Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Q4RGW30qawDHkFeI3u56BBYMTg0.roa
File: Q4RGW30qawDHkFeI3u56BBYMTg0.roa (raw, json)
Hash identifier: 4Piy7Pw5sH7xZFxvbu8vDoABB+EKIsNlqun6uM8yASk=
Subject key identifier: 43:84:46:5B:7D:2A:6B:00:C7:90:57:88:DE:EE:7A:04:16:0C:4E:0D
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1080
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Q4RGW30qawDHkFeI3u56BBYMTg0.roa
Signing time: Thu 13 Oct 2022 08:51:02 +0000
ROA not before: Thu 13 Oct 2022 08:51:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 150.242.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4224 (0x1080)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Oct 13 08:51:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4384465B7D2A6B00C7905788DEEE7A04160C4E0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:91:cf:e7:3a:cd:8b:33:91:a8:d3:9c:7d:78:
04:1f:59:ee:13:c2:51:26:7b:09:12:ff:70:22:d2:
df:c7:93:4d:1e:ac:8a:5f:3e:23:1b:9d:df:91:37:
d8:05:c0:52:7c:bd:36:00:2c:5f:ed:2c:dc:ec:f2:
f5:db:6a:1d:34:5f:94:f0:02:8f:ae:82:2f:8b:f8:
17:b5:59:50:b8:bd:5b:f5:0e:ed:13:6e:38:47:c1:
a0:27:86:13:10:92:7d:be:82:72:2f:7d:98:8e:cf:
c2:b5:cb:4c:18:eb:dc:ce:7e:dc:36:66:cb:f2:d2:
1a:45:bf:e1:61:dc:8e:cd:69:09:ed:fb:5d:5c:f9:
61:4c:bd:77:e8:0a:a1:fb:2e:0a:6f:20:a1:cc:46:
d2:b3:0e:70:e3:4e:ef:3e:48:be:13:0b:1f:40:cb:
67:8d:c8:d6:5f:af:bc:ae:de:d1:83:1a:16:3b:ce:
16:e7:6d:3a:6f:57:34:66:8e:cb:01:f2:c0:14:ca:
67:fe:ed:ab:a3:bc:b4:aa:0b:0c:5a:89:76:0e:83:
5e:a5:44:4e:07:c9:63:88:e2:1c:56:2d:49:ed:21:
fc:e2:e9:a3:5d:98:34:80:b8:96:8a:b8:7a:5b:c7:
d2:0f:d6:31:2a:d1:4d:fa:9c:a7:36:55:ff:d3:0d:
70:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:84:46:5B:7D:2A:6B:00:C7:90:57:88:DE:EE:7A:04:16:0C:4E:0D
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Q4RGW30qawDHkFeI3u56BBYMTg0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.242.100.0/22
Signature Algorithm: sha256WithRSAEncryption
22:80:ae:db:10:3f:19:e8:f0:9d:8a:07:3e:6b:1b:11:22:a7:
a3:23:10:65:3a:f6:92:62:5b:a7:4b:a5:5e:30:35:bd:78:65:
29:33:c4:e1:b4:d8:f8:bc:c3:1f:34:e0:27:49:5e:39:b0:f2:
f3:52:7b:6f:67:11:eb:5f:b4:80:d0:ea:a6:9e:b8:7e:af:9e:
48:c8:97:b6:e9:c6:8d:bd:47:ef:44:39:bf:35:e5:f7:35:6a:
f6:5a:b9:47:9c:b3:f1:1f:67:5f:f2:86:44:50:d0:4a:38:67:
1a:bc:3d:5b:8f:a1:a5:8b:be:69:dd:b0:76:6e:60:f2:40:d9:
ef:b8:a1:79:9c:56:f3:f7:64:97:76:03:14:11:64:1e:42:27:
76:76:0d:f8:21:48:e6:ec:03:d6:8f:23:8e:13:71:b1:16:86:
52:eb:94:4d:b0:ce:df:3d:35:65:a6:64:d8:a2:d3:02:19:0a:
d4:80:08:12:7a:64:72:59:56:8d:68:6e:dd:16:f8:ee:d4:ac:
20:fa:24:c9:e5:11:2d:4e:2a:f9:2d:a8:83:ef:0d:8e:f1:4e:
a9:f0:35:8f:40:01:2e:0a:b3:e3:05:7d:c3:cb:53:e5:b1:05:
a4:d6:e2:f0:c6:be:a7:e0:6d:a4:62:53:aa:db:d1:43:40:db:
b6:bb:59:3f
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEIAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMjEwMTMw
ODUxMDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQzODQ0NjVCN0QyQTZC
MDBDNzkwNTc4OERFRUU3QTA0MTYwQzRFMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIkc/nOs2LM5Go05x9eAQfWe4TwlEmewkS/3Ai0t/Hk00erIpf
PiMbnd+RN9gFwFJ8vTYALF/tLNzs8vXbah00X5TwAo+ugi+L+Be1WVC4vVv1Du0T
bjhHwaAnhhMQkn2+gnIvfZiOz8K1y0wY69zOftw2Zsvy0hpFv+Fh3I7NaQnt+11c
+WFMvXfoCqH7LgpvIKHMRtKzDnDjTu8+SL4TCx9Ay2eNyNZfr7yu3tGDGhY7zhbn
bTpvVzRmjssB8sAUymf+7aujvLSqCwxaiXYOg16lRE4HyWOI4hxWLUntIfzi6aNd
mDSAuJaKuHpbx9IP1jEq0U36nKc2Vf/TDXDfAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUQ4RGW30qawDHkFeI3u56BBYMTg0wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9RNFJHVzMwcWF3REhrRmVJM3U1
NkJCWU1UZzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClvJk
MA0GCSqGSIb3DQEBCwUAA4IBAQAigK7bED8Z6PCdigc+axsRIqejIxBlOvaSYlun
S6VeMDW9eGUpM8ThtNj4vMMfNOAnSV45sPLzUntvZxHrX7SA0Oqmnrh+r55IyJe2
6caNvUfvRDm/NeX3NWr2WrlHnLPxH2df8oZEUNBKOGcavD1bj6Gli75p3bB2bmDy
QNnvuKF5nFbz92SXdgMUEWQeQid2dg34IUjm7APWjyOOE3GxFoZS65RNsM7fPTVl
pmTYotMCGQrUgAgSemRyWVaNaG7dFvju1Kwg+iTJ5REtTir5LaiD7w2O8U6p8DWP
QAEuCrPjBX3Dy1PlsQWk1uLwxr6n4G2kYlOq29FDQNu2u1k/
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org