Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/MCw9kf2-e3M-SiaIckK7aM48f6o.roa
File: MCw9kf2-e3M-SiaIckK7aM48f6o.roa (raw, json)
Hash identifier: Zdj6HipGkx7u2LS/olr0Snw4iakRsixNlR0SKZ0+ITc=
Subject key identifier: 30:2C:3D:91:FD:BE:7B:73:3E:4A:26:88:72:42:BB:68:CE:3C:7F:AA
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 098B
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/MCw9kf2-e3M-SiaIckK7aM48f6o.roa
Signing time: Wed 29 Sep 2021 02:52:30 +0000
ROA not before: Wed 29 Sep 2021 02:52:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131596
IP address blocks: 123.110.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2443 (0x98b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 02:52:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=302C3D91FDBE7B733E4A26887242BB68CE3C7FAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1f:76:e3:b7:b9:e4:61:ad:7c:ee:5a:99:9b:
26:4f:ec:49:6a:d4:a5:6e:12:17:bb:a8:d8:ab:08:
33:47:bc:2c:89:4e:0a:77:41:de:f5:01:b0:ed:88:
63:d3:ff:b2:ca:39:a2:09:96:d6:90:89:10:3f:1d:
f3:25:e7:1c:05:67:59:96:57:0a:31:68:d9:13:e1:
f3:ab:d3:93:34:89:5a:50:29:4f:48:28:31:25:59:
b4:bb:e3:e0:a3:23:6d:1a:22:c5:c0:48:da:03:11:
6a:ca:ad:a6:ce:4b:99:1f:4b:bf:61:fd:1d:13:22:
59:96:28:b4:38:f2:04:5a:af:10:dd:08:be:26:7a:
17:c5:9b:99:24:1d:a9:5b:b7:f2:e2:1e:ed:50:b0:
52:ba:01:3d:d2:e9:0d:71:19:86:df:ef:7f:03:23:
de:7a:ec:82:2b:90:4d:be:4d:22:0f:4e:75:e7:42:
7d:e6:5c:a4:6a:05:10:59:f2:92:0a:32:c3:bd:ed:
a9:88:26:1e:1a:27:d6:c3:c0:57:4d:7e:1f:03:d9:
6e:6f:79:22:7e:2b:22:9a:23:33:0f:a0:65:49:be:
91:54:c3:fe:ef:df:2c:e1:10:76:5c:42:c9:33:a6:
6c:69:6f:8b:d7:d5:df:c0:1f:82:ba:de:ba:72:50:
4b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:2C:3D:91:FD:BE:7B:73:3E:4A:26:88:72:42:BB:68:CE:3C:7F:AA
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/MCw9kf2-e3M-SiaIckK7aM48f6o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4e:51:49:7e:4a:29:96:b2:b5:f2:03:84:fc:65:c0:de:9d:8d:
d0:f1:7f:2a:71:15:c1:97:f5:5e:df:c5:92:b1:dc:d3:7c:f4:
63:21:3f:c3:b4:c0:fd:64:86:41:87:17:f7:29:c0:3a:8c:0a:
84:97:33:d1:a7:72:3e:3a:06:14:13:c0:87:32:0e:02:a1:08:
67:cb:1e:42:01:e2:a9:24:52:20:d2:9b:c8:21:5c:10:63:6c:
08:e7:c1:39:75:0f:52:97:3d:f7:2c:32:3a:76:06:03:d4:1b:
eb:b0:e0:d9:24:0e:71:ac:c6:f5:b8:04:54:cc:08:3d:0e:00:
d5:45:9c:e2:f6:84:94:fe:ab:81:ed:99:11:5b:aa:cf:7a:54:
0d:4a:29:4f:39:95:ae:16:6d:9c:59:42:cc:a6:6e:12:d6:d2:
61:8e:57:1f:2c:48:e7:59:fb:39:38:57:97:ba:d7:72:ff:d8:
b8:df:1d:80:44:9a:97:b4:d6:ec:ec:0c:fd:05:d0:f0:d9:11:
60:db:ea:d1:cd:7b:df:12:a3:e9:27:3a:32:ad:d6:33:e0:ef:
0f:60:eb:15:e4:42:06:57:59:5a:45:08:ac:2d:67:b1:93:96:
21:af:24:e1:6e:7e:71:03:27:9a:cb:12:4d:dd:36:a8:5d:a0:
d2:b3:9f:71
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCYswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yMTA5Mjkw
MjUyMzBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDMwMkMzRDkxRkRCRTdC
NzMzRTRBMjY4ODcyNDJCQjY4Q0UzQzdGQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQChH3bjt7nkYa187lqZmyZP7Elq1KVuEhe7qNirCDNHvCyJTgp3
Qd71AbDtiGPT/7LKOaIJltaQiRA/HfMl5xwFZ1mWVwoxaNkT4fOr05M0iVpQKU9I
KDElWbS74+CjI20aIsXASNoDEWrKrabOS5kfS79h/R0TIlmWKLQ48gRarxDdCL4m
ehfFm5kkHalbt/LiHu1QsFK6AT3S6Q1xGYbf738DI9567IIrkE2+TSIPTnXnQn3m
XKRqBRBZ8pIKMsO97amIJh4aJ9bDwFdNfh8D2W5veSJ+KyKaIzMPoGVJvpFUw/7v
3yzhEHZcQskzpmxpb4vX1d/AH4K63rpyUEuFAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUMCw9kf2+e3M+SiaIckK7aM48f6owHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9NQ3c5a2YyLWUzTS1TaWFJY2tL
N2FNNDhmNm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAe24w
DQYJKoZIhvcNAQELBQADggEBAE5RSX5KKZaytfIDhPxlwN6djdDxfypxFcGX9V7f
xZKx3NN89GMhP8O0wP1khkGHF/cpwDqMCoSXM9Gncj46BhQTwIcyDgKhCGfLHkIB
4qkkUiDSm8ghXBBjbAjnwTl1D1KXPfcsMjp2BgPUG+uw4NkkDnGsxvW4BFTMCD0O
ANVFnOL2hJT+q4HtmRFbqs96VA1KKU85la4WbZxZQsymbhLW0mGOVx8sSOdZ+zk4
V5e613L/2LjfHYBEmpe01uzsDP0F0PDZEWDb6tHNe98So+knOjKt1jPg7w9g6xXk
QgZXWVpFCKwtZ7GTliGvJOFufnEDJ5rLEk3dNqhdoNKzn3E=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org