Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/5Elq3swtn0hxdN1onKAYE3A2P1g.roa
File: 5Elq3swtn0hxdN1onKAYE3A2P1g.roa (raw, json)
Hash identifier: ytF66IvF5nnpC1Xe9g/lMyqxHpCk9X/Mae6h1EQAatU=
Subject key identifier: E4:49:6A:DE:CC:2D:9F:48:71:74:DD:68:9C:A0:18:13:70:36:3F:58
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 077E
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/5Elq3swtn0hxdN1onKAYE3A2P1g.roa
Signing time: Tue 29 Sep 2020 10:00:55 +0000
ROA not before: Tue 29 Sep 2020 10:00:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 49.213.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1918 (0x77e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 29 10:00:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E4496ADECC2D9F487174DD689CA0181370363F58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0a:0a:3a:55:6e:12:9e:40:5d:3e:a5:a9:c9:
66:28:3d:a0:09:39:7c:9e:c1:46:95:93:d1:1b:02:
86:9d:8c:9f:0c:45:5d:b5:99:7e:b0:04:6e:ba:74:
99:d1:f0:8e:57:84:b3:36:57:e8:c2:89:14:e2:01:
e4:e2:0f:8a:79:0a:b2:45:d1:df:40:55:b3:79:f5:
07:85:da:25:1c:0e:b0:e7:2a:1e:24:a8:ed:40:e8:
86:13:27:14:97:87:71:dd:96:d8:a8:65:74:74:9e:
f2:2e:7f:43:24:6a:a3:b4:73:b2:83:eb:eb:3c:2e:
b2:c0:69:0d:fb:88:a1:70:31:cc:ae:7b:be:ea:88:
c4:80:5b:de:67:c3:b2:f7:ce:8b:ab:f3:c7:5a:5d:
7e:54:c3:b0:9b:fe:27:36:cd:98:e9:56:13:e0:8d:
be:53:70:5f:d1:7a:69:25:56:67:82:03:56:c0:2f:
57:a5:26:ec:64:f5:76:21:91:5a:d5:02:e9:a9:4e:
16:a6:e2:19:e6:56:30:7a:eb:94:1c:71:10:3a:cf:
16:0f:1d:a7:23:03:3a:15:04:c2:ea:32:2b:fe:5d:
b7:04:06:2a:73:88:ce:e8:40:d0:32:37:76:f2:b7:
e1:ee:34:1f:4a:e5:54:9a:47:d9:04:09:33:c7:81:
80:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:49:6A:DE:CC:2D:9F:48:71:74:DD:68:9C:A0:18:13:70:36:3F:58
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/5Elq3swtn0hxdN1onKAYE3A2P1g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.213.128.0/17
Signature Algorithm: sha256WithRSAEncryption
64:3d:84:d0:a4:7c:35:40:1d:5d:69:7b:6b:e9:b2:b8:fe:01:
32:b9:47:d3:b4:cd:75:cb:9e:33:ac:c0:81:96:3b:e6:e4:1f:
77:34:4b:7c:fc:94:b9:70:33:32:b4:4f:35:5e:48:cc:5a:80:
1b:9a:00:48:e1:89:73:92:5f:62:2f:34:31:9a:94:44:db:b2:
29:fd:8e:4c:bb:d6:79:ee:df:ad:c9:fd:86:8d:d6:74:6b:d7:
4f:2f:97:91:46:10:89:c7:c7:14:b8:95:91:0a:3b:f8:4f:4b:
e8:8f:12:96:ec:38:ea:81:e1:73:f1:35:0c:81:e9:41:e2:4b:
5c:bf:70:22:00:6d:2e:b1:fc:ff:71:b5:d6:b0:4f:28:a4:46:
f4:e3:9e:8f:11:dc:a9:38:41:1f:c5:0b:5a:f0:1f:08:a0:8a:
df:06:89:e4:9e:57:71:cf:ca:5a:2f:da:1a:a2:bb:49:31:3b:
69:ac:2b:6c:63:43:2f:50:ae:e6:3e:40:12:05:f6:83:54:6a:
9b:df:59:04:52:b6:9e:df:27:cd:97:7c:e1:ce:5d:00:6d:f3:
6e:d7:40:d5:38:cf:4f:fd:13:be:3e:2b:bd:63:64:f9:be:31:
7c:65:1f:a4:f8:2e:99:7f:a1:4d:77:8b:a6:8d:7d:26:00:f0:
c1:01:7d:2b
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICB34wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy
NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yMDA5Mjkx
MDAwNTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEU0NDk2QURFQ0MyRDlG
NDg3MTc0REQ2ODlDQTAxODEzNzAzNjNGNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwCgo6VW4SnkBdPqWpyWYoPaAJOXyewUaVk9EbAoadjJ8MRV21
mX6wBG66dJnR8I5XhLM2V+jCiRTiAeTiD4p5CrJF0d9AVbN59QeF2iUcDrDnKh4k
qO1A6IYTJxSXh3HdltioZXR0nvIuf0MkaqO0c7KD6+s8LrLAaQ37iKFwMcyue77q
iMSAW95nw7L3zour88daXX5Uw7Cb/ic2zZjpVhPgjb5TcF/RemklVmeCA1bAL1el
Juxk9XYhkVrVAumpTham4hnmVjB665QccRA6zxYPHacjAzoVBMLqMiv+XbcEBipz
iM7oQNAyN3byt+HuNB9K5VSaR9kECTPHgYDpAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU5Elq3swtn0hxdN1onKAYE3A2P1gwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo
SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80
Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvNUVscTNzd3RuMGh4ZE4xb25LQVlF
M0EyUDFnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBzHVgDAN
BgkqhkiG9w0BAQsFAAOCAQEAZD2E0KR8NUAdXWl7a+myuP4BMrlH07TNdcueM6zA
gZY75uQfdzRLfPyUuXAzMrRPNV5IzFqAG5oASOGJc5JfYi80MZqURNuyKf2OTLvW
ee7frcn9ho3WdGvXTy+XkUYQicfHFLiVkQo7+E9L6I8Sluw46oHhc/E1DIHpQeJL
XL9wIgBtLrH8/3G11rBPKKRG9OOejxHcqThBH8ULWvAfCKCK3waJ5J5Xcc/KWi/a
GqK7STE7aawrbGNDL1Cu5j5AEgX2g1Rqm99ZBFK2nt8nzZd84c5dAG3zbtdA1TjP
T/0Tvj4rvWNk+b4xfGUfpPgumX+hTXeLpo19JgDwwQF9Kw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org