Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/9EZsyf6ZoTbbwscOlPc1CNv5RJU.roa
File: 9EZsyf6ZoTbbwscOlPc1CNv5RJU.roa (raw, json)
Hash identifier: oYxtACU1ekEoF1cgUkETmRanG5reFi1HUdq1tJnPJrw=
Subject key identifier: F4:46:6C:C9:FE:99:A1:36:DB:C2:C7:0E:94:F7:35:08:DB:F9:44:95
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0994
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/9EZsyf6ZoTbbwscOlPc1CNv5RJU.roa
Signing time: Thu 30 Sep 2021 13:11:24 +0000
ROA not before: Thu 30 Sep 2021 13:11:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131596
IP address blocks: 116.241.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2452 (0x994)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 30 13:11:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F4466CC9FE99A136DBC2C70E94F73508DBF94495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:38:e6:3c:71:92:f3:6d:08:31:9f:d3:b0:45:
00:97:94:c1:16:cf:71:3f:8c:7b:8f:be:72:74:e9:
28:36:dc:ef:6d:9d:47:f8:51:89:5f:06:89:f8:33:
fe:67:72:ba:e3:e2:ba:9b:ac:6f:a9:59:c2:d6:37:
93:0e:7c:0f:ca:ec:73:e7:e5:b0:67:f9:11:5c:89:
a6:54:fe:3a:16:da:5f:51:76:a7:21:b8:d3:ae:a9:
49:7a:7e:04:56:ec:6c:dd:70:85:f8:dc:a5:04:da:
1b:81:ec:f4:bf:18:e9:9b:63:c9:8e:16:f1:79:f2:
e9:34:1a:69:6b:17:f8:23:34:eb:82:7d:91:25:6a:
a4:bb:9b:f2:9e:dd:d8:71:8d:16:c4:de:80:75:ad:
00:05:f9:11:2f:f0:51:11:8b:a0:0e:bb:fd:b2:90:
48:3d:7e:64:ad:cb:be:4a:10:37:ce:b8:16:73:ad:
4c:67:6f:03:7c:e0:4d:a3:cb:9a:57:dd:8a:97:f2:
78:c3:3c:c6:5d:36:6f:b0:da:a0:dc:25:6c:38:06:
06:99:40:cc:37:c3:23:54:ea:03:8b:70:a5:cc:68:
ba:28:f1:c5:a0:07:d6:64:8d:fe:94:04:85:0d:53:
f1:cd:af:4f:0e:d7:5c:b7:45:f4:a3:dd:ee:e0:98:
a5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:46:6C:C9:FE:99:A1:36:DB:C2:C7:0E:94:F7:35:08:DB:F9:44:95
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/9EZsyf6ZoTbbwscOlPc1CNv5RJU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.241.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8e:00:66:d4:88:6b:15:45:f3:c5:fc:9c:de:67:a7:31:90:e1:
d9:85:c8:e2:20:69:75:30:19:c7:88:9e:91:a6:77:e4:59:ca:
ae:dc:f2:f6:59:3a:14:45:66:88:1c:8f:41:8e:c0:a4:e3:75:
6d:a3:c4:cf:1b:c0:71:98:71:0a:97:bd:0a:35:5f:8c:2f:7a:
d8:da:95:c5:ff:a5:c7:f6:8d:b4:a3:6b:6d:1d:b5:e2:fc:d1:
a8:2c:49:48:67:75:02:8d:d7:e1:4d:e9:1d:28:28:59:f4:33:
4d:65:7b:ba:42:a3:6a:da:01:60:63:d0:5f:b8:4f:4c:8a:f1:
7b:f6:53:f7:38:d9:6f:cf:dc:4f:6b:73:b4:21:37:9d:46:cb:
62:95:59:ae:77:da:82:33:1f:00:78:17:f3:ee:26:15:be:30:
49:05:4d:39:da:49:3c:dd:08:94:72:6b:80:34:14:ea:7d:e1:
30:b9:c7:f7:a6:16:38:99:0f:6b:03:8f:5f:f5:8f:c4:4e:5c:
7e:d5:f8:d1:d4:f0:af:7a:f8:d0:fb:bc:d9:af:63:4f:81:b5:
04:21:f2:4e:e1:d5:b8:54:e7:73:3b:f8:ac:a3:a2:46:3f:ed:
99:c1:4d:5a:8f:8a:64:ed:39:10:de:0d:77:3e:42:a7:aa:13:
e9:b0:5f:f5
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCZQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yMTA5MzAx
MzExMjRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEY0NDY2Q0M5RkU5OUEx
MzZEQkMyQzcwRTk0RjczNTA4REJGOTQ0OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCbOOY8cZLzbQgxn9OwRQCXlMEWz3E/jHuPvnJ06Sg23O9tnUf4
UYlfBon4M/5ncrrj4rqbrG+pWcLWN5MOfA/K7HPn5bBn+RFciaZU/joW2l9Rdqch
uNOuqUl6fgRW7GzdcIX43KUE2huB7PS/GOmbY8mOFvF58uk0GmlrF/gjNOuCfZEl
aqS7m/Ke3dhxjRbE3oB1rQAF+REv8FERi6AOu/2ykEg9fmSty75KEDfOuBZzrUxn
bwN84E2jy5pX3YqX8njDPMZdNm+w2qDcJWw4BgaZQMw3wyNU6gOLcKXMaLoo8cWg
B9Zkjf6UBIUNU/HNr08O11y3RfSj3e7gmKWPAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU9EZsyf6ZoTbbwscOlPc1CNv5RJUwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS85RVpzeWY2Wm9UYmJ3c2NPbFBj
MUNOdjVSSlUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAdPEw
DQYJKoZIhvcNAQELBQADggEBAI4AZtSIaxVF88X8nN5npzGQ4dmFyOIgaXUwGceI
npGmd+RZyq7c8vZZOhRFZogcj0GOwKTjdW2jxM8bwHGYcQqXvQo1X4wvetjalcX/
pcf2jbSja20dteL80agsSUhndQKN1+FN6R0oKFn0M01le7pCo2raAWBj0F+4T0yK
8Xv2U/c42W/P3E9rc7QhN51Gy2KVWa532oIzHwB4F/PuJhW+MEkFTTnaSTzdCJRy
a4A0FOp94TC5x/emFjiZD2sDj1/1j8ROXH7V+NHU8K96+ND7vNmvY0+BtQQh8k7h
1bhU53M7+KyjokY/7ZnBTVqPimTtORDeDXc+QqeqE+mwX/U=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org