Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/_L_N_SWAj8e08w66pQxW-5mGU7g.roa
File: _L_N_SWAj8e08w66pQxW-5mGU7g.roa (raw, json)
Hash identifier: TjZN56NzvzD/Mcfvc1rupvbGHBqbOQ15KRfX2Wfafjk=
Subject key identifier: FC:BF:CD:FD:25:80:8F:C7:B4:F3:0E:BA:A5:0C:56:FB:99:86:53:B8
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0EE3
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/_L_N_SWAj8e08w66pQxW-5mGU7g.roa
Signing time: Wed 29 Sep 2021 02:56:16 +0000
ROA not before: Wed 29 Sep 2021 02:56:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9311
IP address blocks: 150.242.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3811 (0xee3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 02:56:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FCBFCDFD25808FC7B4F30EBAA50C56FB998653B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:23:e1:f7:96:b0:f5:f3:1b:a4:51:e3:35:86:
10:3d:37:57:c4:12:c6:5b:5c:ab:87:52:a2:62:ed:
34:6d:e5:60:96:ee:9a:88:96:88:6e:fb:53:cc:d3:
23:69:53:c5:87:59:60:02:85:de:1a:fc:ae:e8:81:
d2:d5:ed:0b:a5:2c:1f:b1:f8:3b:fd:23:88:ce:88:
8b:f0:de:08:ac:f4:9a:a1:85:5c:f0:a9:e8:45:03:
af:75:63:c1:9d:fb:43:f7:64:e7:e1:51:60:32:44:
c8:0b:10:2c:44:ca:c8:dd:68:50:61:ca:ee:8b:20:
c4:18:fd:de:b8:4b:55:8f:99:50:76:4c:ce:d5:03:
d4:4e:b9:d2:cd:b2:25:b1:d6:0e:5d:86:c9:27:78:
0d:bb:4b:ff:86:13:3b:cf:d2:48:b0:9f:41:37:2a:
e5:b9:f2:ab:e0:9f:a5:65:6a:c0:01:4a:62:ab:9c:
e3:93:a8:bc:95:17:4c:c5:da:4d:9f:32:6c:5b:f0:
08:45:a1:22:6b:e1:d6:d5:11:b7:16:05:e5:c3:87:
55:e2:84:05:ac:e9:cf:ce:05:75:43:ce:26:d5:58:
7e:27:8f:8b:31:ee:9e:c9:e7:33:a6:c2:cb:40:88:
a8:d3:31:5b:db:aa:b1:05:a2:7b:89:28:3b:e4:f8:
f2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:BF:CD:FD:25:80:8F:C7:B4:F3:0E:BA:A5:0C:56:FB:99:86:53:B8
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/_L_N_SWAj8e08w66pQxW-5mGU7g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.242.100.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:9a:56:b4:17:f0:8b:83:05:a4:d6:81:40:36:34:9e:92:b8:
85:00:f6:b7:cb:b0:e1:05:bf:cc:ff:9d:bf:fa:a5:83:59:54:
9d:8f:07:57:cf:52:81:6f:9a:8f:3b:96:10:d9:f7:0f:66:7c:
d9:75:44:c2:c5:03:45:94:ad:4c:ac:29:39:a8:96:47:3f:78:
ef:6a:51:c6:30:4f:c1:63:46:bd:45:03:3c:0a:07:35:a2:d2:
94:80:b4:4d:f8:06:b3:fb:b8:c4:1c:a1:99:e2:f9:c7:10:ac:
ef:7e:42:96:84:fb:6d:ee:70:22:a5:8b:42:87:cf:6b:46:d1:
f7:d3:45:60:13:14:9f:c6:49:d2:e5:8d:d6:72:71:f2:ee:c1:
b7:f8:85:67:9c:42:24:bc:47:22:2e:b6:36:29:a8:c2:f5:44:
19:88:ed:bb:c9:d2:a4:5f:e6:10:ce:94:52:56:10:c4:43:37:
67:43:bd:be:08:54:a4:9c:f6:60:d5:48:92:7f:21:d8:27:e1:
d0:76:d6:aa:1e:02:db:e8:fa:9a:c9:05:08:7e:3f:06:b3:7d:
87:39:85:5e:9b:0f:61:4c:ff:5d:59:67:7d:8a:0e:91:31:70:
bf:a1:78:3b:c8:e3:e7:b5:99:5a:c7:c7:d9:57:a7:39:cf:5d:
fe:23:ca:30
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDuMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMTA5Mjkw
MjU2MTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEZDQkZDREZEMjU4MDhG
QzdCNEYzMEVCQUE1MEM1NkZCOTk4NjUzQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtI+H3lrD18xukUeM1hhA9N1fEEsZbXKuHUqJi7TRt5WCW7pqI
lohu+1PM0yNpU8WHWWAChd4a/K7ogdLV7QulLB+x+Dv9I4jOiIvw3gis9JqhhVzw
qehFA691Y8Gd+0P3ZOfhUWAyRMgLECxEysjdaFBhyu6LIMQY/d64S1WPmVB2TM7V
A9ROudLNsiWx1g5dhskneA27S/+GEzvP0kiwn0E3KuW58qvgn6VlasABSmKrnOOT
qLyVF0zF2k2fMmxb8AhFoSJr4dbVEbcWBeXDh1XihAWs6c/OBXVDzibVWH4nj4sx
7p7J5zOmwstAiKjTMVvbqrEFonuJKDvk+PJRAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU/L/N/SWAj8e08w66pQxW+5mGU7gwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9fTF9OX1NXQWo4ZTA4dzY2cFF4
Vy01bUdVN2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClvJk
MA0GCSqGSIb3DQEBCwUAA4IBAQC0mla0F/CLgwWk1oFANjSekriFAPa3y7DhBb/M
/52/+qWDWVSdjwdXz1KBb5qPO5YQ2fcPZnzZdUTCxQNFlK1MrCk5qJZHP3jvalHG
ME/BY0a9RQM8Cgc1otKUgLRN+Aaz+7jEHKGZ4vnHEKzvfkKWhPtt7nAipYtCh89r
RtH300VgExSfxknS5Y3WcnHy7sG3+IVnnEIkvEciLrY2KajC9UQZiO27ydKkX+YQ
zpRSVhDEQzdnQ72+CFSknPZg1UiSfyHYJ+HQdtaqHgLb6PqayQUIfj8Gs32HOYVe
mw9hTP9dWWd9ig6RMXC/oXg7yOPntZlax8fZV6c5z13+I8ow
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-fra.rpki-client.org