Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/u5oY5CtpFrxhG-JehTMrBI6dDPU.roa
File: u5oY5CtpFrxhG-JehTMrBI6dDPU.roa (raw, json)
Hash identifier: zFXnmrkCSBPIJardcyfs50bz92KBh2jdQOD7Ehn68ck=
Subject key identifier: BB:9A:18:E4:2B:69:16:BC:61:1B:E2:5E:85:33:2B:04:8E:9D:0C:F5
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0944
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/u5oY5CtpFrxhG-JehTMrBI6dDPU.roa
Signing time: Thu 07 Jan 2021 06:48:45 +0000
ROA not before: Thu 07 Jan 2021 06:48:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 210.59.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2372 (0x944)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Jan 7 06:48:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BB9A18E42B6916BC611BE25E85332B048E9D0CF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0a:5d:61:87:bd:01:a3:f3:06:f7:e9:98:b9:
87:b4:82:0c:d5:cb:57:b7:3e:5c:eb:9c:2a:b0:89:
59:94:22:59:81:ef:ce:04:9b:76:cc:4c:3c:14:30:
0d:53:e1:f2:9f:e4:20:5e:2e:2a:ba:9a:90:ba:4d:
5b:73:6f:a1:b7:06:f9:4a:2e:10:66:64:5c:0b:8b:
59:7e:ea:da:4e:6b:25:be:61:d0:6a:eb:d1:59:97:
19:da:6e:b6:09:0f:aa:71:12:e1:ea:25:4d:af:f0:
d8:60:ae:9e:49:d2:5e:7d:35:45:d7:c5:50:20:9e:
21:d1:d1:85:85:bf:e4:11:bc:0a:64:b0:4f:d7:68:
b1:ec:23:a4:d5:18:dd:f6:76:0f:02:6a:13:67:eb:
7a:8b:12:7a:0b:0d:3d:33:e4:96:e2:c7:39:e8:cb:
d2:78:1e:f3:70:f4:54:2b:e3:e1:2a:be:70:08:84:
40:db:34:e9:83:5f:98:fe:c8:e9:2c:94:98:84:09:
73:b3:db:d8:e6:fc:06:a6:08:1f:f1:01:2f:e7:45:
56:02:8f:93:b6:06:db:91:7d:03:8d:dc:16:79:67:
91:e8:38:43:ea:ca:20:ae:98:78:58:db:0a:2c:80:
b3:df:f6:69:16:3c:43:4e:db:d8:f6:99:5f:eb:be:
cf:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9A:18:E4:2B:69:16:BC:61:1B:E2:5E:85:33:2B:04:8E:9D:0C:F5
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/u5oY5CtpFrxhG-JehTMrBI6dDPU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.59.0.0/17
Signature Algorithm: sha256WithRSAEncryption
8a:44:3b:40:4a:e0:53:34:a7:87:2a:09:31:1e:37:b2:ca:cd:
5f:3d:39:3f:50:a8:c4:7c:e7:88:45:3b:77:27:02:a2:4e:a9:
64:4d:9a:de:11:e5:4e:7d:4a:99:56:85:13:c0:e1:07:15:74:
ca:c1:15:70:2f:0c:39:90:bc:c6:b4:67:ba:ee:0b:4f:00:e3:
f7:10:33:91:50:99:27:d4:2d:10:17:80:55:0a:99:1d:0e:8c:
b2:2a:4b:07:12:c0:29:d3:05:cf:69:0e:be:99:13:3c:ae:cd:
5c:b3:73:83:45:6e:c9:1a:f6:93:f9:07:d9:96:cf:86:a3:70:
04:f0:8d:54:7f:46:d9:32:98:88:85:d9:76:ab:9b:92:d3:c8:
e0:d5:7a:76:af:7a:dc:54:ba:68:d4:ab:65:2c:13:da:66:0c:
4d:fa:d0:86:34:24:2e:25:96:08:13:1f:fe:ed:75:9f:80:79:
75:f5:84:53:d9:9a:a2:35:5a:63:20:b7:df:fb:f7:18:4c:6a:
98:5e:c3:cb:ab:1c:fa:2f:96:19:e6:14:43:24:14:33:4c:0a:
5d:0b:cc:6f:9f:89:3b:73:e9:9f:ff:ee:98:2f:8e:4f:d6:5c:
c0:a4:83:f4:3d:1f:83:93:2a:20:74:11:de:a9:36:5c:05:2c:
57:a5:54:be
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMTAxMDcw
NjQ4NDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEJCOUExOEU0MkI2OTE2
QkM2MTFCRTI1RTg1MzMyQjA0OEU5RDBDRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyCl1hh70Bo/MG9+mYuYe0ggzVy1e3PlzrnCqwiVmUIlmB784E
m3bMTDwUMA1T4fKf5CBeLiq6mpC6TVtzb6G3BvlKLhBmZFwLi1l+6tpOayW+YdBq
69FZlxnabrYJD6pxEuHqJU2v8Nhgrp5J0l59NUXXxVAgniHR0YWFv+QRvApksE/X
aLHsI6TVGN32dg8CahNn63qLEnoLDT0z5Jbixznoy9J4HvNw9FQr4+EqvnAIhEDb
NOmDX5j+yOkslJiECXOz29jm/AamCB/xAS/nRVYCj5O2BtuRfQON3BZ5Z5HoOEPq
yiCumHhY2wosgLPf9mkWPENO29j2mV/rvs91AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUu5oY5CtpFrxhG+JehTMrBI6dDPUwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC91NW9ZNUN0cEZyeGhHLUplaFRN
ckJJNmREUFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH0jsA
MA0GCSqGSIb3DQEBCwUAA4IBAQCKRDtASuBTNKeHKgkxHjeyys1fPTk/UKjEfOeI
RTt3JwKiTqlkTZreEeVOfUqZVoUTwOEHFXTKwRVwLww5kLzGtGe67gtPAOP3EDOR
UJkn1C0QF4BVCpkdDoyyKksHEsAp0wXPaQ6+mRM8rs1cs3ODRW7JGvaT+QfZls+G
o3AE8I1Uf0bZMpiIhdl2q5uS08jg1Xp2r3rcVLpo1KtlLBPaZgxN+tCGNCQuJZYI
Ex/+7XWfgHl19YRT2ZqiNVpjILff+/cYTGqYXsPLqxz6L5YZ5hRDJBQzTApdC8xv
n4k7c+mf/+6YL45P1lzApIP0PR+DkyogdBHeqTZcBSxXpVS+
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org