Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/zgGSM0Z-UjtLbilknu1rSH1xB6I.roa
File: zgGSM0Z-UjtLbilknu1rSH1xB6I.roa (raw, json)
Hash identifier: fafZjBksEaWRhIZTaoU4G/8XdivZru6sZ0dxuXYIw58=
Subject key identifier: CE:01:92:33:46:7E:52:3B:4B:6E:29:64:9E:ED:6B:48:7D:71:07:A2
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 093C
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/zgGSM0Z-UjtLbilknu1rSH1xB6I.roa
Signing time: Thu 13 Jan 2022 17:22:45 +0000
ROA not before: Thu 13 Jan 2022 17:22:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 133955
IP address blocks: 223.165.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2364 (0x93c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Jan 13 17:22:45 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CE019233467E523B4B6E29649EED6B487D7107A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:07:2a:ca:2c:7b:10:ed:79:99:7f:84:4c:7b:
c5:d0:b6:c8:ed:26:1e:ae:bc:61:e5:bc:32:61:11:
05:70:02:2f:54:d4:90:46:15:53:43:bf:d2:6b:57:
e9:99:91:e1:7f:9d:37:67:fa:f9:48:d9:05:17:72:
14:b9:9b:20:db:d6:42:19:7b:94:1d:af:9b:0f:52:
29:74:ac:0b:f4:90:89:ad:fe:2d:30:21:1c:fb:b5:
68:ba:4b:b5:29:b8:b2:59:b9:26:05:0d:56:9f:8a:
81:c3:24:88:62:a6:25:c8:8a:eb:ad:35:47:72:e9:
5f:f0:94:4d:70:22:fe:96:9d:da:9c:f6:f6:fd:50:
b0:86:54:bc:6c:b0:77:bb:7c:f8:89:c5:f8:27:40:
15:f7:cf:55:32:5b:b3:95:5d:80:c6:54:e9:54:96:
fa:25:b5:3e:8f:99:2c:f5:34:35:cb:57:d5:56:1c:
e3:c6:9e:d8:85:6e:95:5b:85:03:b8:4b:d2:8d:91:
91:07:1e:7d:da:f1:7a:05:86:c0:cc:5d:1b:1b:82:
92:fd:a0:69:46:d9:d7:c7:c6:b8:0d:a5:70:17:f0:
a6:e6:05:44:77:d3:de:a8:a8:ec:7f:2a:af:d8:9b:
15:cc:86:be:52:52:3d:f2:e5:92:53:a0:76:2c:51:
db:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:01:92:33:46:7E:52:3B:4B:6E:29:64:9E:ED:6B:48:7D:71:07:A2
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/zgGSM0Z-UjtLbilknu1rSH1xB6I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.13.0/24
Signature Algorithm: sha256WithRSAEncryption
74:ae:80:a8:19:8f:eb:a7:cf:03:ca:e8:fb:5c:4c:73:4b:29:
99:6b:e6:6b:c5:b8:e3:9b:d9:9f:78:ee:2e:32:a6:d9:30:9c:
bc:ab:59:b6:f4:7f:c2:55:63:44:84:69:ad:98:b7:9d:46:b5:
b1:43:e4:02:b6:03:fa:dd:64:94:93:a5:69:e6:64:48:74:68:
f4:12:82:0e:8c:76:0a:0b:f8:cd:ec:03:d6:6c:d8:a8:d6:f3:
2b:1c:2e:22:ab:98:2a:ba:3d:15:2b:f0:9d:ee:22:5c:90:14:
3e:ff:b2:8d:70:6c:1a:28:e9:08:3e:59:b8:02:3f:e5:5f:8a:
93:72:5a:7e:2a:9b:c8:d2:78:4f:cc:67:66:a4:eb:dd:95:5d:
30:0f:c3:85:a2:b9:7a:25:a7:1f:ff:6b:22:91:90:a3:82:85:
19:f3:57:8f:8f:fc:7f:4d:a4:f7:38:78:0c:3e:bd:bf:bf:f8:
55:c4:52:de:d3:5e:40:28:74:df:bb:54:bd:2d:b5:2a:27:b2:
1d:5b:3a:7d:85:c4:fd:30:1a:ac:10:a3:81:49:32:68:68:eb:
84:04:17:3f:53:bd:d6:a6:ff:f4:0a:c8:82:6a:28:71:ee:39:
d3:09:07:79:c7:e7:e2:ff:9d:b8:4f:11:03:c8:f4:17:37:53:
3f:e9:63:01
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICCTwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4
RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yMjAxMTMx
NzIyNDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKENFMDE5MjMzNDY3RTUy
M0I0QjZFMjk2NDlFRUQ2QjQ4N0Q3MTA3QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzByrKLHsQ7XmZf4RMe8XQtsjtJh6uvGHlvDJhEQVwAi9U1JBG
FVNDv9JrV+mZkeF/nTdn+vlI2QUXchS5myDb1kIZe5Qdr5sPUil0rAv0kImt/i0w
IRz7tWi6S7UpuLJZuSYFDVafioHDJIhipiXIiuutNUdy6V/wlE1wIv6Wndqc9vb9
ULCGVLxssHe7fPiJxfgnQBX3z1UyW7OVXYDGVOlUlvoltT6PmSz1NDXLV9VWHOPG
ntiFbpVbhQO4S9KNkZEHHn3a8XoFhsDMXRsbgpL9oGlG2dfHxrgNpXAX8KbmBUR3
096oqOx/Kq/YmxXMhr5SUj3y5ZJToHYsUdvDAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUzgGSM0Z+UjtLbilknu1rSH1xB6IwHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE
161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP
TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvemdHU00wWi1V
anRMYmlsa251MXJTSDF4QjZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAN+lDTANBgkqhkiG9w0BAQsFAAOCAQEAdK6AqBmP66fPA8ro+1xMc0sp
mWvma8W445vZn3juLjKm2TCcvKtZtvR/wlVjRIRprZi3nUa1sUPkArYD+t1klJOl
aeZkSHRo9BKCDox2Cgv4zewD1mzYqNbzKxwuIquYKro9FSvwne4iXJAUPv+yjXBs
GijpCD5ZuAI/5V+Kk3JafiqbyNJ4T8xnZqTr3ZVdMA/DhaK5eiWnH/9rIpGQo4KF
GfNXj4/8f02k9zh4DD69v7/4VcRS3tNeQCh037tUvS21KieyHVs6fYXE/TAarBCj
gUkyaGjrhAQXP1O91qb/9ArIgmooce450wkHecfn4v+duE8RA8j0FzdTP+ljAQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org