Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_BBpU8Oseu_cGlpygxRgPK4tlpI.roa
File: _BBpU8Oseu_cGlpygxRgPK4tlpI.roa (raw, json)
Hash identifier: 8ycQC9obt/R7Q9ikaMLfATCQEr817KM7geb4GZK/6wA=
Subject key identifier: FC:10:69:53:C3:AC:7A:EF:DC:1A:5A:72:83:14:60:3C:AE:2D:96:92
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 077F
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_BBpU8Oseu_cGlpygxRgPK4tlpI.roa
Signing time: Tue 29 Sep 2020 09:59:56 +0000
ROA not before: Tue 29 Sep 2020 09:59:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 123.240.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1919 (0x77f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 09:59:56 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FC106953C3AC7AEFDC1A5A728314603CAE2D9692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:07:74:b6:d6:8d:22:4f:e4:dc:0e:c6:0b:27:
89:0f:49:d2:42:5b:ab:71:1c:1f:69:ca:11:f5:a4:
26:58:43:68:28:b0:e2:e8:ac:2f:1a:56:3b:53:72:
d7:cc:bd:37:54:63:dd:61:97:bb:eb:5b:14:c7:eb:
c9:de:6d:4d:db:52:2d:6b:7e:e8:b9:d6:f1:bc:17:
62:87:62:f8:63:c5:13:88:e7:da:ac:e7:95:17:e8:
0f:00:1b:67:68:c2:f5:ad:ea:20:c8:3e:68:68:01:
83:06:fc:74:b8:34:1c:45:e6:6c:11:53:18:20:02:
01:17:52:bf:74:84:b3:21:fd:01:10:71:79:36:62:
e1:9d:c5:7e:01:11:45:6d:0a:01:f7:a2:4a:39:82:
ff:8f:2c:11:52:ca:3f:b4:59:f2:e4:aa:a5:9e:61:
68:67:0a:0d:e2:94:d5:d6:ab:eb:2f:cd:c4:cd:ad:
a1:b6:47:23:7f:fb:ea:65:cd:9a:1d:cc:1f:9e:59:
8d:12:6b:68:b2:da:d7:a6:8f:e2:45:6b:78:d4:78:
9b:1d:09:bf:23:a0:02:91:97:26:2c:1c:2c:d5:e3:
6a:f2:51:d0:48:62:44:03:65:e7:e5:19:55:39:56:
d8:c6:59:c6:ef:51:d5:1e:5d:d0:82:db:8b:3d:3b:
79:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:10:69:53:C3:AC:7A:EF:DC:1A:5A:72:83:14:60:3C:AE:2D:96:92
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_BBpU8Oseu_cGlpygxRgPK4tlpI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.240.0.0/15
Signature Algorithm: sha256WithRSAEncryption
00:bd:bf:72:2c:6b:2c:d3:ef:0d:4b:ce:17:0c:c7:91:ff:a2:
74:55:12:40:fc:95:1b:8c:a5:50:c3:9b:e9:a1:88:f4:34:eb:
b1:31:33:a3:a4:1c:7e:4c:d4:8b:6c:63:da:c8:1c:46:ce:65:
ad:d3:0d:9e:18:7d:87:9d:03:bf:2c:92:cb:60:b9:bc:3a:05:
c6:ac:5d:0d:a6:c5:b5:3a:17:ae:17:74:68:69:06:6a:8c:c8:
89:40:81:95:12:cc:59:09:b8:23:f3:dc:fd:29:d3:92:c4:cb:
08:5a:84:15:38:d1:f4:d1:ae:45:54:d2:29:29:f6:85:f8:9c:
f7:9b:e2:bc:b9:a6:8f:52:5f:ea:92:88:82:28:2e:80:ba:1d:
ce:94:34:b9:d2:e1:80:9d:23:d3:a3:0e:46:4f:cc:63:48:2b:
06:75:61:52:2f:76:79:26:ac:e1:ca:66:fd:f9:9f:34:1d:2e:
a7:83:d2:d5:57:28:b9:80:9d:e6:25:e7:d7:93:0a:7a:bc:e8:
16:dd:13:7e:51:82:eb:1c:da:8d:f8:7b:02:7e:ca:a6:08:a8:
6b:88:44:94:a2:a1:1d:d0:65:6c:d1:8a:4c:10:36:80:85:d9:
e7:93:1f:82:8c:2a:92:8e:8c:1b:c6:99:aa:3c:e3:7c:69:b4:
04:f4:c3:f1
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICB38wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yMDA5Mjkw
OTU5NTZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEZDMTA2OTUzQzNBQzdB
RUZEQzFBNUE3MjgzMTQ2MDNDQUUyRDk2OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdB3S21o0iT+TcDsYLJ4kPSdJCW6txHB9pyhH1pCZYQ2gosOLo
rC8aVjtTctfMvTdUY91hl7vrWxTH68nebU3bUi1rfui51vG8F2KHYvhjxROI59qs
55UX6A8AG2dowvWt6iDIPmhoAYMG/HS4NBxF5mwRUxggAgEXUr90hLMh/QEQcXk2
YuGdxX4BEUVtCgH3oko5gv+PLBFSyj+0WfLkqqWeYWhnCg3ilNXWq+svzcTNraG2
RyN/++plzZodzB+eWY0Sa2iy2temj+JFa3jUeJsdCb8joAKRlyYsHCzV42ryUdBI
YkQDZeflGVU5VtjGWcbvUdUeXdCC24s9O3kRAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU/BBpU8Oseu/cGlpygxRgPK4tlpIwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9fQkJwVThPc2V1X2NHbHB5Z3hS
Z1BLNHRscEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBe/Aw
DQYJKoZIhvcNAQELBQADggEBAAC9v3IsayzT7w1LzhcMx5H/onRVEkD8lRuMpVDD
m+mhiPQ067ExM6OkHH5M1ItsY9rIHEbOZa3TDZ4YfYedA78skstgubw6BcasXQ2m
xbU6F64XdGhpBmqMyIlAgZUSzFkJuCPz3P0p05LEywhahBU40fTRrkVU0ikp9oX4
nPeb4ry5po9SX+qSiIIoLoC6Hc6UNLnS4YCdI9OjDkZPzGNIKwZ1YVIvdnkmrOHK
Zv35nzQdLqeD0tVXKLmAneYl59eTCnq86BbdE35Rgusc2o34ewJ+yqYIqGuIRJSi
oR3QZWzRikwQNoCF2eeTH4KMKpKOjBvGmao843xptAT0w/E=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org