Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/sp2JYUPTePIY12JGOQqWljj1VaE.roa
File: sp2JYUPTePIY12JGOQqWljj1VaE.roa (raw, json)
Hash identifier: qxEr+4gN9o0G6yaEHDmGtKCOqgPxyH8YpCj7AlE35bw=
Subject key identifier: B2:9D:89:61:43:D3:78:F2:18:D7:62:46:39:0A:96:96:38:F5:55:A1
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 07F4
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/sp2JYUPTePIY12JGOQqWljj1VaE.roa
Signing time: Tue 29 Sep 2020 10:06:40 +0000
ROA not before: Tue 29 Sep 2020 10:06:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131150
IP address blocks: 163.32.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2036 (0x7f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B29D896143D378F218D76246390A969638F555A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:09:69:d8:26:82:55:4d:39:18:50:16:0d:ce:
ba:c8:ae:8a:fd:3a:c7:c5:62:bc:64:3a:40:4b:1b:
e4:b2:08:23:fc:af:c8:83:ad:64:70:f6:09:66:c7:
34:66:7f:27:3a:5a:22:a8:f7:1f:88:d0:60:93:0b:
a2:a0:f2:4d:49:e6:64:06:a8:09:b3:51:da:df:9c:
59:03:6a:10:a1:cd:bb:07:7c:79:ca:3f:8a:77:0f:
2b:cc:07:fc:53:42:a0:4d:f4:0d:91:b7:63:29:ce:
6d:a4:0e:20:11:40:67:4b:3b:0c:f7:19:c1:6a:71:
a9:45:7e:3b:65:64:10:28:d4:9b:1d:9d:d5:88:34:
47:82:f5:3a:b6:10:f3:f6:1d:66:96:96:26:23:8c:
c0:2e:42:60:ff:54:31:be:c5:a0:dd:8d:8b:10:cc:
16:1f:3e:b2:1a:be:40:da:d2:a2:05:98:ca:72:a5:
d9:1e:a0:16:59:04:b7:ca:3e:f8:50:8d:e1:16:c3:
54:57:76:2a:a0:73:d0:c5:03:a5:e2:a2:1f:9f:18:
db:e4:e9:e1:84:21:92:9b:aa:3a:43:e2:08:07:4d:
fc:8c:bc:a3:ab:9a:52:9c:74:fa:3e:bd:0c:be:c0:
5c:a5:1f:6e:53:68:8a:ab:26:0b:6f:a1:5e:5f:39:
26:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9D:89:61:43:D3:78:F2:18:D7:62:46:39:0A:96:96:38:F5:55:A1
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/sp2JYUPTePIY12JGOQqWljj1VaE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.188.0/22
Signature Algorithm: sha256WithRSAEncryption
90:5c:fd:9c:e8:bd:21:39:41:fe:1c:8b:e6:aa:52:5d:84:4f:
6c:15:97:f5:3e:e5:fc:10:2a:7e:d0:8e:92:a5:0b:5a:3b:0b:
eb:39:41:7a:59:60:88:eb:2a:6b:1b:93:63:66:e0:36:77:dd:
60:bf:de:a3:65:7a:87:d5:69:a2:2a:ec:5f:4c:ee:95:e3:a4:
b1:f9:2f:8e:0f:d9:27:2f:fb:fc:9a:b2:f5:75:d7:da:5f:fd:
66:51:05:76:1d:c9:02:60:a1:74:40:4c:da:ac:3c:38:1b:30:
7a:be:b1:fe:e4:de:36:a4:74:44:a9:87:b7:0e:05:cf:e7:ec:
16:5b:f9:44:39:dd:76:82:d3:1a:97:4d:3c:d9:89:c7:ff:f6:
42:bb:99:3d:cc:ed:3e:67:f5:c9:27:5a:49:cb:13:af:ef:50:
54:e5:22:6e:d3:7c:c5:3e:f9:89:9f:42:76:af:f0:62:d8:70:
ec:1e:fe:8a:d7:1c:34:f5:0d:5c:5e:22:25:51:7d:9a:7a:dd:
57:16:6a:c5:7f:92:30:98:4f:28:ea:1a:73:be:d6:b3:e4:db:
9f:81:fd:b2:43:e4:10:12:49:fb:02:bd:6a:9e:4f:4e:d3:0d:
d3:86:71:e7:81:6f:5b:79:74:c9:5b:c4:0e:ee:52:40:65:05:
66:9d:bb:81
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB/QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMDA5Mjkx
MDA2NDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEIyOUQ4OTYxNDNEMzc4
RjIxOEQ3NjI0NjM5MEE5Njk2MzhGNTU1QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrCWnYJoJVTTkYUBYNzrrIror9OsfFYrxkOkBLG+SyCCP8r8iD
rWRw9glmxzRmfyc6WiKo9x+I0GCTC6Kg8k1J5mQGqAmzUdrfnFkDahChzbsHfHnK
P4p3DyvMB/xTQqBN9A2Rt2Mpzm2kDiARQGdLOwz3GcFqcalFfjtlZBAo1JsdndWI
NEeC9Tq2EPP2HWaWliYjjMAuQmD/VDG+xaDdjYsQzBYfPrIavkDa0qIFmMpypdke
oBZZBLfKPvhQjeEWw1RXdiqgc9DFA6Xioh+fGNvk6eGEIZKbqjpD4ggHTfyMvKOr
mlKcdPo+vQy+wFylH25TaIqrJgtvoV5fOSZ5AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUsp2JYUPTePIY12JGOQqWljj1VaEwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9zcDJKWVVQVGVQSVkxMkpHT1Fx
V2xqajFWYUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCoyC8
MA0GCSqGSIb3DQEBCwUAA4IBAQCQXP2c6L0hOUH+HIvmqlJdhE9sFZf1PuX8ECp+
0I6SpQtaOwvrOUF6WWCI6yprG5NjZuA2d91gv96jZXqH1WmiKuxfTO6V46Sx+S+O
D9knL/v8mrL1ddfaX/1mUQV2HckCYKF0QEzarDw4GzB6vrH+5N42pHREqYe3DgXP
5+wWW/lEOd12gtMal0082YnH//ZCu5k9zO0+Z/XJJ1pJyxOv71BU5SJu03zFPvmJ
n0J2r/Bi2HDsHv6K1xw09Q1cXiIlUX2aet1XFmrFf5IwmE8o6hpzvtaz5Nufgf2y
Q+QQEkn7Ar1qnk9O0w3ThnHngW9beXTJW8QO7lJAZQVmnbuB
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org