Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TYCATV/WB360Aauvwlc8pIZHOmN4Ba_BFI.roa
File: WB360Aauvwlc8pIZHOmN4Ba_BFI.roa (raw, json)
Hash identifier: MiEwRmMgoIfnzL1v3jrpqROVLAFEHfOFtX1mMkIevPk=
Subject key identifier: 58:1D:FA:D0:06:AE:BF:09:5C:F2:92:19:1C:E9:8D:E0:16:BF:04:52
Certificate issuer: /CN=DF210700AE8EA25668E6BEA3FA6A6D3B378C3121
Certificate serial: 09D2
Authority key identifier: DF:21:07:00:AE:8E:A2:56:68:E6:BE:A3:FA:6A:6D:3B:37:8C:31:21
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/WB360Aauvwlc8pIZHOmN4Ba_BFI.roa
Signing time: Wed 03 Aug 2022 08:48:28 +0000
ROA not before: Wed 03 Aug 2022 08:48:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 203.111.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2514 (0x9d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF210700AE8EA25668E6BEA3FA6A6D3B378C3121
Validity
Not Before: Aug 3 08:48:28 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=581DFAD006AEBF095CF292191CE98DE016BF0452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f3:ee:ba:8f:9a:1c:8e:e0:0b:a0:97:3e:03:
14:8e:e8:0c:fd:9e:3c:2c:98:2f:87:00:fd:a8:7a:
19:d2:27:01:0f:08:8f:ce:9d:68:ea:2f:62:74:73:
de:4c:22:16:a7:f2:1f:9c:e0:3f:62:33:7c:49:4f:
57:18:31:d9:59:4f:01:99:a9:ab:ac:c9:97:3e:a1:
70:7a:8d:9d:34:eb:a2:a1:18:ab:e8:83:cb:c4:70:
31:f1:30:b6:0e:ed:7e:bc:3c:ca:75:f7:74:94:03:
02:09:e5:6f:6e:1a:cf:e5:f9:03:77:99:2c:4a:25:
8b:60:63:ba:f3:cd:4d:10:35:60:b8:e7:f3:04:06:
a4:d3:c9:6a:68:f0:3a:1b:36:32:fb:7d:b0:8f:ab:
ed:8e:7a:b8:4a:5b:96:a7:91:e4:19:a7:22:6f:8b:
3b:79:e2:ea:2e:e9:54:44:9b:43:d2:b6:ea:d8:84:
07:03:09:3d:25:04:69:92:b3:ce:6c:95:e6:97:d3:
2a:56:e6:19:87:12:f0:45:c8:cf:02:a9:1a:fc:39:
66:6a:d6:28:a1:6b:60:37:c0:97:0a:60:e8:1d:af:
e0:3c:13:15:8e:86:7a:ed:aa:45:8e:11:45:fe:01:
27:73:8f:3c:7e:26:b4:fa:80:d1:af:e1:96:56:77:
5b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:1D:FA:D0:06:AE:BF:09:5C:F2:92:19:1C:E9:8D:E0:16:BF:04:52
X509v3 Authority Key Identifier:
keyid:DF:21:07:00:AE:8E:A2:56:68:E6:BE:A3:FA:6A:6D:3B:37:8C:31:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/3yEHAK6OolZo5r6j-mptOzeMMSE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/WB360Aauvwlc8pIZHOmN4Ba_BFI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.111.208.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:2b:15:05:76:2c:cf:6a:5e:42:98:73:5e:2b:78:dd:2f:42:
31:5e:1b:7b:22:3c:d1:50:db:dc:c5:9f:14:ff:48:74:3b:b0:
ac:bc:a2:a1:b5:86:85:53:ab:cb:35:db:28:1f:bd:bc:58:e0:
2d:cb:de:5f:5f:c1:af:bb:4a:11:47:3f:16:94:03:27:50:d9:
54:1b:a3:d3:a8:f3:c8:1c:0a:ea:5c:ed:c9:30:ed:d7:94:39:
d4:12:bc:ad:6f:9b:b9:30:de:fc:62:5d:4d:c2:31:03:6f:8e:
e8:2b:9c:64:62:68:a8:bd:e5:20:52:f8:63:de:bd:2d:22:ea:
df:f7:63:45:4a:45:07:e8:64:43:31:51:11:49:86:d7:22:1a:
76:15:35:20:21:61:af:fb:a6:3a:fb:77:9f:34:5a:ee:cb:bf:
9d:ae:c6:9b:98:35:3e:e7:e5:54:30:ae:9c:5d:b5:3a:27:59:
0b:9f:50:72:01:8c:89:14:c0:2e:d6:77:7c:2e:9b:e5:d9:c5:
82:29:3e:ff:41:ae:55:0f:60:ce:62:0c:cb:bd:8c:2e:6e:77:
0a:e6:34:08:98:71:e4:3a:af:25:e4:9b:64:9e:3c:c1:cc:ec:
5e:55:14:5f:6a:27:90:dc:eb:1f:b8:a8:bc:df:d2:58:5f:67:
04:18:8f:43
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCdIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREYy
MTA3MDBBRThFQTI1NjY4RTZCRUEzRkE2QTZEM0IzNzhDMzEyMTAeFw0yMjA4MDMw
ODQ4MjhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDU4MURGQUQwMDZBRUJG
MDk1Q0YyOTIxOTFDRTk4REUwMTZCRjA0NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/8+66j5ocjuALoJc+AxSO6Az9njwsmC+HAP2oehnSJwEPCI/O
nWjqL2J0c95MIhan8h+c4D9iM3xJT1cYMdlZTwGZqausyZc+oXB6jZ0066KhGKvo
g8vEcDHxMLYO7X68PMp193SUAwIJ5W9uGs/l+QN3mSxKJYtgY7rzzU0QNWC45/ME
BqTTyWpo8DobNjL7fbCPq+2OerhKW5ankeQZpyJvizt54uou6VREm0PSturYhAcD
CT0lBGmSs85sleaX0ypW5hmHEvBFyM8CqRr8OWZq1iiha2A3wJcKYOgdr+A8ExWO
hnrtqkWOEUX+ASdzjzx+JrT6gNGv4ZZWd1s/AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUWB360Aauvwlc8pIZHOmN4Ba/BFIwHwYDVR0jBBgwFoAU3yEHAK6OolZo5r6j
+mptOzeMMSEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFlDQVRW
LzN5RUhBSzZPb2xabzVyNmotbXB0T3plTU1TRS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvM3lFSEFLNk9vbFpvNXI2ai1tcHRPemVNTVNFLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFlDQVRWL1dCMzYwQWF1dndsYzhwSVpI
T21ONEJhX0JGSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATL
b9AwDQYJKoZIhvcNAQELBQADggEBAAsrFQV2LM9qXkKYc14reN0vQjFeG3siPNFQ
29zFnxT/SHQ7sKy8oqG1hoVTq8s12ygfvbxY4C3L3l9fwa+7ShFHPxaUAydQ2VQb
o9Oo88gcCupc7ckw7deUOdQSvK1vm7kw3vxiXU3CMQNvjugrnGRiaKi95SBS+GPe
vS0i6t/3Y0VKRQfoZEMxURFJhtciGnYVNSAhYa/7pjr7d580Wu7Lv52uxpuYNT7n
5VQwrpxdtTonWQufUHIBjIkUwC7Wd3wum+XZxYIpPv9BrlUPYM5iDMu9jC5udwrm
NAiYceQ6ryXkm2SePMHM7F5VFF9qJ5Dc6x+4qLzf0lhfZwQYj0M=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org