Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/rqhxxesFSJEyhtPfgg5iaTF5XDs.roa
File: rqhxxesFSJEyhtPfgg5iaTF5XDs.roa (raw, json)
Hash identifier: dRUZ54HBogq/jrh0zhLu0flp6rHpuAdwZK8BWNLzt6A=
Subject key identifier: AE:A8:71:C5:EB:05:48:91:32:86:D3:DF:82:0E:62:69:31:79:5C:3B
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 08D9
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/rqhxxesFSJEyhtPfgg5iaTF5XDs.roa
Signing time: Sun 07 Feb 2021 11:53:53 +0000
ROA not before: Sun 07 Feb 2021 11:53:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 123.0.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2265 (0x8d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 7 11:53:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AEA871C5EB0548913286D3DF820E626931795C3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b8:c6:9b:1e:7b:31:6f:d2:96:ac:44:41:24:
40:1a:cd:e2:89:41:2a:26:b9:c2:8c:9b:4e:a6:a2:
58:9f:eb:bc:99:69:e1:e1:f7:f7:62:f1:6f:e8:3a:
6d:cc:be:a1:77:da:15:38:5c:0e:7b:2a:f5:29:7d:
86:70:de:bd:54:a8:9e:28:25:ea:67:29:a4:55:11:
7b:91:35:40:3b:92:3a:63:e2:8d:b6:36:17:45:fb:
ce:67:94:8f:1a:68:e9:75:74:72:88:18:d9:d0:ff:
aa:55:18:c9:2c:96:60:bd:47:23:a1:bd:ad:76:c1:
5d:1b:e1:dd:c0:3b:6a:cd:26:5c:8d:ca:f7:bd:5a:
5f:88:b1:75:19:4c:49:91:66:b1:81:45:87:02:2c:
3a:f3:e3:93:4f:f2:a4:e3:a2:9b:65:5c:f5:71:ba:
62:49:44:4d:74:ca:81:df:25:23:a8:5f:ac:35:3a:
b1:1c:42:c8:2a:02:84:33:fc:6c:e1:01:a8:18:f1:
26:48:8a:49:c0:9c:db:32:7c:e0:38:42:64:d8:72:
f8:4e:09:ee:74:fe:43:56:7a:66:56:84:e3:3e:46:
52:66:86:16:a4:4e:6e:65:96:30:f7:32:03:74:6e:
4c:6f:55:a3:d7:84:6d:ec:32:dd:e4:81:0f:69:4a:
d4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A8:71:C5:EB:05:48:91:32:86:D3:DF:82:0E:62:69:31:79:5C:3B
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/rqhxxesFSJEyhtPfgg5iaTF5XDs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.192.0/18
Signature Algorithm: sha256WithRSAEncryption
cd:c4:d9:b2:81:e8:00:4a:bf:dc:dc:8a:e7:0f:dd:c6:ac:dc:
6d:8f:5b:50:85:9e:1c:de:50:8d:20:e4:d2:bf:8d:7f:a3:cc:
39:a7:c6:af:84:15:c2:25:6f:12:6f:d9:59:05:e3:62:d7:d8:
5c:6c:d1:41:a8:db:54:52:25:f2:d3:fa:53:38:ca:0d:ea:1d:
83:c2:ff:5f:28:c3:a3:32:3f:67:3e:55:bd:76:9d:3e:9a:6f:
4c:80:d3:30:af:62:62:50:35:8e:83:69:ae:84:a6:7f:b7:2a:
2e:7b:a1:45:5c:2b:88:cc:2e:11:4d:a2:60:cf:d7:f8:ac:b9:
51:95:c9:8c:10:de:c7:75:be:37:59:b6:11:d2:f0:85:3a:00:
64:21:e1:36:e0:65:1b:39:30:43:c5:a0:2d:59:f9:db:83:4a:
33:62:19:e1:ac:44:15:f7:31:b3:44:73:2b:d5:7b:b9:a8:78:
56:03:50:2f:dc:89:c6:6b:d4:7b:79:b0:e6:6a:12:f7:c9:bd:
a9:83:91:da:a0:b8:d4:1d:0a:a5:b2:cf:ec:ee:ad:99:c1:9c:
54:c5:0f:84:50:19:62:c0:27:53:90:1a:12:6b:e1:9b:b1:e3:
79:45:ec:94:c0:ff:82:a0:74:3a:ee:11:0a:37:4c:51:58:30:
40:71:5b:27
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCNkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yMTAyMDcx
MTUzNTNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEFFQTg3MUM1RUIwNTQ4
OTEzMjg2RDNERjgyMEU2MjY5MzE3OTVDM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVuMabHnsxb9KWrERBJEAazeKJQSomucKMm06molif67yZaeHh
9/di8W/oOm3MvqF32hU4XA57KvUpfYZw3r1UqJ4oJepnKaRVEXuRNUA7kjpj4o22
NhdF+85nlI8aaOl1dHKIGNnQ/6pVGMkslmC9RyOhva12wV0b4d3AO2rNJlyNyve9
Wl+IsXUZTEmRZrGBRYcCLDrz45NP8qTjoptlXPVxumJJRE10yoHfJSOoX6w1OrEc
QsgqAoQz/GzhAagY8SZIiknAnNsyfOA4QmTYcvhOCe50/kNWemZWhOM+RlJmhhak
Tm5lljD3MgN0bkxvVaPXhG3sMt3kgQ9pStThAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUrqhxxesFSJEyhtPfgg5iaTF5XDswHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9ycWh4eGVzRlNKRXlodFBmZ2c1
aWFURjVYRHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGewDA
MA0GCSqGSIb3DQEBCwUAA4IBAQDNxNmygegASr/c3IrnD93GrNxtj1tQhZ4c3lCN
IOTSv41/o8w5p8avhBXCJW8Sb9lZBeNi19hcbNFBqNtUUiXy0/pTOMoN6h2Dwv9f
KMOjMj9nPlW9dp0+mm9MgNMwr2JiUDWOg2muhKZ/tyoue6FFXCuIzC4RTaJgz9f4
rLlRlcmMEN7Hdb43WbYR0vCFOgBkIeE24GUbOTBDxaAtWfnbg0ozYhnhrEQV9zGz
RHMr1Xu5qHhWA1Av3InGa9R7ebDmahL3yb2pg5HaoLjUHQqlss/s7q2ZwZxUxQ+E
UBliwCdTkBoSa+GbseN5ReyUwP+CoHQ67hEKN0xRWDBAcVsn
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org