Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/DfoiYN6VGuaou1xRppLuZbCWDu4.roa
File: DfoiYN6VGuaou1xRppLuZbCWDu4.roa (raw, json)
Hash identifier: vbDbVUiS+Mjq3XKwVpTzKVDHt3QajOpxBp34WXPhv9M=
Subject key identifier: 0D:FA:22:60:DE:95:1A:E6:A8:BB:5C:51:A6:92:EE:65:B0:96:0E:EE
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0772
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/DfoiYN6VGuaou1xRppLuZbCWDu4.roa
Signing time: Tue 29 Sep 2020 09:51:42 +0000
ROA not before: Tue 29 Sep 2020 09:51:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131149
IP address blocks: 43.254.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1906 (0x772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Sep 29 09:51:42 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0DFA2260DE951AE6A8BB5C51A692EE65B0960EEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5b:d7:b4:73:9e:b6:72:97:44:c4:e8:4b:a9:
92:24:0b:7d:4b:06:8f:69:93:12:29:2f:38:09:95:
5c:49:ad:b0:e0:c0:53:c8:1c:c8:fb:60:59:39:9f:
a3:07:38:50:65:0c:0d:e3:e1:66:1b:87:71:3a:66:
ce:95:8a:5a:90:a3:dd:16:2c:20:dd:c2:35:a5:d0:
7c:68:7e:1e:d4:eb:a8:0b:8e:67:68:82:9b:10:64:
78:07:cd:ae:0e:82:7f:29:4a:23:0e:c6:49:ff:d4:
b9:4e:d1:c9:da:ed:e1:96:21:bd:b8:63:47:23:24:
2e:d9:b9:64:48:9d:a5:5e:f0:6a:05:c8:78:71:c4:
a1:ab:fa:c9:45:32:77:b7:be:e7:9c:19:5e:e6:51:
2a:aa:f9:01:ce:b4:88:bb:a7:df:16:b9:7e:02:48:
99:c1:9b:65:9c:6b:55:af:98:08:ef:f4:42:7e:07:
5a:9a:63:0f:67:18:9a:ee:fc:38:76:62:6b:08:82:
32:e3:b5:6b:5a:ec:4c:5f:b5:9f:6f:f7:a3:1e:f9:
3f:d4:a6:c4:86:39:55:65:bb:2c:c8:ba:ba:26:89:
38:0f:c3:b0:d6:49:06:b0:9f:76:20:ce:6d:62:9d:
b3:89:3a:d5:4d:2b:4c:48:c5:4b:80:bb:d7:33:31:
e3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:FA:22:60:DE:95:1A:E6:A8:BB:5C:51:A6:92:EE:65:B0:96:0E:EE
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/DfoiYN6VGuaou1xRppLuZbCWDu4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.16.0/22
Signature Algorithm: sha256WithRSAEncryption
88:25:3e:1a:dc:5a:1f:a7:52:a5:65:22:36:a3:70:2d:16:3d:
2e:0f:8c:6d:f9:6f:4e:6b:28:25:d0:3f:76:a4:46:e4:2e:43:
52:1b:a1:24:c5:69:7e:77:b1:38:96:df:dc:ce:3a:6f:fb:1b:
6f:5f:32:93:9f:dc:3f:7f:dc:f9:ad:8a:2b:73:0d:a3:38:da:
e2:8f:f5:dd:15:59:7d:f2:3f:d9:a3:cd:51:d1:c7:dc:b6:29:
ea:7f:b8:a0:88:74:19:f9:7c:89:32:c3:5d:1c:49:d8:7c:ae:
ed:11:de:f8:95:52:32:2a:98:d4:b4:21:9e:5c:d3:41:ff:19:
b0:7c:39:80:d9:2f:4b:7d:ef:26:67:36:fd:d4:3d:5c:c5:52:
34:58:f4:fd:7d:8a:82:10:eb:57:e0:c6:de:44:d1:14:c7:95:
97:6e:e4:47:41:69:47:6e:d3:88:70:10:de:21:a8:8a:c3:aa:
19:4e:fd:72:be:e7:e7:93:12:70:96:0f:33:24:84:52:cf:4f:
e7:0a:7c:96:75:c2:47:91:b3:34:44:1a:10:a5:28:0a:2f:0f:
2a:23:83:1c:9e:d4:9a:ef:5b:78:db:37:17:cf:ba:7e:1e:0b:
cc:3b:e9:30:8c:1d:28:af:84:0f:80:14:ff:72:31:64:d9:60:
05:38:ef:8d
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICB3IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB
NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yMDA5Mjkw
OTUxNDJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDBERkEyMjYwREU5NTFB
RTZBOEJCNUM1MUE2OTJFRTY1QjA5NjBFRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDcW9e0c562cpdExOhLqZIkC31LBo9pkxIpLzgJlVxJrbDgwFPI
HMj7YFk5n6MHOFBlDA3j4WYbh3E6Zs6VilqQo90WLCDdwjWl0Hxofh7U66gLjmdo
gpsQZHgHza4Ogn8pSiMOxkn/1LlO0cna7eGWIb24Y0cjJC7ZuWRInaVe8GoFyHhx
xKGr+slFMne3vuecGV7mUSqq+QHOtIi7p98WuX4CSJnBm2Wca1WvmAjv9EJ+B1qa
Yw9nGJru/Dh2YmsIgjLjtWta7ExftZ9v96Me+T/UpsSGOVVluyzIuromiTgPw7DW
SQawn3Ygzm1inbOJOtVNK0xIxUuAu9czMeNdAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUDfoiYN6VGuaou1xRppLuZbCWDu4wHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe
Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI
RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9EZm9pWU42Vkd1YW91
MXhScHBMdVpiQ1dEdTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCK/4QMA0GCSqGSIb3DQEBCwUAA4IBAQCIJT4a3Fofp1KlZSI2o3AtFj0uD4xt
+W9Oaygl0D92pEbkLkNSG6EkxWl+d7E4lt/czjpv+xtvXzKTn9w/f9z5rYorcw2j
ONrij/XdFVl98j/Zo81R0cfctinqf7igiHQZ+XyJMsNdHEnYfK7tEd74lVIyKpjU
tCGeXNNB/xmwfDmA2S9Lfe8mZzb91D1cxVI0WPT9fYqCEOtX4MbeRNEUx5WXbuRH
QWlHbtOIcBDeIaiKw6oZTv1yvufnkxJwlg8zJIRSz0/nCnyWdcJHkbM0RBoQpSgK
Lw8qI4McntSa71t42zcXz7p+HgvMO+kwjB0or4QPgBT/cjFk2WAFOO+N
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org