Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/zg7qcUwFSbEpuG4fKoGhN9Gwnzw.roa
File: zg7qcUwFSbEpuG4fKoGhN9Gwnzw.roa (raw, json)
Hash identifier: 1bgESWJ6g82wHtw/OlkUU1lF0VchlY4qEy1XDjeVgIk=
Subject key identifier: CE:0E:EA:71:4C:05:49:B1:29:B8:6E:1F:2A:81:A1:37:D1:B0:9F:3C
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0802
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zg7qcUwFSbEpuG4fKoGhN9Gwnzw.roa
Signing time: Tue 29 Sep 2020 10:06:43 +0000
ROA not before: Tue 29 Sep 2020 10:06:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 2001:288::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2050 (0x802)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 10:06:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CE0EEA714C0549B129B86E1F2A81A137D1B09F3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:46:8e:fa:50:70:e3:14:d8:ce:dc:6e:60:1b:
e5:c6:cb:fa:f9:2a:40:3a:93:72:7e:cc:c7:9e:7b:
92:9f:69:55:55:ad:97:10:4e:0b:81:73:50:04:c0:
c6:d9:1d:d9:f3:b5:24:a0:31:1a:e1:f6:b9:b1:91:
d2:bb:45:68:54:af:ac:59:9b:c5:3d:33:79:90:64:
a2:01:1a:5c:5d:2b:a7:f0:d0:66:63:8e:e9:d9:ca:
7b:76:d2:e5:be:75:ab:f9:cb:ac:b7:d6:ff:6e:37:
d2:7a:4e:cc:c6:67:4e:47:57:fa:0d:87:db:ea:27:
6f:b7:87:fd:30:5e:02:09:e9:9e:4b:0b:a7:68:1c:
ea:5a:6b:3d:49:48:46:2f:4e:56:92:f9:95:18:5b:
62:ab:3d:55:f3:e9:bb:f1:95:d7:ba:ae:b5:e6:e8:
98:aa:4e:89:82:a7:fe:fc:8c:81:a6:29:48:28:33:
5c:6b:d8:2c:80:7f:76:b6:a6:0b:fe:1a:22:3e:48:
36:96:ea:7d:21:ce:cc:9e:f4:e3:28:47:e2:4d:89:
5d:e3:46:f2:59:c2:af:c6:ea:59:66:3e:a5:2d:6d:
80:dc:e0:b7:83:c2:46:33:0c:e9:67:b5:88:0b:65:
54:0b:55:e3:d6:e5:f4:53:23:74:fb:e2:54:35:fe:
d0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:0E:EA:71:4C:05:49:B1:29:B8:6E:1F:2A:81:A1:37:D1:B0:9F:3C
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zg7qcUwFSbEpuG4fKoGhN9Gwnzw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:288::/32
Signature Algorithm: sha256WithRSAEncryption
2a:58:a3:bd:1f:fa:ac:bc:4f:59:df:ff:a0:a4:d5:7d:4e:84:
84:e3:7c:eb:69:f1:da:01:57:8a:a8:7e:3e:b5:27:d9:05:b8:
c1:29:5a:39:ee:a3:ed:83:54:ea:ba:4d:28:f3:41:6b:21:db:
4e:c0:3b:43:ab:1d:cf:58:bf:28:13:82:2a:3c:8e:5b:bb:a3:
dc:b3:b3:08:24:d4:d8:02:39:db:fa:d8:1d:ef:9e:7b:ae:b6:
4f:c9:3c:2e:1e:c2:62:5f:38:14:6f:13:b3:15:12:be:39:2e:
5d:77:aa:7e:4e:76:b5:0a:c4:43:ec:be:fb:10:11:99:e1:3c:
ea:62:d9:a1:d3:9a:18:af:ee:0e:ec:d0:66:f3:b7:3e:b4:9a:
40:1b:af:bb:34:69:26:b6:70:dd:db:00:4a:97:e8:83:ea:fb:
96:5e:1c:d5:f7:cd:0c:1b:1c:dc:0f:c1:1b:f9:3a:61:60:e7:
0b:93:8b:7e:91:ff:08:1f:22:53:48:9e:3c:22:34:4c:7d:0d:
47:63:df:29:0a:2a:85:10:20:4c:a2:62:e4:8a:2b:f5:70:7e:
60:3c:59:02:44:31:3b:49:bd:f5:a1:14:f7:f3:4f:4e:8a:1a:
f4:c6:c1:67:7e:1a:be:9e:42:e7:e9:56:a1:03:97:c7:b5:51:
ef:3d:26:19
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICCAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMDA5Mjkx
MDA2NDNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKENFMEVFQTcxNEMwNTQ5
QjEyOUI4NkUxRjJBODFBMTM3RDFCMDlGM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDRo76UHDjFNjO3G5gG+XGy/r5KkA6k3J+zMeee5KfaVVVrZcQ
TguBc1AEwMbZHdnztSSgMRrh9rmxkdK7RWhUr6xZm8U9M3mQZKIBGlxdK6fw0GZj
junZynt20uW+dav5y6y31v9uN9J6TszGZ05HV/oNh9vqJ2+3h/0wXgIJ6Z5LC6do
HOpaaz1JSEYvTlaS+ZUYW2KrPVXz6bvxlde6rrXm6JiqTomCp/78jIGmKUgoM1xr
2CyAf3a2pgv+GiI+SDaW6n0hzsye9OMoR+JNiV3jRvJZwq/G6llmPqUtbYDc4LeD
wkYzDOlntYgLZVQLVePW5fRTI3T74lQ1/tB5AgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUzg7qcUwFSbEpuG4fKoGhN9GwnzwwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC96ZzdxY1V3RlNiRXB1RzRmS29H
aE45R3duencucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAEC
iDANBgkqhkiG9w0BAQsFAAOCAQEAKlijvR/6rLxPWd//oKTVfU6EhON862nx2gFX
iqh+PrUn2QW4wSlaOe6j7YNU6rpNKPNBayHbTsA7Q6sdz1i/KBOCKjyOW7uj3LOz
CCTU2AI52/rYHe+ee662T8k8Lh7CYl84FG8TsxUSvjkuXXeqfk52tQrEQ+y++xAR
meE86mLZodOaGK/uDuzQZvO3PrSaQBuvuzRpJrZw3dsASpfog+r7ll4c1ffNDBsc
3A/BG/k6YWDnC5OLfpH/CB8iU0iePCI0TH0NR2PfKQoqhRAgTKJi5Ior9XB+YDxZ
AkQxO0m99aEU9/NPTooa9MbBZ34avp5C5+lWoQOXx7VR7z0mGQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org