Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/XVEnIFaCTHmy5ZREMqtlQYO8BZo.roa
File: XVEnIFaCTHmy5ZREMqtlQYO8BZo.roa (raw, json)
Hash identifier: PbFk1C+3Rsrih6gywfgttqz6CGNppnLdnIqQ21+yh7o=
Subject key identifier: 5D:51:27:20:56:82:4C:79:B2:E5:94:44:32:AB:65:41:83:BC:05:9A
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 104C
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/XVEnIFaCTHmy5ZREMqtlQYO8BZo.roa
Signing time: Thu 15 Sep 2022 02:37:11 +0000
ROA not before: Thu 15 Sep 2022 02:37:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131644
IP address blocks: 182.173.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4172 (0x104c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 15 02:37:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5D51272056824C79B2E5944432AB654183BC059A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:30:b8:0d:7d:d1:87:b7:ff:4c:e9:6e:15:8a:
23:9b:eb:71:00:d9:23:32:14:2b:f2:f5:b9:88:3e:
ed:61:44:c0:bc:75:82:b4:86:ca:a2:13:fe:ef:29:
87:40:91:ad:0b:05:a7:d8:c5:f7:f8:e2:4a:b6:4f:
de:59:fb:0d:c9:95:3b:79:4a:82:db:f0:55:62:7a:
8b:68:5c:0e:96:bc:f0:f6:c1:0e:3d:fd:be:e4:04:
ee:45:0f:66:e3:f2:2a:b0:4d:ea:5b:59:b5:e7:0f:
ce:5b:b1:81:c2:25:a4:83:21:53:8e:33:bb:1f:fa:
05:ab:05:49:1a:9e:bd:9c:fe:47:3e:3a:f3:cc:c9:
47:bc:c6:0b:49:77:f9:ed:df:ea:31:5f:a3:b6:31:
a1:48:f4:6e:0e:cb:ae:7d:57:41:77:01:cc:78:70:
9c:71:9c:f9:69:d1:47:01:58:40:d0:d8:93:e9:6a:
71:05:8a:af:aa:8c:c2:95:a3:73:3b:ac:1c:7e:ca:
72:fe:b6:57:2c:71:0c:e2:6c:ea:14:a9:0b:07:d3:
bd:14:a9:32:58:0c:1b:0a:58:79:13:a3:79:85:7b:
cd:a4:26:60:52:73:c3:ee:20:e6:45:91:93:af:1b:
23:95:25:a4:fa:96:5b:d9:11:f5:07:01:f0:ec:0c:
c3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:51:27:20:56:82:4C:79:B2:E5:94:44:32:AB:65:41:83:BC:05:9A
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/XVEnIFaCTHmy5ZREMqtlQYO8BZo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.173.0.0/24
Signature Algorithm: sha256WithRSAEncryption
51:03:1a:84:fe:4c:d0:f4:33:b4:94:56:65:22:23:ab:44:75:
b4:6d:7c:0b:86:27:28:88:ad:b4:bb:96:6e:5b:67:85:a7:ac:
d1:53:a6:3e:2e:0b:92:8c:bc:18:48:75:85:b2:82:6a:c8:4e:
4c:e5:2e:54:c5:e6:a4:c6:16:5d:26:ac:55:12:28:c1:73:3d:
9c:77:f2:d5:dc:fe:94:dc:17:54:f4:51:c6:aa:b6:d3:9d:77:
1c:1d:dc:ed:38:95:ce:67:0c:66:5e:90:af:2b:63:c9:5a:f3:
79:db:ed:3f:af:eb:3a:cd:2d:c7:d3:1a:68:0e:f0:49:88:05:
4d:45:ed:6f:d5:1e:30:00:c6:cb:84:b7:a8:ae:8a:91:4b:4b:
50:42:ce:00:e7:6e:47:2d:30:69:91:1a:0f:16:41:b0:16:a7:
a1:4a:b6:6f:75:96:a4:2e:fa:0b:bd:03:b4:16:db:e2:5d:6b:
c7:79:2d:4f:7d:4d:27:c1:9f:32:81:af:9a:3d:fe:1a:7d:19:
1f:ef:4a:a8:52:b8:15:dc:c4:e1:51:7f:63:5a:10:af:c7:c2:
bb:4d:56:42:f8:ce:b5:24:bf:04:36:5b:e2:52:db:f2:55:be:
a2:46:87:49:d5:06:6d:3c:e5:a2:b1:b7:a9:84:5e:f6:ad:52:
96:79:90:58
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEEwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMjA5MTUw
MjM3MTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDVENTEyNzIwNTY4MjRD
NzlCMkU1OTQ0NDMyQUI2NTQxODNCQzA1OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPMLgNfdGHt/9M6W4ViiOb63EA2SMyFCvy9bmIPu1hRMC8dYK0
hsqiE/7vKYdAka0LBafYxff44kq2T95Z+w3JlTt5SoLb8FVieotoXA6WvPD2wQ49
/b7kBO5FD2bj8iqwTepbWbXnD85bsYHCJaSDIVOOM7sf+gWrBUkanr2c/kc+OvPM
yUe8xgtJd/nt3+oxX6O2MaFI9G4Oy659V0F3Acx4cJxxnPlp0UcBWEDQ2JPpanEF
iq+qjMKVo3M7rBx+ynL+tlcscQzibOoUqQsH070UqTJYDBsKWHkTo3mFe82kJmBS
c8PuIOZFkZOvGyOVJaT6llvZEfUHAfDsDMPfAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUXVEnIFaCTHmy5ZREMqtlQYO8BZowHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9YVkVuSUZhQ1RIbXk1WlJFTXF0
bFFZTzhCWm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtq0A
MA0GCSqGSIb3DQEBCwUAA4IBAQBRAxqE/kzQ9DO0lFZlIiOrRHW0bXwLhicoiK20
u5ZuW2eFp6zRU6Y+LguSjLwYSHWFsoJqyE5M5S5UxeakxhZdJqxVEijBcz2cd/LV
3P6U3BdU9FHGqrbTnXccHdztOJXOZwxmXpCvK2PJWvN52+0/r+s6zS3H0xpoDvBJ
iAVNRe1v1R4wAMbLhLeoroqRS0tQQs4A525HLTBpkRoPFkGwFqehSrZvdZakLvoL
vQO0FtviXWvHeS1PfU0nwZ8yga+aPf4afRkf70qoUrgV3MThUX9jWhCvx8K7TVZC
+M61JL8ENlviUtvyVb6iRodJ1QZtPOWisbephF72rVKWeZBY
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org