Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/4MMEFGwvi2Ft57Xw_VDJEJqkCos.roa
File: 4MMEFGwvi2Ft57Xw_VDJEJqkCos.roa (raw, json)
Hash identifier: ejTFWjXHeiOnRohUb9a5oxv3MojswcJTs22Ah7LsHjc=
Subject key identifier: E0:C3:04:14:6C:2F:8B:61:6D:E7:B5:F0:FD:50:C9:10:9A:A4:0A:8B
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 103D
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/4MMEFGwvi2Ft57Xw_VDJEJqkCos.roa
Signing time: Thu 01 Sep 2022 06:45:00 +0000
ROA not before: Thu 01 Sep 2022 06:45:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131621
IP address blocks: 182.173.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4157 (0x103d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 1 06:45:00 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E0C304146C2F8B616DE7B5F0FD50C9109AA40A8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:2b:45:48:6f:cb:9a:cb:59:01:b7:82:8d:4f:
58:5e:c4:27:71:c2:2f:1c:c6:e8:30:d6:36:19:5b:
4b:7d:1c:c3:7f:9c:be:2e:86:67:9c:c1:56:1f:7e:
72:8c:f9:49:82:d0:94:70:ce:5f:85:64:68:af:61:
4b:1e:f9:8d:05:a7:0c:dd:a0:43:8f:67:bc:ea:4b:
0e:63:7e:c8:0b:42:20:5d:3c:24:59:c4:a0:67:93:
18:c2:71:b4:28:17:d5:0c:7b:bf:b4:11:90:ff:cb:
5b:dd:db:16:28:2f:55:7f:40:81:6c:73:db:1e:44:
33:46:bb:36:b3:55:ac:36:9a:4f:5b:4c:23:ac:c3:
22:8e:97:cc:3f:b9:4d:d6:c3:69:8d:10:d3:62:3b:
a0:4c:96:c5:19:7a:5c:d1:4a:b3:05:72:36:66:81:
41:fe:08:04:93:a8:9f:1c:33:de:42:40:42:8f:03:
c0:c5:42:ce:d1:62:fb:af:66:b0:d7:9c:ad:3b:52:
b0:87:1d:0c:f8:79:4c:5d:72:85:11:9c:0b:7e:d8:
83:ce:14:a9:21:47:07:18:5c:a2:17:5f:f5:e0:65:
4e:bc:b3:73:fe:36:64:80:b6:90:8c:08:0a:32:8f:
00:d0:5a:ac:de:2a:0a:64:21:74:c1:64:fa:db:54:
4d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:C3:04:14:6C:2F:8B:61:6D:E7:B5:F0:FD:50:C9:10:9A:A4:0A:8B
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/4MMEFGwvi2Ft57Xw_VDJEJqkCos.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.173.1.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:b8:b7:1d:47:c2:76:0a:7d:00:70:94:a9:fb:15:97:c7:de:
10:cd:27:04:ea:28:2d:ff:33:00:6f:20:21:ad:b3:64:73:05:
e9:f0:0b:cc:4f:da:14:d3:d9:85:43:06:25:f1:6d:b1:d5:6d:
d5:fe:be:4e:77:6e:f1:1e:cf:ee:dd:1c:c1:58:36:88:40:e1:
08:ea:86:b8:d9:ab:a6:6c:02:21:01:13:d6:c0:4a:30:1f:0b:
af:99:4e:6d:00:9e:b2:0a:e8:3a:11:f8:3b:ff:33:f3:25:fe:
1d:0d:44:c9:b7:40:11:ff:b8:b3:b3:14:3c:3b:c3:55:38:78:
3b:ca:7d:c5:01:57:10:b7:8a:67:9f:f8:87:da:85:89:d1:44:
07:9b:66:e3:aa:c2:c5:bf:fc:9c:60:3a:4e:ff:c9:cd:7c:4a:
8e:f9:3f:b9:36:cb:ad:a6:04:93:a1:c8:0c:37:52:f4:7c:d1:
99:3a:17:da:71:2d:e6:9b:6d:83:ff:89:da:b3:2b:8f:27:35:
55:85:24:17:98:ab:b2:3f:37:08:92:3c:79:df:a9:6e:76:95:
b6:87:71:4b:3f:25:ab:73:23:2e:8f:68:27:18:33:34:f4:77:
07:b1:af:76:54:0c:3c:f3:b6:44:ef:d6:52:79:fb:03:ac:ab:
fc:2c:95:d8
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICED0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMjA5MDEw
NjQ1MDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEUwQzMwNDE0NkMyRjhC
NjE2REU3QjVGMEZENTBDOTEwOUFBNDBBOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDlK0VIb8uay1kBt4KNT1hexCdxwi8cxugw1jYZW0t9HMN/nL4u
hmecwVYffnKM+UmC0JRwzl+FZGivYUse+Y0FpwzdoEOPZ7zqSw5jfsgLQiBdPCRZ
xKBnkxjCcbQoF9UMe7+0EZD/y1vd2xYoL1V/QIFsc9seRDNGuzazVaw2mk9bTCOs
wyKOl8w/uU3Ww2mNENNiO6BMlsUZelzRSrMFcjZmgUH+CASTqJ8cM95CQEKPA8DF
Qs7RYvuvZrDXnK07UrCHHQz4eUxdcoURnAt+2IPOFKkhRwcYXKIXX/XgZU68s3P+
NmSAtpCMCAoyjwDQWqzeKgpkIXTBZPrbVE2xAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU4MMEFGwvi2Ft57Xw/VDJEJqkCoswHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy80TU1FRkd3dmkyRnQ1N1h3X1ZE
SkVKcWtDb3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtq0B
MA0GCSqGSIb3DQEBCwUAA4IBAQC5uLcdR8J2Cn0AcJSp+xWXx94QzScE6igt/zMA
byAhrbNkcwXp8AvMT9oU09mFQwYl8W2x1W3V/r5Od27xHs/u3RzBWDaIQOEI6oa4
2aumbAIhARPWwEowHwuvmU5tAJ6yCug6Efg7/zPzJf4dDUTJt0AR/7izsxQ8O8NV
OHg7yn3FAVcQt4pnn/iH2oWJ0UQHm2bjqsLFv/ycYDpO/8nNfEqO+T+5NsutpgST
ocgMN1L0fNGZOhfacS3mm22D/4nasyuPJzVVhSQXmKuyPzcIkjx536ludpW2h3FL
PyWrcyMuj2gnGDM09HcHsa92VAw887ZE79ZSefsDrKv8LJXY
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:43 2023 by rpki-client on console-fra.rpki-client.org