Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/8K1b3odpKk7LM6bqJyYZTdRHQXw.roa
File: 8K1b3odpKk7LM6bqJyYZTdRHQXw.roa (raw, json)
Hash identifier: ofrptZIcG29Nu+uxmcFMG/PdE72sC8aa3/qBvgCs+mw=
Subject key identifier: F0:AD:5B:DE:87:69:2A:4E:CB:33:A6:EA:27:26:19:4D:D4:47:41:7C
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 0970
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/8K1b3odpKk7LM6bqJyYZTdRHQXw.roa
Signing time: Wed 29 Sep 2021 02:39:17 +0000
ROA not before: Wed 29 Sep 2021 02:39:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 43.250.44.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2416 (0x970)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Sep 29 02:39:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F0AD5BDE87692A4ECB33A6EA2726194DD447417C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d1:93:fa:20:bb:41:c9:04:cb:00:2f:49:b9:
7e:97:ab:ad:a0:e2:06:2a:6f:87:1f:5f:60:64:bd:
a8:11:72:63:92:28:12:d3:d3:60:41:5d:77:22:ca:
9e:fd:a7:46:31:0f:53:9c:99:3f:32:c6:94:50:c3:
94:e2:4c:3b:a9:35:78:e4:d3:3e:59:f4:ee:1a:6d:
37:47:45:52:1a:08:f9:22:c8:9c:4d:b6:e1:e2:2c:
de:a1:91:50:cd:29:de:8f:e7:29:2d:a6:ee:ac:46:
32:52:0c:93:e6:d6:a3:d9:83:dd:87:39:3b:7f:b3:
c3:c6:b6:34:4c:21:4a:89:ff:04:4c:b2:34:93:82:
09:45:77:09:6c:5b:61:6e:f8:01:4b:52:8e:ea:ee:
09:13:3f:92:22:6a:28:67:c2:10:d4:6f:6c:dc:80:
51:79:a5:ff:ae:5b:75:a7:21:a1:ac:2d:9d:99:e6:
8d:eb:25:e2:ff:6f:8c:16:11:62:93:b0:35:ff:92:
f6:56:c5:6b:72:f7:4d:a9:52:51:04:71:f1:76:7d:
2b:03:c1:9c:d2:b5:6c:a9:d6:de:5b:d1:32:f6:90:
3d:d9:9a:9e:76:b9:5c:af:b5:e3:64:d7:8a:18:97:
bd:d8:35:71:ed:ce:cb:d4:b8:6c:d1:73:dc:d6:89:
f3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:AD:5B:DE:87:69:2A:4E:CB:33:A6:EA:27:26:19:4D:D4:47:41:7C
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/8K1b3odpKk7LM6bqJyYZTdRHQXw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.44.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:f2:2a:02:ae:50:c4:53:23:78:a7:ef:44:69:ee:2b:60:fb:
7b:89:45:1f:53:16:ee:d4:fc:40:31:2a:fe:58:cc:a4:0d:70:
72:d9:50:e4:ef:c2:e4:b0:02:72:6d:d3:03:ca:3c:7a:67:15:
ea:6c:f9:1b:c9:c3:7f:52:60:0b:eb:fc:7e:8d:da:08:26:da:
71:99:8b:3f:ee:75:f2:0a:6c:6a:a7:f1:76:2c:f3:20:38:26:
f5:56:90:87:f8:f4:9c:8a:61:87:5e:d5:43:fc:6f:91:c2:92:
24:88:82:e0:0f:2b:6c:f2:76:14:ed:36:4a:83:35:3d:72:c4:
ba:1d:e1:cb:41:9f:45:e0:1e:ab:cf:b8:59:6b:1c:26:a2:8c:
cf:ed:0d:b4:b2:31:a3:12:a1:ff:8f:54:b8:a8:15:c4:e3:ee:
3a:2a:59:4f:57:52:89:42:82:45:e6:a4:63:2f:9f:cc:06:55:
7b:2a:b1:51:5a:7d:9a:75:37:66:b9:74:4d:1a:76:24:6f:74:
7d:32:4f:f4:34:fa:32:91:12:98:12:7d:65:c1:63:88:eb:c5:
ce:bd:41:25:11:4d:0a:06:ce:d2:ea:45:f5:85:c2:1e:62:47:
70:64:e3:c7:d8:9e:95:ed:57:b3:a5:ab:39:ae:70:e6:65:18:
48:cc:0f:c7
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCXAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VD
N0YxNjc3QkI0OTIzODAyODIxNTNCQjc3RUMyRUJFMzE4NTM3ODAeFw0yMTA5Mjkw
MjM5MTdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEYwQUQ1QkRFODc2OTJB
NEVDQjMzQTZFQTI3MjYxOTRERDQ0NzQxN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC10ZP6ILtByQTLAC9JuX6Xq62g4gYqb4cfX2BkvagRcmOSKBLT
02BBXXciyp79p0YxD1OcmT8yxpRQw5TiTDupNXjk0z5Z9O4abTdHRVIaCPkiyJxN
tuHiLN6hkVDNKd6P5yktpu6sRjJSDJPm1qPZg92HOTt/s8PGtjRMIUqJ/wRMsjST
gglFdwlsW2Fu+AFLUo7q7gkTP5IiaihnwhDUb2zcgFF5pf+uW3WnIaGsLZ2Z5o3r
JeL/b4wWEWKTsDX/kvZWxWty902pUlEEcfF2fSsDwZzStWyp1t5b0TL2kD3Zmp52
uVyvteNk14oYl73YNXHtzsvUuGzRc9zWifOpAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU8K1b3odpKk7LM6bqJyYZTdRHQXwwHwYDVR0jBBgwFoAUfsfxZ3u0kjgCghU7
t37C6+MYU3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2Zz
ZnhaM3Uwa2pnQ2doVTd0MzdDNi1NWVUzZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZnNmeFozdTBramdDZ2hVN3QzN0M2LU1ZVTNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVFdULzhLMWIzb2RwS2s3TE02YnFKeVlaVGRS
SFFYdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr+iwwDQYJ
KoZIhvcNAQELBQADggEBAE/yKgKuUMRTI3in70Rp7itg+3uJRR9TFu7U/EAxKv5Y
zKQNcHLZUOTvwuSwAnJt0wPKPHpnFeps+RvJw39SYAvr/H6N2ggm2nGZiz/udfIK
bGqn8XYs8yA4JvVWkIf49JyKYYde1UP8b5HCkiSIguAPK2zydhTtNkqDNT1yxLod
4ctBn0XgHqvPuFlrHCaijM/tDbSyMaMSof+PVLioFcTj7joqWU9XUolCgkXmpGMv
n8wGVXsqsVFafZp1N2a5dE0adiRvdH0yT/Q0+jKREpgSfWXBY4jrxc69QSURTQoG
ztLqRfWFwh5iR3Bk48fYnpXtV7OlqzmucOZlGEjMD8c=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org