Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/kvNK1tiBXtLRnnb4YWZ50SPzMio.roa
File: kvNK1tiBXtLRnnb4YWZ50SPzMio.roa (raw, json)
Hash identifier: j99/puKJsQ5CJoMGzGCmdDGPg5bJyktg5QgoilRhgTA=
Subject key identifier: 92:F3:4A:D6:D8:81:5E:D2:D1:9E:76:F8:61:66:79:D1:23:F3:32:2A
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 096E
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/kvNK1tiBXtLRnnb4YWZ50SPzMio.roa
Signing time: Wed 29 Sep 2021 02:39:17 +0000
ROA not before: Wed 29 Sep 2021 02:39:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 43.250.44.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2414 (0x96e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Sep 29 02:39:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=92F34AD6D8815ED2D19E76F8616679D123F3322A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:0d:a0:f8:27:88:23:31:61:35:8e:5b:3c:f0:
4e:7c:12:0d:b0:35:c1:aa:1e:de:3d:93:0e:18:d3:
39:04:c1:e6:e5:29:d0:7d:e5:a9:cb:10:56:e0:12:
15:3b:91:b8:71:84:2a:e4:ad:47:22:f5:fa:4e:4b:
d6:6a:df:2d:04:2c:c1:5a:b2:c8:d1:0a:72:47:8c:
1c:02:1c:e4:56:1c:55:36:04:b9:41:80:fe:69:38:
54:fa:25:c0:ad:0d:7d:1c:80:04:4e:7d:b2:5f:f8:
36:fc:c3:35:40:56:43:f5:12:a2:9b:a2:f4:d7:bd:
d2:46:71:53:a2:e9:fa:2b:a0:3b:23:c6:9b:46:12:
96:a4:28:8a:af:7b:fb:75:f8:e3:9d:06:98:b9:de:
b8:fe:7b:65:54:90:18:f2:43:64:05:ae:33:36:49:
04:55:35:31:01:c5:fc:c4:ed:2c:f9:ae:fe:a7:d3:
e2:d6:af:41:c0:23:43:56:e8:67:75:44:53:83:82:
78:eb:bc:47:0f:c7:07:b0:e3:50:2c:6c:ac:b6:30:
3b:6c:ea:4a:b8:4f:51:66:53:23:62:62:43:ac:ed:
3f:64:d4:f2:85:0c:ff:86:39:b6:ef:4a:7b:63:ef:
c1:40:31:82:96:4a:ca:6b:39:5f:22:4a:d3:46:5d:
cb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F3:4A:D6:D8:81:5E:D2:D1:9E:76:F8:61:66:79:D1:23:F3:32:2A
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/kvNK1tiBXtLRnnb4YWZ50SPzMio.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.44.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:19:91:a4:9e:63:55:53:46:96:c3:cf:79:42:2b:55:71:e1:
91:0a:e7:27:d9:7b:a9:4d:59:fe:ed:b8:d3:72:a2:dc:01:55:
d2:b9:61:e1:92:ad:ee:f1:be:50:ac:37:b9:03:6e:59:f2:f6:
66:0a:a8:05:08:9c:4b:8a:61:56:96:eb:8b:73:1d:c8:a4:c0:
57:91:e9:cb:61:96:f7:5a:ae:5c:65:67:91:3b:e7:77:70:d6:
83:8c:7f:55:2b:f5:fa:b6:32:00:e9:4d:e9:e3:48:5a:c1:22:
52:42:09:4f:61:b8:e1:46:ba:33:dc:3f:99:3e:02:04:4a:4f:
db:9f:72:f4:03:1b:c4:16:70:a9:ce:e6:7d:21:94:46:48:f2:
7b:00:24:95:04:b6:b0:60:29:d3:e0:a1:50:2b:6c:a7:88:c3:
6a:3f:d5:46:a1:c5:02:b8:bb:ca:14:5f:7c:10:ab:54:6d:bb:
8d:44:b4:34:05:06:78:ec:55:94:ae:9a:11:6e:87:9c:f8:ea:
a6:cb:5d:3b:71:54:58:35:7f:f7:ff:fd:d8:db:e0:2f:28:c8:
03:8d:5a:1a:49:07:c5:72:5f:5c:60:05:6e:f8:bd:0e:fb:61:
22:c4:09:0a:fd:aa:75:81:ce:9d:22:9e:8e:45:4f:08:63:c2:
52:01:20:fe
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VD
N0YxNjc3QkI0OTIzODAyODIxNTNCQjc3RUMyRUJFMzE4NTM3ODAeFw0yMTA5Mjkw
MjM5MTdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDkyRjM0QUQ2RDg4MTVF
RDJEMTlFNzZGODYxNjY3OUQxMjNGMzMyMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDiDaD4J4gjMWE1jls88E58Eg2wNcGqHt49kw4Y0zkEweblKdB9
5anLEFbgEhU7kbhxhCrkrUci9fpOS9Zq3y0ELMFassjRCnJHjBwCHORWHFU2BLlB
gP5pOFT6JcCtDX0cgAROfbJf+Db8wzVAVkP1EqKbovTXvdJGcVOi6foroDsjxptG
EpakKIqve/t1+OOdBpi53rj+e2VUkBjyQ2QFrjM2SQRVNTEBxfzE7Sz5rv6n0+LW
r0HAI0NW6Gd1RFODgnjrvEcPxwew41AsbKy2MDts6kq4T1FmUyNiYkOs7T9k1PKF
DP+GObbvSntj78FAMYKWSsprOV8iStNGXcvnAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUkvNK1tiBXtLRnnb4YWZ50SPzMiowHwYDVR0jBBgwFoAUfsfxZ3u0kjgCghU7
t37C6+MYU3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2Zz
ZnhaM3Uwa2pnQ2doVTd0MzdDNi1NWVUzZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZnNmeFozdTBramdDZ2hVN3QzN0M2LU1ZVTNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2t2TksxdGlCWHRMUm5uYjRZV1o1MFNQ
ek1pby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEr+iwwDQYJ
KoZIhvcNAQELBQADggEBACwZkaSeY1VTRpbDz3lCK1Vx4ZEK5yfZe6lNWf7tuNNy
otwBVdK5YeGSre7xvlCsN7kDblny9mYKqAUInEuKYVaW64tzHcikwFeR6cthlvda
rlxlZ5E753dw1oOMf1Ur9fq2MgDpTenjSFrBIlJCCU9huOFGujPcP5k+AgRKT9uf
cvQDG8QWcKnO5n0hlEZI8nsAJJUEtrBgKdPgoVArbKeIw2o/1UahxQK4u8oUX3wQ
q1Rtu41EtDQFBnjsVZSumhFuh5z46qbLXTtxVFg1f/f//djb4C8oyAONWhpJB8Vy
X1xgBW74vQ77YSLECQr9qnWBzp0ino5FTwhjwlIBIP4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org