Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/5_RTHVeZ00fT7vzG2At5nkiBcTM.roa
File: 5_RTHVeZ00fT7vzG2At5nkiBcTM.roa (raw, json)
Hash identifier: nLQm68kIYFFll/+pybF5GuvRjMJhugkO9TwMJWu7wgA=
Subject key identifier: E7:F4:53:1D:57:99:D3:47:D3:EE:FC:C6:D8:0B:79:9E:48:81:71:33
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 077A
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/5_RTHVeZ00fT7vzG2At5nkiBcTM.roa
Signing time: Tue 29 Sep 2020 10:07:22 +0000
ROA not before: Tue 29 Sep 2020 10:07:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 43.250.46.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1914 (0x77a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Sep 29 10:07:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E7F4531D5799D347D3EEFCC6D80B799E48817133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4e:4b:33:7a:26:79:d4:e8:fb:41:24:8e:74:
26:68:bc:9d:46:4d:63:94:8f:1a:43:74:75:cc:e5:
52:91:96:7b:fb:53:cf:2a:57:8f:22:d6:5a:df:fa:
a3:13:84:76:ff:cd:be:6c:3f:f8:7f:46:9d:55:2c:
2c:a0:57:30:75:a8:9c:1b:a4:85:cd:01:35:51:5d:
c1:4d:84:a4:e8:3b:53:ae:83:af:89:ec:24:b4:83:
1c:8f:f6:8c:03:d5:8a:b7:46:b4:d9:a3:10:58:a6:
c6:00:59:22:1b:92:04:cf:c4:62:58:6c:48:06:80:
0f:29:9b:61:12:12:45:62:a1:87:8b:93:1a:52:17:
0a:77:b5:33:20:23:df:dd:c5:50:af:14:95:58:92:
4b:6a:e2:69:af:15:8c:9b:15:34:ee:90:a8:f5:09:
57:c0:0d:76:6e:f6:d4:a0:9f:6b:1c:2e:3b:8d:61:
2d:27:c3:95:fe:6a:27:7a:8e:44:c0:47:af:cd:d1:
8b:81:bc:c6:f8:32:c7:52:e6:48:32:dc:cc:ab:ec:
dc:ce:14:69:75:03:47:e6:c2:a1:c1:60:b4:94:6b:
24:2e:be:e5:d7:67:cd:89:08:cf:ac:45:29:89:9a:
d5:78:e7:47:23:37:c4:d0:46:09:80:58:1d:2e:3c:
d9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F4:53:1D:57:99:D3:47:D3:EE:FC:C6:D8:0B:79:9E:48:81:71:33
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/5_RTHVeZ00fT7vzG2At5nkiBcTM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.46.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:d5:16:cb:b1:74:27:01:5e:98:8f:49:5f:f0:d7:b6:0c:64:
da:cd:06:05:2f:dd:6a:94:23:2a:1e:bd:7a:35:fc:33:3e:2b:
98:cc:d4:67:cd:41:f6:eb:40:75:79:2d:e3:b4:5a:23:2e:2c:
aa:57:bf:df:fb:61:78:0b:58:74:8c:78:9e:44:04:36:51:75:
70:ed:f5:f2:a7:7f:cb:de:75:3b:8a:06:7c:da:0e:be:85:c8:
7a:0d:e8:53:c5:af:9c:19:fc:61:c1:db:e0:bc:a8:b9:85:9e:
03:cb:73:3f:d0:7f:80:23:45:c0:a6:d8:a4:8b:2d:4d:72:d6:
5e:25:a1:cb:9f:60:fb:92:3d:78:9b:4f:0e:06:98:cc:e8:2b:
fb:55:dc:ed:f0:fc:57:6e:86:66:f5:a9:f4:29:8f:77:10:65:
04:b3:85:2d:86:f0:32:e4:bc:1f:f6:7f:1f:8c:c2:27:96:77:
00:91:18:74:cb:98:84:4d:1a:57:b6:04:64:1a:29:09:93:8e:
9f:eb:6d:51:22:6e:86:29:e8:06:ff:83:eb:cf:f9:87:3b:af:
34:0f:70:14:dc:86:63:db:4b:1e:92:6b:07:b1:c0:4c:68:14:
e2:b7:66:c2:a9:c6:5a:a7:34:b7:0b:a9:fb:06:60:9c:2a:04:
d8:9a:a9:d7
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICB3owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VD
N0YxNjc3QkI0OTIzODAyODIxNTNCQjc3RUMyRUJFMzE4NTM3ODAeFw0yMDA5Mjkx
MDA3MjJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEU3RjQ1MzFENTc5OUQz
NDdEM0VFRkNDNkQ4MEI3OTlFNDg4MTcxMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqTkszeiZ51Oj7QSSOdCZovJ1GTWOUjxpDdHXM5VKRlnv7U88q
V48i1lrf+qMThHb/zb5sP/h/Rp1VLCygVzB1qJwbpIXNATVRXcFNhKToO1Oug6+J
7CS0gxyP9owD1Yq3RrTZoxBYpsYAWSIbkgTPxGJYbEgGgA8pm2ESEkVioYeLkxpS
Fwp3tTMgI9/dxVCvFJVYkktq4mmvFYybFTTukKj1CVfADXZu9tSgn2scLjuNYS0n
w5X+aid6jkTAR6/N0YuBvMb4MsdS5kgy3Myr7NzOFGl1A0fmwqHBYLSUayQuvuXX
Z82JCM+sRSmJmtV450cjN8TQRgmAWB0uPNkvAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU5/RTHVeZ00fT7vzG2At5nkiBcTMwHwYDVR0jBBgwFoAUfsfxZ3u0kjgCghU7
t37C6+MYU3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2Zz
ZnhaM3Uwa2pnQ2doVTd0MzdDNi1NWVUzZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZnNmeFozdTBramdDZ2hVN3QzN0M2LU1ZVTNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVFdULzVfUlRIVmVaMDBmVDd2ekcyQXQ1bmtp
QmNUTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEr+i4wDQYJ
KoZIhvcNAQELBQADggEBAB7VFsuxdCcBXpiPSV/w17YMZNrNBgUv3WqUIyoevXo1
/DM+K5jM1GfNQfbrQHV5LeO0WiMuLKpXv9/7YXgLWHSMeJ5EBDZRdXDt9fKnf8ve
dTuKBnzaDr6FyHoN6FPFr5wZ/GHB2+C8qLmFngPLcz/Qf4AjRcCm2KSLLU1y1l4l
ocufYPuSPXibTw4GmMzoK/tV3O3w/Fduhmb1qfQpj3cQZQSzhS2G8DLkvB/2fx+M
wieWdwCRGHTLmIRNGle2BGQaKQmTjp/rbVEiboYp6Ab/g+vP+Yc7rzQPcBTchmPb
Sx6SawexwExoFOK3ZsKpxlqnNLcLqfsGYJwqBNiaqdc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org