:fe:
0f:a8:6f:d3:6c:e9:56:31:d9:04:78:e5:6a:2d:45:1f:74:c2:
8c:70:f5:1c:ad:38:46:c3:5f:93:69:ff:2a:8a:be:2a:ca:f6:
a4:f6:2f:e6:ff:bd:14:c7:ad:61:21:55:78:e9:df:87:62:40:
94:d4:be:01:74:b7:b4:2d:31:6d:ab:ee:ea:ba:a4:1a:9c:8f:
89:f8:fc:ce:24:be:99:6c:70:71:63:95:c3:3c:68:c0:46:21:
f6:de:44:81:71:3e:19:b3:c5:7e:77:c5:47:69:09:6b:10:f2:
94:4f:47:71:c6:48:c0:8f:bc:cd:e5:91:98:1d:90:38:50:aa:
6c:db:62:15:00:10:c4:62:19:01:1a:11:e0:23:b1:53:98:dc:
65:da:7f:be:6b:28:d1:84:aa:ad:84:e1:28:fe:db:3b:30:af:
b4:eb:d0:32
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCdcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMTAyMDcx
MzEzMDdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEE3MEQzNzAwRTA1QTVG
QTkxOTlFMjFCNkFCMTQ2RjIwQkExRTBFODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0+xR5Cxio0n4HvaHc3ToC8GHGO2WV4Lz7Ex+9njzcPvsbdERh
te8k8YZvJY+Vvyfot6qMwTgG7XQ9Ai6cmq/EaYRDXlJnFplgh54V851hhccBr5sV
R8lLVCQgThyvTxFvE364DjLJGYihfomLtlYAEAFSfpnmlViK6r8j7F56+kn0QiME
WiE4rImmmzWHIOBqIsTS2vVhQpgz2JHLVMpmK+eFclDkpSB5Hck2k5dCn2vLIUWj
23lfX3NwawtOzMsHoLw9nHfHGDoRQvHV2dJoUFF9CAFyfgUxe13Y2L9dxAun4y6b
PCs22grs2bOpvvLUzXYcoNMqFD9PdB5SWaaZAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUpw03AOBaX6kZniG2qxRvILoeDogwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9wdzAzQU9CYVg2a1puaUcycXhS
dklMb2VEb2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwFO0
MA0GCSqGSIb3DQEBCwUAA4IBAQBVm9RAPi+nEWHddTPAVTecpliS8NwUeCP6gr5f
ebJ4PxxlMlurML3QGn+rXIbp7SEZqXI99VOD12XeW52Q/kuCFFYa8po5SbZOSxRH
HwWUV+YXZJ0u7NnWE/4PqG/TbOlWMdkEeOVqLUUfdMKMcPUcrThGw1+Taf8qir4q
yvak9i/m/70Ux61hIVV46d+HYkCU1L4BdLe0LTFtq+7quqQanI+J+PzOJL6ZbHBx
Y5XDPGjARiH23kSBcT4Zs8V+d8VHaQlrEPKUT0dxxkjAj7zN5ZGYHZA4UKps22IV
ABDEYhkBGhHgI7FTmNxl2n++ayjRhKqthOEo/ts7MK+069Ay
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org