Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/-4Var5GuJbjYgQkgttysU0kdLz4.roa
File: -4Var5GuJbjYgQkgttysU0kdLz4.roa (raw, json)
Hash identifier: 6ak+cY3NteW4sFkwj1rpzxZn5lzLJDjbahZsyaYzHTM=
Subject key identifier: FB:85:5A:AF:91:AE:25:B8:D8:81:09:20:B6:DC:AC:53:49:1D:2F:3E
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0A59
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/-4Var5GuJbjYgQkgttysU0kdLz4.roa
Signing time: Mon 20 Feb 2023 18:48:41 +0000
ROA not before: Mon 20 Feb 2023 18:48:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 133955
IP address blocks: 223.165.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2649 (0xa59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Feb 20 18:48:41 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FB855AAF91AE25B8D8810920B6DCAC53491D2F3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c6:1a:31:86:28:88:0b:8c:e3:d0:6e:94:44:
cd:83:72:c4:62:4f:4c:1a:93:c3:1c:09:04:1a:78:
86:42:16:bb:a3:be:47:b8:4d:59:2a:36:4f:0a:7e:
7e:73:5c:88:4c:10:02:c4:2c:f0:04:a5:57:aa:8b:
f5:c3:13:20:0e:a9:8e:3d:54:94:0f:3b:ac:40:1b:
7e:2c:08:54:1d:e2:a9:cb:33:a8:c7:e3:f5:2c:a7:
88:51:26:14:4c:99:39:d0:4b:1f:a9:63:57:d7:e7:
e0:fe:08:de:7b:0f:8d:b9:9d:6c:c1:11:a3:18:28:
2a:a6:ac:02:2c:80:42:3c:de:85:f1:1d:b7:67:cd:
9c:8c:1c:f1:d6:d8:33:88:76:cb:c1:dc:36:71:9d:
24:02:64:49:b4:b6:f3:40:6b:7d:b4:e2:1e:7a:19:
25:5c:5f:f7:47:4a:6a:11:5b:a7:a0:fc:a2:29:45:
2d:fc:bb:74:45:e9:b7:ab:84:6b:06:a1:2e:05:ca:
0a:b5:fb:a6:72:f1:e6:9f:53:f3:e6:3d:d1:2d:aa:
ce:7f:cc:41:5d:d5:c8:65:54:16:0e:90:12:b6:0a:
7d:80:79:33:b6:03:6d:06:8b:dd:9c:a2:13:72:02:
07:c2:50:e8:00:79:8a:89:f8:68:d9:9b:0a:aa:8f:
4d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:85:5A:AF:91:AE:25:B8:D8:81:09:20:B6:DC:AC:53:49:1D:2F:3E
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/-4Var5GuJbjYgQkgttysU0kdLz4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.12.0/24
Signature Algorithm: sha256WithRSAEncryption
06:87:17:20:67:fb:9c:e1:49:0a:17:6b:d8:6d:67:92:f4:70:
3a:19:cf:b1:4a:1b:98:4d:82:a3:46:60:5d:ec:00:43:0e:62:
34:81:e6:2c:02:15:c7:52:ed:9e:9b:8e:c8:89:db:8e:7e:d0:
65:c2:d0:62:af:fd:d5:c3:cf:eb:fb:ac:3b:73:d9:fc:55:5d:
9c:dd:f0:aa:ec:d7:db:22:b9:36:10:d2:91:a6:db:37:ad:09:
43:f0:ce:33:30:80:48:a7:a7:c5:f9:ae:02:9f:71:35:16:75:
f5:df:a2:1b:be:57:e3:98:e2:b1:4d:76:81:a2:14:a9:67:67:
05:f5:53:09:96:e0:a3:ad:5d:84:d1:90:8d:58:be:05:ec:3c:
67:30:f1:31:a4:bd:36:3c:fd:c2:ec:cf:4d:39:f2:37:6e:42:
e2:08:ad:2a:4d:06:d5:89:38:ac:19:fd:6c:75:35:89:05:0d:
84:c1:6c:ab:31:10:b8:37:19:37:77:d5:18:bd:2d:02:c9:40:
1a:32:ff:fe:85:ec:f0:aa:1f:9f:cc:7b:45:96:19:2d:77:29:
0e:49:c3:56:b0:16:04:a4:26:5b:a0:4a:51:18:5f:dd:22:b1:
ff:38:df:dc:f3:4e:22:a3:dd:c8:a2:99:fd:f8:a7:2c:7e:58:
f1:bf:b1:11
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICClkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4
RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yMzAyMjAx
ODQ4NDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEZCODU1QUFGOTFBRTI1
QjhEODgxMDkyMEI2RENBQzUzNDkxRDJGM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6xhoxhiiIC4zj0G6URM2DcsRiT0wak8McCQQaeIZCFrujvke4
TVkqNk8Kfn5zXIhMEALELPAEpVeqi/XDEyAOqY49VJQPO6xAG34sCFQd4qnLM6jH
4/Usp4hRJhRMmTnQSx+pY1fX5+D+CN57D425nWzBEaMYKCqmrAIsgEI83oXxHbdn
zZyMHPHW2DOIdsvB3DZxnSQCZEm0tvNAa3204h56GSVcX/dHSmoRW6eg/KIpRS38
u3RF6berhGsGoS4Fygq1+6Zy8eafU/PmPdEtqs5/zEFd1chlVBYOkBK2Cn2AeTO2
A20Gi92cohNyAgfCUOgAeYqJ+GjZmwqqj01NAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQU+4Var5GuJbjYgQkgttysU0kdLz4wHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE
161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP
TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvLTRWYXI1R3VK
YmpZZ1FrZ3R0eXNVMGtkTHo0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAN+lDDANBgkqhkiG9w0BAQsFAAOCAQEABocXIGf7nOFJChdr2G1nkvRw
OhnPsUobmE2Co0ZgXewAQw5iNIHmLAIVx1LtnpuOyInbjn7QZcLQYq/91cPP6/us
O3PZ/FVdnN3wquzX2yK5NhDSkabbN60JQ/DOMzCASKenxfmuAp9xNRZ19d+iG75X
45jisU12gaIUqWdnBfVTCZbgo61dhNGQjVi+Bew8ZzDxMaS9Njz9wuzPTTnyN25C
4gitKk0G1Yk4rBn9bHU1iQUNhMFsqzEQuDcZN3fVGL0tAslAGjL//oXs8Kofn8x7
RZYZLXcpDknDVrAWBKQmW6BKURhf3SKx/zjf3PNOIqPdyKKZ/finLH5Y8b+xEQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org