Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/zMaulfZx6JjlIlEG9J4tNeWMwBQ.roa
File: zMaulfZx6JjlIlEG9J4tNeWMwBQ.roa (raw, json)
Hash identifier: jWLrzDGFH67CmlQx5Qs195tupnZm87kh1LXxpx9GXU8=
Subject key identifier: CC:C6:AE:95:F6:71:E8:98:E5:22:51:06:F4:9E:2D:35:E5:8C:C0:14
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 108E
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/zMaulfZx6JjlIlEG9J4tNeWMwBQ.roa
Signing time: Thu 13 Oct 2022 08:52:47 +0000
ROA not before: Thu 13 Oct 2022 08:52:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 203.119.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4238 (0x108e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Oct 13 08:52:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CCC6AE95F671E898E5225106F49E2D35E58CC014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:60:d2:a0:47:38:82:2f:45:e2:08:d5:0f:b6:
ad:e0:3a:fa:3b:a4:e9:0f:0b:fa:75:e2:2b:88:88:
fa:d3:be:8d:8c:f4:47:56:e7:9d:2e:36:08:88:53:
5b:7d:a6:91:84:e0:0e:6e:bc:e5:72:cd:ed:d6:e8:
08:86:c4:3a:cf:44:66:92:01:37:d4:39:43:74:3c:
6d:5e:d8:63:7d:87:cb:59:85:16:81:2d:ee:ce:3d:
3f:56:ba:b1:75:7b:c6:23:27:2a:2b:27:0f:0c:ce:
b5:0b:c3:9e:87:03:5a:fa:fe:74:ac:bc:0b:68:57:
94:2c:9a:7a:05:b0:f8:6d:2a:fc:56:3d:d6:94:8f:
42:6d:98:fe:6b:e8:bc:9b:e7:d4:e2:6d:01:11:42:
3b:23:3d:29:44:ae:85:72:2f:c3:69:a7:ea:e7:ce:
01:37:20:1e:5f:3e:de:01:fe:3c:de:d6:75:42:71:
70:7f:89:3a:b2:b8:9f:63:47:20:1d:db:de:c9:51:
d1:12:e5:70:a9:59:cb:bd:ad:2f:36:65:3b:26:17:
73:17:8d:2a:d1:c6:87:5b:bb:39:af:26:82:b6:90:
36:ac:be:df:aa:ae:5a:dd:a6:a1:4c:d0:8b:1e:e4:
f0:18:ef:ef:12:19:07:d4:31:9b:3f:35:36:d9:e5:
f5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:C6:AE:95:F6:71:E8:98:E5:22:51:06:F4:9E:2D:35:E5:8C:C0:14
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/zMaulfZx6JjlIlEG9J4tNeWMwBQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.119.94.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:ec:7d:4e:96:10:59:74:b3:c3:7f:29:00:56:e5:9a:15:b4:
3c:66:86:25:08:09:54:74:68:1e:35:3f:38:5b:b4:02:22:2f:
00:0c:61:ee:a6:28:bb:41:c5:5d:23:53:be:d0:6d:ea:8f:16:
f7:e5:16:42:d1:cc:41:a4:e3:f5:44:90:f9:c5:5f:97:ab:85:
5c:b3:b0:71:40:bc:47:41:ea:0d:4b:9b:6e:67:60:9b:3c:da:
da:51:97:de:af:c8:26:18:06:70:1b:8f:07:16:fc:e9:aa:87:
bc:7a:a3:7c:97:79:02:e4:8f:e9:eb:07:7d:50:b2:fd:a3:36:
81:58:19:17:69:a9:30:93:14:93:02:5c:5d:12:2c:4d:04:e5:
25:a5:af:6b:34:66:47:9e:f4:15:b5:56:f5:28:48:1a:67:16:
2b:25:9a:d3:cc:ca:b0:9d:1d:c1:64:35:17:e5:11:83:88:24:
10:9b:a6:87:78:ae:f5:b7:c7:54:c0:d5:f4:ac:cd:5b:65:1f:
cb:ed:bd:25:e4:a0:6a:57:a6:c8:ff:56:fc:10:93:c3:00:74:
9f:41:5d:a2:9b:e6:21:c9:d4:8d:6f:e3:76:f0:de:7d:22:95:
7e:c9:78:0b:20:59:bb:8d:31:e2:a8:fd:78:c7:10:d0:6d:70:
a1:a3:80:e9
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMjEwMTMw
ODUyNDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKENDQzZBRTk1RjY3MUU4
OThFNTIyNTEwNkY0OUUyRDM1RTU4Q0MwMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCYYNKgRziCL0XiCNUPtq3gOvo7pOkPC/p14iuIiPrTvo2M9EdW
550uNgiIU1t9ppGE4A5uvOVyze3W6AiGxDrPRGaSATfUOUN0PG1e2GN9h8tZhRaB
Le7OPT9WurF1e8YjJyorJw8MzrULw56HA1r6/nSsvAtoV5QsmnoFsPhtKvxWPdaU
j0JtmP5r6Lyb59TibQERQjsjPSlEroVyL8Npp+rnzgE3IB5fPt4B/jze1nVCcXB/
iTqyuJ9jRyAd297JUdES5XCpWcu9rS82ZTsmF3MXjSrRxodbuzmvJoK2kDasvt+q
rlrdpqFM0Ise5PAY7+8SGQfUMZs/NTbZ5fWDAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUzMaulfZx6JjlIlEG9J4tNeWMwBQwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy96TWF1bGZaeDZKamxJbEVHOUo0
dE5lV013QlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy3de
MA0GCSqGSIb3DQEBCwUAA4IBAQCf7H1OlhBZdLPDfykAVuWaFbQ8ZoYlCAlUdGge
NT84W7QCIi8ADGHupii7QcVdI1O+0G3qjxb35RZC0cxBpOP1RJD5xV+Xq4Vcs7Bx
QLxHQeoNS5tuZ2CbPNraUZfer8gmGAZwG48HFvzpqoe8eqN8l3kC5I/p6wd9ULL9
ozaBWBkXaakwkxSTAlxdEixNBOUlpa9rNGZHnvQVtVb1KEgaZxYrJZrTzMqwnR3B
ZDUX5RGDiCQQm6aHeK71t8dUwNX0rM1bZR/L7b0l5KBqV6bI/1b8EJPDAHSfQV2i
m+YhydSNb+N28N59IpV+yXgLIFm7jTHiqP14xxDQbXCho4Dp
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org