Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/uEZaVa4z-HWl2wTk9rFHHEx_-Tg.roa
File: uEZaVa4z-HWl2wTk9rFHHEx_-Tg.roa (raw, json)
Hash identifier: AUrDlsCEx+amIj0UBOUCLCrpRTdMI7kE4wq7KjpBRIc=
Subject key identifier: B8:46:5A:55:AE:33:F8:75:A5:DB:04:E4:F6:B1:47:1C:4C:7F:F9:38
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09EC
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/uEZaVa4z-HWl2wTk9rFHHEx_-Tg.roa
Signing time: Sun 07 Feb 2021 12:39:32 +0000
ROA not before: Sun 07 Feb 2021 12:39:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 203.64.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2540 (0x9ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B8465A55AE33F875A5DB04E4F6B1471C4C7FF938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ac:34:b5:27:2a:9a:f6:1d:ea:74:9d:da:d6:
4f:01:51:b6:c2:3c:8f:f0:cd:ec:e0:68:0a:b0:42:
89:3a:b5:30:84:d3:d8:e8:b1:80:12:d2:96:4c:14:
6a:2d:cf:8c:10:5a:ac:c2:a6:83:d1:18:70:8b:68:
c5:33:c7:86:dd:84:59:33:37:36:40:0f:0f:b9:ab:
93:50:7b:34:f0:83:e7:fa:ec:f2:52:55:0f:93:e4:
2a:c3:ca:a4:0a:5e:f3:10:5d:2b:15:0a:a1:6f:61:
9c:93:bc:a7:2b:0e:46:e5:01:f7:2a:96:97:35:45:
b8:d1:84:94:f0:33:0a:7d:50:5a:9c:a1:47:52:b6:
05:ad:d6:83:15:3b:1b:61:93:da:77:f8:b7:91:0b:
50:c3:d6:ee:70:cf:91:35:69:b2:c2:d7:f9:da:df:
91:a7:d5:4a:1f:a3:b3:ba:95:2f:01:22:a8:e9:98:
bb:04:53:9e:93:ec:33:ec:ee:d9:ba:44:c4:67:4e:
a2:5b:92:90:13:ab:b3:0a:3b:8d:8b:6b:b4:a9:1f:
e0:2c:d2:d6:2a:24:4d:4a:e4:65:cb:df:38:a4:ed:
e5:99:70:a5:33:32:8a:bc:48:7d:7a:93:47:b3:91:
f0:6e:cc:e9:42:08:64:9a:3e:04:dd:95:14:9e:17:
c2:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:46:5A:55:AE:33:F8:75:A5:DB:04:E4:F6:B1:47:1C:4C:7F:F9:38
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/uEZaVa4z-HWl2wTk9rFHHEx_-Tg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
56:75:3a:4d:fd:70:d6:bb:bf:5b:4e:b1:63:66:50:a8:03:93:
84:cf:24:5b:8d:2e:79:f6:38:48:ca:9a:c3:68:f3:39:c6:92:
81:d5:28:db:97:93:0c:17:0c:ff:46:d0:0e:1e:92:94:8f:8c:
7b:7b:86:61:aa:fb:ed:b1:5f:25:07:c8:f8:05:93:e9:c1:b3:
20:13:50:65:cd:2c:fb:d1:fd:e8:58:3d:48:14:ea:59:da:06:
6b:bb:78:c6:40:31:a9:47:d6:49:98:b2:7f:70:13:2a:9d:eb:
59:2c:81:f7:c8:e5:71:f7:c2:44:1a:ca:e1:d1:ff:f5:8f:2c:
28:0d:ad:09:03:ea:bb:aa:36:56:8e:b7:b0:83:ca:5e:f1:13:
4e:53:f9:60:33:c0:3c:25:3c:f1:3e:aa:bc:20:9d:9b:68:6d:
ae:97:49:e3:4f:51:b9:50:c6:63:4e:5e:3e:ac:13:b0:b9:24:
27:e7:ec:a6:44:ea:5a:00:ce:12:f0:a1:c7:97:7a:8c:b3:fc:
ac:f1:2d:91:ac:25:69:9f:90:7d:f2:53:51:4b:7c:0c:cb:79:
46:7c:a6:39:3e:2b:69:2d:1a:42:88:d7:21:21:69:34:0f:0a:
df:7c:03:fd:9b:80:b4:09:89:d2:78:03:15:74:67:b1:bf:4c:
df:dc:92:58
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMTAyMDcx
MjM5MzJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEI4NDY1QTU1QUUzM0Y4
NzVBNURCMDRFNEY2QjE0NzFDNEM3RkY5MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFrDS1Jyqa9h3qdJ3a1k8BUbbCPI/wzezgaAqwQok6tTCE09jo
sYAS0pZMFGotz4wQWqzCpoPRGHCLaMUzx4bdhFkzNzZADw+5q5NQezTwg+f67PJS
VQ+T5CrDyqQKXvMQXSsVCqFvYZyTvKcrDkblAfcqlpc1RbjRhJTwMwp9UFqcoUdS
tgWt1oMVOxthk9p3+LeRC1DD1u5wz5E1abLC1/na35Gn1Uofo7O6lS8BIqjpmLsE
U56T7DPs7tm6RMRnTqJbkpATq7MKO42La7SpH+As0tYqJE1K5GXL3zik7eWZcKUz
Moq8SH16k0ezkfBuzOlCCGSaPgTdlRSeF8LPAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUuEZaVa4z+HWl2wTk9rFHHEx/+TgwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC91RVphVmE0ei1IV2wyd1RrOXJG
SEhFeF8tVGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0Aw
DQYJKoZIhvcNAQELBQADggEBAFZ1Ok39cNa7v1tOsWNmUKgDk4TPJFuNLnn2OEjK
msNo8znGkoHVKNuXkwwXDP9G0A4ekpSPjHt7hmGq++2xXyUHyPgFk+nBsyATUGXN
LPvR/ehYPUgU6lnaBmu7eMZAMalH1kmYsn9wEyqd61ksgffI5XH3wkQayuHR//WP
LCgNrQkD6ruqNlaOt7CDyl7xE05T+WAzwDwlPPE+qrwgnZtoba6XSeNPUblQxmNO
Xj6sE7C5JCfn7KZE6loAzhLwoceXeoyz/KzxLZGsJWmfkH3yU1FLfAzLeUZ8pjk+
K2ktGkKI1yEhaTQPCt98A/2bgLQJidJ4AxV0Z7G/TN/cklg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org