Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/1Z3dzDTKuIqKntWKTjotBSVMfo4.roa
File: 1Z3dzDTKuIqKntWKTjotBSVMfo4.roa (raw, json)
Hash identifier: erZM+kk4t1i0oQxzd0zVmYLgOqVXQIoP8uXeBxLqIZA=
Subject key identifier: D5:9D:DD:CC:34:CA:B8:8A:8A:9E:D5:8A:4E:3A:2D:05:25:4C:7E:8E
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0EE2
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/1Z3dzDTKuIqKntWKTjotBSVMfo4.roa
Signing time: Wed 29 Sep 2021 02:56:15 +0000
ROA not before: Wed 29 Sep 2021 02:56:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9311
IP address blocks: 203.119.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3810 (0xee2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 02:56:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D59DDDCC34CAB88A8A9ED58A4E3A2D05254C7E8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:06:2d:e6:0e:e4:ec:ed:db:f6:47:f1:02:b6:
07:55:39:c5:d7:bd:41:98:d6:9d:08:da:40:a0:e2:
7e:54:47:08:17:ed:82:e4:b6:ee:3c:d3:26:55:01:
10:a6:77:f6:6d:67:28:65:23:3f:ba:98:2c:a7:ee:
0b:55:97:80:db:19:db:8b:2c:06:81:f2:b5:ef:84:
5f:70:1b:46:45:da:ec:25:3f:a5:f9:58:f3:58:b7:
ed:da:66:15:30:bc:82:3e:9a:5b:0d:e9:07:b9:9b:
c9:28:9b:bb:ca:31:79:54:fb:b7:10:06:14:07:dd:
4f:4d:7a:be:db:96:f2:30:74:f4:02:2d:ee:1b:e0:
13:a0:a7:91:57:53:35:11:08:47:f0:78:56:b2:f2:
ca:3e:ed:a7:a5:0e:48:c6:ca:82:1e:19:a8:e2:b5:
de:05:3b:5d:3f:e8:28:da:95:7f:b1:b3:de:dd:bf:
e8:a2:00:0a:c5:f3:5c:ec:f9:87:46:2e:72:56:47:
24:fb:c7:00:db:ba:30:f8:71:61:fa:28:a6:2b:dc:
d2:7b:22:bb:73:2c:9b:7c:4b:2e:ef:3a:7c:42:5f:
4f:6a:1f:06:33:58:bb:95:e4:6c:97:4c:eb:96:03:
7c:2d:be:91:38:ba:cd:2d:88:04:d9:cf:a6:90:a7:
70:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:9D:DD:CC:34:CA:B8:8A:8A:9E:D5:8A:4E:3A:2D:05:25:4C:7E:8E
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/1Z3dzDTKuIqKntWKTjotBSVMfo4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.119.94.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:8d:50:73:04:49:aa:e8:df:1f:aa:e8:8b:69:c7:89:05:d6:
65:0c:98:cc:e4:3a:bc:9f:b9:15:8f:df:6e:b8:cc:f9:a5:f0:
7b:17:53:b7:1e:28:64:03:d2:0c:d0:80:74:92:e9:0b:01:9f:
a3:7f:03:11:0a:08:2e:d5:64:1c:9f:9b:1d:17:47:eb:71:da:
59:86:f3:81:7e:65:e7:7d:f6:af:c5:f2:90:8a:f6:89:26:da:
08:56:bc:4f:b0:9a:f1:c1:b8:b3:b3:53:1b:cc:0d:d8:7a:36:
03:1f:06:4b:00:05:89:7c:ec:71:22:fd:45:e0:04:0c:6b:42:
0d:6f:24:1e:f5:db:1f:7b:d0:8a:ae:60:e1:35:a6:25:7c:2e:
8a:45:49:a0:59:71:76:7c:8a:36:21:1f:a4:a7:3f:37:de:d7:
b1:a6:36:a8:5d:d8:af:f0:bd:c0:df:8b:ed:a7:a5:c9:87:3c:
fa:e8:ae:25:24:6b:7f:33:18:a8:96:d3:79:31:6a:df:41:51:
98:1c:93:7a:35:7c:5b:6c:94:e6:98:46:3e:eb:e4:c4:2b:5e:
2a:a2:94:d3:aa:0c:d4:29:86:b1:e0:13:ed:b9:90:b9:ee:b9:
ad:6b:ee:39:4f:e5:21:37:ec:52:a4:cf:0e:70:e8:94:2e:ec:
af:ff:79:54
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDuIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMTA5Mjkw
MjU2MTVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQ1OURERENDMzRDQUI4
OEE4QTlFRDU4QTRFM0EyRDA1MjU0QzdFOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUBi3mDuTs7dv2R/ECtgdVOcXXvUGY1p0I2kCg4n5URwgX7YLk
tu480yZVARCmd/ZtZyhlIz+6mCyn7gtVl4DbGduLLAaB8rXvhF9wG0ZF2uwlP6X5
WPNYt+3aZhUwvII+mlsN6Qe5m8kom7vKMXlU+7cQBhQH3U9Ner7blvIwdPQCLe4b
4BOgp5FXUzURCEfweFay8so+7aelDkjGyoIeGajitd4FO10/6CjalX+xs97dv+ii
AArF81zs+YdGLnJWRyT7xwDbujD4cWH6KKYr3NJ7IrtzLJt8Sy7vOnxCX09qHwYz
WLuV5GyXTOuWA3wtvpE4us0tiATZz6aQp3BzAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU1Z3dzDTKuIqKntWKTjotBSVMfo4wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy8xWjNkekRUS3VJcUtudFdLVGpv
dEJTVk1mbzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy3de
MA0GCSqGSIb3DQEBCwUAA4IBAQCqjVBzBEmq6N8fquiLaceJBdZlDJjM5Dq8n7kV
j99uuMz5pfB7F1O3HihkA9IM0IB0kukLAZ+jfwMRCggu1WQcn5sdF0frcdpZhvOB
fmXnffavxfKQivaJJtoIVrxPsJrxwbizs1MbzA3YejYDHwZLAAWJfOxxIv1F4AQM
a0INbyQe9dsfe9CKrmDhNaYlfC6KRUmgWXF2fIo2IR+kpz833texpjaoXdiv8L3A
34vtp6XJhzz66K4lJGt/MxioltN5MWrfQVGYHJN6NXxbbJTmmEY+6+TEK14qopTT
qgzUKYax4BPtuZC57rmta+45T+UhN+xSpM8OcOiULuyv/3lU
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org