Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/QVxpKF0g2Eez6wAp_c5NjbsVpfA.roa
File: QVxpKF0g2Eez6wAp_c5NjbsVpfA.roa (raw, json)
Hash identifier: 8DCv+mkmM1jfz9trUf1cWLIkrXWAbdcf+YBg2lZLGVQ=
Subject key identifier: 41:5C:69:28:5D:20:D8:47:B3:EB:00:29:FD:CE:4D:8D:BB:15:A5:F0
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 098F
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/QVxpKF0g2Eez6wAp_c5NjbsVpfA.roa
Signing time: Wed 29 Sep 2021 02:53:16 +0000
ROA not before: Wed 29 Sep 2021 02:53:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 58.99.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2447 (0x98f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 29 02:53:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=415C69285D20D847B3EB0029FDCE4D8DBB15A5F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:90:7b:70:8f:d1:2f:3e:56:60:10:70:73:48:
14:55:1b:25:88:30:6b:bf:c0:aa:9b:9f:43:07:7d:
77:0e:b8:cd:88:30:9b:b8:8c:6d:b7:fc:c0:d8:5d:
89:b6:28:ea:9a:2f:4b:4a:02:4e:e0:b2:27:fa:1c:
5e:a1:da:75:fd:97:63:ed:2c:5b:90:6b:9f:06:16:
62:7b:f1:c9:b6:0b:0d:1d:97:d8:a1:f8:78:2f:af:
8a:89:da:a2:3b:26:79:1c:99:a3:86:85:02:28:4d:
17:b2:69:29:a8:62:08:05:b7:f0:03:84:37:5d:d0:
cd:7e:91:e1:40:47:99:86:02:fc:6c:7d:bc:d1:74:
d6:b9:b5:8d:9c:ab:7f:3b:a7:94:2e:6b:cc:8b:65:
d9:fb:88:62:4d:96:f0:4b:0e:b6:72:98:94:93:86:
3f:29:20:ee:16:fd:89:c0:f2:f9:eb:e6:a3:b7:ce:
b1:a4:1a:c4:06:e0:8c:02:2b:c6:c8:e3:79:20:82:
a0:d2:da:5f:0a:7a:28:01:35:18:b3:73:88:9a:1d:
d1:e2:23:20:a1:6c:8f:43:da:b5:08:20:33:80:bc:
80:b8:ab:15:bc:9d:5e:5d:18:66:78:e3:f4:08:ca:
4e:d6:63:a5:28:8e:da:0f:23:db:89:c2:9b:82:1f:
15:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:5C:69:28:5D:20:D8:47:B3:EB:00:29:FD:CE:4D:8D:BB:15:A5:F0
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/QVxpKF0g2Eez6wAp_c5NjbsVpfA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.99.0.0/18
Signature Algorithm: sha256WithRSAEncryption
40:8e:d8:67:ee:3b:45:4e:0a:1a:0e:6a:75:1f:a2:f6:5b:c5:
97:6c:82:10:b3:dc:1e:34:b2:6a:92:bf:cd:d7:d8:51:e2:d0:
f4:0e:c5:98:46:63:35:a7:d6:84:5a:bf:84:d8:94:71:66:13:
15:8c:78:49:a4:5e:ed:57:69:e7:4b:aa:ff:a2:35:01:56:1b:
b4:e7:93:16:aa:be:4e:ab:28:73:2a:83:f2:ec:fb:17:67:6e:
f5:ae:18:77:39:a5:7b:a0:30:95:01:63:3f:88:76:e8:ff:9b:
27:fe:74:87:c6:85:8d:44:bd:c9:d7:a6:ea:0f:7e:03:68:24:
09:83:2c:89:f9:ab:5c:46:f5:10:72:d2:39:7b:5c:a9:20:b3:
3b:eb:9b:1a:5d:95:7e:ee:7f:38:4c:70:49:71:b5:b7:8c:04:
e4:d0:0d:b4:ad:f4:4f:d7:39:19:eb:01:91:0d:ad:16:cb:45:
ea:4e:dc:a5:be:38:54:63:23:9f:3b:74:fa:62:cd:43:e6:63:
92:10:14:d2:83:75:1a:34:ec:e0:b2:6b:61:6d:f3:e2:f2:ac:
72:9d:94:6f:d7:83:88:e5:91:e3:a1:62:8e:06:d5:88:d5:eb:
37:a6:c6:2f:33:91:11:0b:9e:41:88:91:c6:cf:d4:90:fb:01:
b3:3f:13:6c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCY8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy
NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yMTA5Mjkw
MjUzMTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDQxNUM2OTI4NUQyMEQ4
NDdCM0VCMDAyOUZEQ0U0RDhEQkIxNUE1RjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3kHtwj9EvPlZgEHBzSBRVGyWIMGu/wKqbn0MHfXcOuM2IMJu4
jG23/MDYXYm2KOqaL0tKAk7gsif6HF6h2nX9l2PtLFuQa58GFmJ78cm2Cw0dl9ih
+Hgvr4qJ2qI7JnkcmaOGhQIoTReyaSmoYggFt/ADhDdd0M1+keFAR5mGAvxsfbzR
dNa5tY2cq387p5Qua8yLZdn7iGJNlvBLDrZymJSThj8pIO4W/YnA8vnr5qO3zrGk
GsQG4IwCK8bI43kggqDS2l8KeigBNRizc4iaHdHiIyChbI9D2rUIIDOAvIC4qxW8
nV5dGGZ44/QIyk7WY6UojtoPI9uJwpuCHxWnAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUQVxpKF0g2Eez6wAp/c5NjbsVpfAwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo
SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80
Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvUVZ4cEtGMGcyRWV6NndBcF9jNU5q
YnNWcGZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBjpjADAN
BgkqhkiG9w0BAQsFAAOCAQEAQI7YZ+47RU4KGg5qdR+i9lvFl2yCELPcHjSyapK/
zdfYUeLQ9A7FmEZjNafWhFq/hNiUcWYTFYx4SaRe7Vdp50uq/6I1AVYbtOeTFqq+
TqsocyqD8uz7F2du9a4Ydzmle6AwlQFjP4h26P+bJ/50h8aFjUS9ydem6g9+A2gk
CYMsifmrXEb1EHLSOXtcqSCzO+ubGl2Vfu5/OExwSXG1t4wE5NANtK30T9c5GesB
kQ2tFstF6k7cpb44VGMjnzt0+mLNQ+ZjkhAU0oN1GjTs4LJrYW3z4vKscp2Ub9eD
iOWR46FijgbViNXrN6bGLzOREQueQYiRxs/UkPsBsz8TbA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org