Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/2CXBDyRau81sUT8KceATM_DtiXU.roa
File: 2CXBDyRau81sUT8KceATM_DtiXU.roa (raw, json)
Hash identifier: 7G4v8rvQzPxDCmUM73EHUXa3KpwCNjcX+Dsh8g4aokQ=
Subject key identifier: D8:25:C1:0F:24:5A:BB:CD:6C:51:3F:0A:71:E0:13:33:F0:ED:89:75
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0936
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/2CXBDyRau81sUT8KceATM_DtiXU.roa
Signing time: Thu 13 Jan 2022 17:21:38 +0000
ROA not before: Thu 13 Jan 2022 17:21:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 133955
IP address blocks: 223.165.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2358 (0x936)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Jan 13 17:21:38 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D825C10F245ABBCD6C513F0A71E01333F0ED8975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1d:97:8e:5d:bd:d1:f5:bd:a0:22:2b:8a:f9:
a3:80:c7:53:3b:71:ef:92:20:08:19:e7:b5:e0:4c:
52:eb:42:c0:a0:0a:d3:24:8a:09:47:7e:f2:7b:44:
67:a6:37:08:b7:17:ef:36:ee:b1:66:de:31:77:c2:
13:27:03:97:f0:8a:91:00:a8:0a:00:8d:e6:cb:38:
6c:20:f9:44:fd:a8:82:a7:28:61:03:c2:6a:7d:92:
88:32:c2:0e:55:2f:27:68:db:b6:1f:4d:55:ff:60:
86:b9:56:64:ce:8e:a7:79:d2:b0:6a:34:10:05:41:
a1:ff:5f:d8:32:20:67:07:ce:ee:93:50:49:27:1f:
91:28:2b:7d:f7:17:ff:1b:13:8b:38:57:89:5d:7c:
b0:9c:e3:86:e6:f1:48:74:7f:9d:f8:9e:89:3a:02:
83:7b:03:9e:7f:8b:5a:17:eb:48:ce:91:d5:fa:17:
ed:35:33:63:22:15:5b:1e:92:7d:e7:d2:59:88:8f:
75:73:ab:45:b3:88:7a:30:29:63:8e:a3:ae:c2:74:
9e:bd:2d:94:18:6a:16:d3:a6:78:df:4c:bf:6e:15:
67:eb:a9:7d:00:e6:94:15:75:df:86:66:4b:29:23:
79:de:6d:27:bd:dd:ee:86:fa:3b:54:cf:8e:8f:06:
96:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:25:C1:0F:24:5A:BB:CD:6C:51:3F:0A:71:E0:13:33:F0:ED:89:75
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/2CXBDyRau81sUT8KceATM_DtiXU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.9.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:65:18:de:92:d8:93:11:68:46:ef:6e:ae:0b:6c:6a:ab:03:
22:1f:f0:44:b1:4c:b6:a6:48:00:9a:17:58:a8:46:7c:48:b0:
68:8b:9e:b5:b9:40:e8:25:61:57:00:54:7e:45:96:3b:6a:d9:
69:f1:86:6c:b4:c9:55:a7:2e:3e:58:4a:60:e9:b6:54:d3:e6:
5f:29:b6:d4:7f:5d:10:fd:6c:03:de:05:03:09:37:2d:84:cf:
2b:d4:c1:bd:b7:21:76:d0:7b:8d:0e:69:5b:e6:d7:12:f8:c0:
f1:73:94:2f:65:36:05:83:fe:16:10:a0:45:c0:0c:28:c3:5a:
d5:ff:ee:78:12:8c:df:04:e1:a9:68:3a:6b:f1:83:fa:a8:a5:
65:85:03:96:2d:e2:0a:29:ea:f3:87:6b:2c:5c:4d:28:35:68:
70:dc:65:29:e5:7f:35:39:f1:8d:01:56:bf:01:a6:94:bf:01:
f5:46:47:65:4c:c7:68:dc:1e:26:f1:92:bb:45:91:b6:49:9f:
62:69:84:ec:07:5d:3b:c5:8e:8d:f1:46:65:41:ab:6d:2c:07:
8f:49:40:4f:2d:fe:7f:8d:c8:88:eb:b9:22:b2:fa:f3:e1:4a:
7a:e7:b4:15:dc:21:ac:21:4c:ff:65:dd:19:ad:50:e5:19:4f:
39:c0:f0:ad
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICCTYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4
RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yMjAxMTMx
NzIxMzhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQ4MjVDMTBGMjQ1QUJC
Q0Q2QzUxM0YwQTcxRTAxMzMzRjBFRDg5NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEHZeOXb3R9b2gIiuK+aOAx1M7ce+SIAgZ57XgTFLrQsCgCtMk
iglHfvJ7RGemNwi3F+827rFm3jF3whMnA5fwipEAqAoAjebLOGwg+UT9qIKnKGED
wmp9kogywg5VLydo27YfTVX/YIa5VmTOjqd50rBqNBAFQaH/X9gyIGcHzu6TUEkn
H5EoK333F/8bE4s4V4ldfLCc44bm8Uh0f534nok6AoN7A55/i1oX60jOkdX6F+01
M2MiFVsekn3n0lmIj3Vzq0WziHowKWOOo67CdJ69LZQYahbTpnjfTL9uFWfrqX0A
5pQVdd+GZkspI3nebSe93e6G+jtUz46PBpYtAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQU2CXBDyRau81sUT8KceATM/DtiXUwHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE
161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP
TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvMkNYQkR5UmF1
ODFzVVQ4S2NlQVRNX0R0aVhVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAN+lCTANBgkqhkiG9w0BAQsFAAOCAQEAfWUY3pLYkxFoRu9urgtsaqsD
Ih/wRLFMtqZIAJoXWKhGfEiwaIuetblA6CVhVwBUfkWWO2rZafGGbLTJVacuPlhK
YOm2VNPmXym21H9dEP1sA94FAwk3LYTPK9TBvbchdtB7jQ5pW+bXEvjA8XOUL2U2
BYP+FhCgRcAMKMNa1f/ueBKM3wThqWg6a/GD+qilZYUDli3iCinq84drLFxNKDVo
cNxlKeV/NTnxjQFWvwGmlL8B9UZHZUzHaNweJvGSu0WRtkmfYmmE7AddO8WOjfFG
ZUGrbSwHj0lATy3+f43IiOu5IrL68+FKeue0FdwhrCFM/2XdGa1Q5RlPOcDwrQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org