Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/unXZvTiD8Bjb0Dynr9L5sISWr8w.roa
File: unXZvTiD8Bjb0Dynr9L5sISWr8w.roa (raw, json)
Hash identifier: /Pw1MC95J8TXu+QNXneEOHGNbsSSNVLNgZSczh5vWns=
Subject key identifier: BA:75:D9:BD:38:83:F0:18:DB:D0:3C:A7:AF:D2:F9:B0:84:96:AF:CC
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0A44
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/unXZvTiD8Bjb0Dynr9L5sISWr8w.roa
Signing time: Wed 01 Feb 2023 04:05:01 +0000
ROA not before: Wed 01 Feb 2023 04:05:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 133955
IP address blocks: 223.165.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2628 (0xa44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Feb 1 04:05:01 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BA75D9BD3883F018DBD03CA7AFD2F9B08496AFCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:51:b1:2c:1b:99:fc:32:0c:78:69:9f:5d:2b:
56:a7:0e:e1:68:08:29:47:10:6f:0d:1c:02:19:fa:
80:b1:ff:8e:21:93:d0:3e:87:89:6a:72:0b:fa:4a:
02:e3:01:e7:61:66:d9:bc:b7:4e:d6:4e:28:3e:64:
39:67:3e:3c:e4:8f:63:3a:8d:a3:87:e2:f7:dc:a5:
e1:e5:27:20:94:68:5b:81:09:cb:c6:b3:fa:c9:68:
f9:fb:18:df:1d:9d:6d:fe:b8:e8:ff:43:39:a0:53:
40:c8:ea:3b:65:17:d1:d2:4f:4d:d9:5c:04:38:65:
8e:15:90:cf:d4:6c:d5:70:24:eb:74:52:c8:c8:7a:
21:56:93:f6:12:60:22:ee:b8:15:22:48:12:08:9e:
73:c8:a1:f0:dc:a1:41:9a:fd:fb:29:45:47:73:5a:
84:90:8f:c5:63:97:f2:fc:0d:03:e5:a6:94:17:8c:
ae:75:87:cb:52:2d:f1:f2:bd:14:cc:78:f7:7a:d7:
20:a6:bb:ae:69:ab:fc:31:eb:28:e2:16:70:ba:50:
74:8f:23:02:ca:5f:ca:b7:f7:26:8e:6d:8a:ad:a5:
89:8a:65:6d:f2:69:ed:9c:d6:ca:9f:86:40:f4:80:
f1:87:7a:5e:c7:3b:b3:b8:7a:9a:72:71:65:bd:52:
7e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:75:D9:BD:38:83:F0:18:DB:D0:3C:A7:AF:D2:F9:B0:84:96:AF:CC
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/unXZvTiD8Bjb0Dynr9L5sISWr8w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.10.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:1b:2c:df:d2:e1:e9:7e:b2:4d:f8:fb:bf:4d:5a:98:91:c8:
fe:b0:ea:e9:62:04:5d:af:c7:08:2c:a0:d8:cb:da:cb:c9:ab:
23:29:fe:79:d9:c5:65:d1:6a:85:27:7a:39:f1:76:69:38:2a:
89:f1:24:b7:d2:a7:2e:4c:c9:e5:41:c0:ea:2a:a1:ea:2a:e9:
9e:6f:fd:07:a2:1c:a4:0e:11:29:90:1b:63:6e:76:11:d1:b2:
59:4b:36:92:81:9c:3a:54:5d:85:3a:97:01:f0:a6:9d:ca:f5:
b6:1c:ec:00:83:5a:a2:e0:3a:81:60:34:1f:9e:83:6d:99:5c:
51:0b:b2:9e:cc:6e:6d:ad:d0:57:21:1b:a5:fe:b5:d9:3b:94:
e1:09:8e:f0:84:ce:24:cd:15:0f:aa:d5:1d:b4:e9:ca:b4:74:
75:29:f1:5d:41:11:f3:2e:9e:23:43:21:77:95:e9:0b:70:cc:
77:e1:09:f6:e5:56:bd:d4:24:a7:7a:75:69:bb:46:ba:df:d2:
b4:c0:33:a1:48:15:ad:34:2b:99:e5:9c:b6:ac:cf:01:57:7b:
6a:66:6f:5c:44:15:6e:99:58:d4:ab:6c:75:59:a9:6c:e3:72:
18:2a:30:04:dc:ef:22:36:31:68:8e:58:c9:38:33:ac:29:46:
7a:73:1b:1d
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICCkQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4
RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yMzAyMDEw
NDA1MDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEJBNzVEOUJEMzg4M0Yw
MThEQkQwM0NBN0FGRDJGOUIwODQ5NkFGQ0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5UbEsG5n8Mgx4aZ9dK1anDuFoCClHEG8NHAIZ+oCx/44hk9A+
h4lqcgv6SgLjAedhZtm8t07WTig+ZDlnPjzkj2M6jaOH4vfcpeHlJyCUaFuBCcvG
s/rJaPn7GN8dnW3+uOj/QzmgU0DI6jtlF9HST03ZXAQ4ZY4VkM/UbNVwJOt0UsjI
eiFWk/YSYCLuuBUiSBIInnPIofDcoUGa/fspRUdzWoSQj8Vjl/L8DQPlppQXjK51
h8tSLfHyvRTMePd61yCmu65pq/wx6yjiFnC6UHSPIwLKX8q39yaObYqtpYmKZW3y
ae2c1sqfhkD0gPGHel7HO7O4eppycWW9Un6RAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUunXZvTiD8Bjb0Dynr9L5sISWr8wwHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE
161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP
TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvdW5YWnZUaUQ4
QmpiMER5bnI5TDVzSVNXcjh3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAN+lCjANBgkqhkiG9w0BAQsFAAOCAQEAbBss39Lh6X6yTfj7v01amJHI
/rDq6WIEXa/HCCyg2Mvay8mrIyn+ednFZdFqhSd6OfF2aTgqifEkt9KnLkzJ5UHA
6iqh6irpnm/9B6IcpA4RKZAbY252EdGyWUs2koGcOlRdhTqXAfCmncr1thzsAINa
ouA6gWA0H56DbZlcUQuynsxuba3QVyEbpf612TuU4QmO8ITOJM0VD6rVHbTpyrR0
dSnxXUER8y6eI0Mhd5XpC3DMd+EJ9uVWvdQkp3p1abtGut/StMAzoUgVrTQrmeWc
tqzPAVd7amZvXEQVbplY1KtsdVmpbONyGCowBNzvIjYxaI5YyTgzrClGenMbHQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:21 2025 by rpki-client