Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/G_kfH6PBX2VVEs6wGVWtlUVNxms.roa
File: G_kfH6PBX2VVEs6wGVWtlUVNxms.roa (raw, json)
Hash identifier: d2jumVHrq5S1n+/ilEKnIgiy4JMhaUA8qY6wMG3ybZ0=
Subject key identifier: 1B:F9:1F:1F:A3:C1:5F:65:55:12:CE:B0:19:55:AD:95:45:4D:C6:6B
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 077E
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/G_kfH6PBX2VVEs6wGVWtlUVNxms.roa
Signing time: Tue 29 Sep 2020 10:07:23 +0000
ROA not before: Tue 29 Sep 2020 10:07:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 43.250.44.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1918 (0x77e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Sep 29 10:07:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1BF91F1FA3C15F655512CEB01955AD95454DC66B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:27:11:21:08:d0:ac:78:8c:bb:b5:7e:de:ca:
9c:ca:99:00:9a:ce:bc:02:59:e5:db:f3:fb:46:e6:
fb:a1:0a:b9:46:1d:dd:f3:7a:d0:67:00:12:4f:31:
1e:c3:75:ee:69:dc:f5:2c:ac:1e:65:1c:20:c3:5d:
a5:6a:90:be:6d:8d:13:13:5d:12:38:5a:34:f7:f2:
2c:27:3a:44:7c:26:b9:81:f1:47:52:cb:aa:05:f8:
93:2d:5c:4b:08:7d:29:57:7a:23:e2:44:66:00:7c:
b2:44:86:4d:1d:ae:10:42:ca:2c:86:81:c8:2d:db:
8f:54:b3:0f:aa:07:d8:02:3b:e7:98:26:91:ae:c8:
42:1e:a3:4f:e9:9a:99:31:34:cd:d8:c1:02:23:95:
b5:ef:1e:12:07:81:50:b5:6a:a3:e7:d6:21:34:c9:
bb:55:7b:d7:09:68:2f:c7:3b:ed:08:fd:78:7b:f6:
83:27:be:db:35:08:b0:e1:56:40:9e:71:3a:26:d5:
0e:5e:8e:71:53:94:c2:4f:98:37:91:05:97:e1:d4:
39:e8:ab:bb:d7:99:7a:52:20:5d:97:7e:17:0a:57:
2d:d0:45:05:9d:73:52:23:1a:48:d0:9d:ff:11:2e:
75:b6:9c:6e:cd:44:9d:54:43:70:56:5c:46:2c:79:
9b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:F9:1F:1F:A3:C1:5F:65:55:12:CE:B0:19:55:AD:95:45:4D:C6:6B
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/G_kfH6PBX2VVEs6wGVWtlUVNxms.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.44.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:32:71:85:35:24:e9:34:9a:f0:17:c3:29:42:ae:60:18:06:
e3:30:98:e4:55:f8:92:22:b6:7e:12:37:10:c9:27:60:f7:3c:
e5:3c:5b:04:f2:cf:f4:39:ec:25:40:48:b4:63:13:cf:8b:67:
54:1e:aa:17:66:4c:75:e2:9e:07:fc:53:e4:51:8e:16:93:0c:
a8:e7:98:0b:5d:83:16:6e:69:21:df:19:8d:69:d7:e5:71:d6:
f5:58:54:0f:01:e3:ab:26:ed:fd:8e:ab:63:cd:b7:82:a6:d6:
65:11:b4:4d:81:6c:e9:54:92:9e:fc:22:c4:f2:bf:57:33:fb:
14:46:e6:1a:ad:84:d5:d1:ea:90:48:ce:12:4a:ac:49:b2:06:
fe:fc:61:2b:39:a3:20:df:c7:4c:1b:79:cd:7c:28:59:e8:bc:
c8:9e:7f:fb:01:19:bf:04:e2:72:84:a6:a5:3f:aa:80:ee:f2:
2e:82:25:76:d5:22:85:eb:bf:e2:2b:4a:34:3c:b7:8e:c2:cf:
3f:0f:fc:3d:8a:ae:7f:74:45:e3:69:c4:5a:a4:8a:21:7a:18:
dd:85:66:3e:9c:64:f2:02:e3:2c:82:1d:84:89:99:c8:97:b4:
0d:88:ca:87:48:68:5b:b3:91:7e:3d:00:65:62:19:a3:73:91:
72:c3:e5:14
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICB34wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VD
N0YxNjc3QkI0OTIzODAyODIxNTNCQjc3RUMyRUJFMzE4NTM3ODAeFw0yMDA5Mjkx
MDA3MjNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFCRjkxRjFGQTNDMTVG
NjU1NTEyQ0VCMDE5NTVBRDk1NDU0REM2NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxJxEhCNCseIy7tX7eypzKmQCazrwCWeXb8/tG5vuhCrlGHd3z
etBnABJPMR7Dde5p3PUsrB5lHCDDXaVqkL5tjRMTXRI4WjT38iwnOkR8JrmB8UdS
y6oF+JMtXEsIfSlXeiPiRGYAfLJEhk0drhBCyiyGgcgt249Usw+qB9gCO+eYJpGu
yEIeo0/pmpkxNM3YwQIjlbXvHhIHgVC1aqPn1iE0ybtVe9cJaC/HO+0I/Xh79oMn
vts1CLDhVkCecTom1Q5ejnFTlMJPmDeRBZfh1Dnoq7vXmXpSIF2XfhcKVy3QRQWd
c1IjGkjQnf8RLnW2nG7NRJ1UQ3BWXEYseZuDAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUG/kfH6PBX2VVEs6wGVWtlUVNxmswHwYDVR0jBBgwFoAUfsfxZ3u0kjgCghU7
t37C6+MYU3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2Zz
ZnhaM3Uwa2pnQ2doVTd0MzdDNi1NWVUzZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZnNmeFozdTBramdDZ2hVN3QzN0M2LU1ZVTNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL0dfa2ZINlBCWDJWVkVzNndHVld0bFVW
Tnhtcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr+iwwDQYJ
KoZIhvcNAQELBQADggEBAEwycYU1JOk0mvAXwylCrmAYBuMwmORV+JIitn4SNxDJ
J2D3POU8WwTyz/Q57CVASLRjE8+LZ1QeqhdmTHXingf8U+RRjhaTDKjnmAtdgxZu
aSHfGY1p1+Vx1vVYVA8B46sm7f2Oq2PNt4Km1mURtE2BbOlUkp78IsTyv1cz+xRG
5hqthNXR6pBIzhJKrEmyBv78YSs5oyDfx0wbec18KFnovMief/sBGb8E4nKEpqU/
qoDu8i6CJXbVIoXrv+IrSjQ8t47Czz8P/D2Krn90ReNpxFqkiiF6GN2FZj6cZPIC
4yyCHYSJmciXtA2IyodIaFuzkX49AGViGaNzkXLD5RQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org