Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/4neTEVxYsRcBRRoshHClYxHAIsc.roa
File: 4neTEVxYsRcBRRoshHClYxHAIsc.roa (raw, json)
Hash identifier: jKlv6wWlb86R9n1NDQl99g6gS3+rN/cHl2GyV+igsXo=
Subject key identifier: E2:77:93:11:5C:58:B1:17:01:45:1A:2C:84:70:A5:63:11:C0:22:C7
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 08DB
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/4neTEVxYsRcBRRoshHClYxHAIsc.roa
Signing time: Sun 07 Feb 2021 11:53:54 +0000
ROA not before: Sun 07 Feb 2021 11:53:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 123.110.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2267 (0x8db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 7 11:53:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E27793115C58B11701451A2C8470A56311C022C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:82:47:b5:c4:61:9c:77:83:d0:0e:fd:06:05:
12:c6:89:fa:82:42:0f:a0:b5:ba:92:61:94:fe:1a:
0b:ec:fc:47:29:c7:9a:8f:20:94:a5:26:2e:70:a9:
13:22:f6:88:ac:11:17:3d:5c:a7:8a:c4:a3:51:29:
0a:23:9e:83:26:b2:9f:4c:f6:71:64:0c:6e:59:a1:
8e:49:8f:9c:10:cf:d7:bc:2d:77:0d:3d:51:d8:11:
d5:06:b3:75:84:76:63:1d:79:a7:19:4d:8f:6b:76:
97:46:83:7f:a1:95:4d:9f:c8:8d:47:ec:5a:f0:b8:
15:f2:42:1e:a4:6e:53:35:0e:74:5c:36:39:b9:db:
ea:5c:36:92:04:82:a0:d4:64:02:80:6a:e5:b4:52:
a4:c9:04:4e:d7:f2:6f:b1:94:0d:d8:58:96:32:28:
f6:06:aa:3e:d1:c2:02:be:37:36:51:78:07:35:95:
02:8d:52:8f:a7:3a:43:e4:1a:15:82:e2:2b:53:99:
c4:58:d1:3c:7d:f5:b1:2e:b3:d8:82:5d:6c:e9:c4:
63:c1:72:e0:c8:b0:cd:06:9f:d5:6a:63:01:59:9b:
41:08:dc:e4:39:ab:1d:4c:5e:c1:7b:3e:6f:01:e7:
ea:04:33:ae:dc:43:f2:61:42:da:22:56:10:75:47:
e5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:77:93:11:5C:58:B1:17:01:45:1A:2C:84:70:A5:63:11:C0:22:C7
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/4neTEVxYsRcBRRoshHClYxHAIsc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
63:f8:63:7a:18:e9:2a:31:a2:ec:66:60:b2:c8:ee:12:3a:da:
ce:ed:74:27:8e:19:5e:5b:a1:3d:33:3c:e8:27:86:85:54:ff:
f2:ae:49:49:b1:13:9b:2b:76:c7:32:6f:c0:d7:6c:ca:16:5b:
2a:35:e2:a1:65:35:39:91:e4:f6:f2:16:ce:bf:e1:11:8a:d3:
ef:41:8f:c1:68:28:45:07:72:3e:5d:65:bc:83:51:f4:45:d3:
f1:7e:8a:9b:50:51:82:ed:34:b6:b3:0c:b9:2a:2f:31:ac:e4:
5a:02:1f:f1:eb:a1:38:af:ac:57:c4:52:f0:fc:2a:ec:db:3b:
d9:c7:b4:ee:30:3e:0b:33:00:16:63:09:68:52:28:0f:97:48:
3b:73:af:ff:24:d6:08:49:b9:c1:24:62:53:67:25:39:f6:5a:
c5:ab:cd:60:c8:ad:25:30:7e:73:a7:23:87:f6:a5:d8:af:3d:
9a:6d:f5:e1:7a:69:52:1f:33:ec:9f:a6:e3:e1:16:d2:29:76:
50:a9:7d:90:30:19:65:3d:25:18:68:cc:a1:d6:ec:ae:74:fe:
e8:0d:ea:a0:f9:56:40:8a:62:96:26:06:b5:52:0f:e5:4e:f3:
f1:26:c0:b8:50:f8:c6:af:52:28:22:6d:47:17:53:ba:fd:a4:
d1:f7:93:b6
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCNswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yMTAyMDcx
MTUzNTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEUyNzc5MzExNUM1OEIx
MTcwMTQ1MUEyQzg0NzBBNTYzMTFDMDIyQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9gke1xGGcd4PQDv0GBRLGifqCQg+gtbqSYZT+Ggvs/Ecpx5qP
IJSlJi5wqRMi9oisERc9XKeKxKNRKQojnoMmsp9M9nFkDG5ZoY5Jj5wQz9e8LXcN
PVHYEdUGs3WEdmMdeacZTY9rdpdGg3+hlU2fyI1H7FrwuBXyQh6kblM1DnRcNjm5
2+pcNpIEgqDUZAKAauW0UqTJBE7X8m+xlA3YWJYyKPYGqj7RwgK+NzZReAc1lQKN
Uo+nOkPkGhWC4itTmcRY0Tx99bEus9iCXWzpxGPBcuDIsM0Gn9VqYwFZm0EI3OQ5
qx1MXsF7Pm8B5+oEM67cQ/JhQtoiVhB1R+WxAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU4neTEVxYsRcBRRoshHClYxHAIscwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS80bmVURVZ4WXNSY0JSUm9zaEhD
bFl4SEFJc2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAe24w
DQYJKoZIhvcNAQELBQADggEBAGP4Y3oY6SoxouxmYLLI7hI62s7tdCeOGV5boT0z
POgnhoVU//KuSUmxE5srdscyb8DXbMoWWyo14qFlNTmR5PbyFs6/4RGK0+9Bj8Fo
KEUHcj5dZbyDUfRF0/F+iptQUYLtNLazDLkqLzGs5FoCH/HroTivrFfEUvD8Kuzb
O9nHtO4wPgszABZjCWhSKA+XSDtzr/8k1ghJucEkYlNnJTn2WsWrzWDIrSUwfnOn
I4f2pdivPZpt9eF6aVIfM+yfpuPhFtIpdlCpfZAwGWU9JRhozKHW7K50/ugN6qD5
VkCKYpYmBrVSD+VO8/EmwLhQ+MavUigibUcXU7r9pNH3k7Y=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:27 2025 by rpki-client