Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/nOUw_f6RM3CbgG2iRw3WDiutgik.roa
File: nOUw_f6RM3CbgG2iRw3WDiutgik.roa (raw, json)
Hash identifier: GHwmxOGtXTw7qhstaDpywJ2Dk0iso9q1WHCn0aKefho=
Subject key identifier: 9C:E5:30:FD:FE:91:33:70:9B:80:6D:A2:47:0D:D6:0E:2B:AD:82:29
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0963
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/nOUw_f6RM3CbgG2iRw3WDiutgik.roa
Signing time: Wed 29 Sep 2021 02:42:52 +0000
ROA not before: Wed 29 Sep 2021 02:42:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131149
IP address blocks: 202.12.76.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2403 (0x963)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Sep 29 02:42:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9CE530FDFE9133709B806DA2470DD60E2BAD8229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e4:48:7a:45:af:9b:3f:b2:d5:58:9a:4b:a1:
e1:1a:88:3b:9a:d5:07:98:f2:c4:65:7b:46:ba:68:
39:ec:dd:5b:3f:16:c6:93:40:9c:49:da:2b:ee:0a:
60:b2:b6:a5:83:5f:ce:f9:70:38:42:32:84:6d:0c:
19:42:09:20:3e:c4:eb:f2:df:48:83:e6:4d:36:40:
f4:ae:7b:41:98:8c:a5:a9:5d:4b:ac:8c:9d:6b:02:
95:f8:e3:76:69:97:70:2e:cd:f0:77:3a:97:c8:5a:
78:c9:10:77:e8:a3:27:fb:16:5d:9d:ac:47:ee:80:
e1:88:e5:56:2e:b3:2b:17:03:3c:8a:c2:cb:d2:5b:
ab:3e:2c:6d:84:65:61:3c:55:bf:96:17:88:31:35:
5f:f8:41:4d:e0:91:0e:68:31:53:03:38:2f:b8:1c:
ec:ad:8f:21:cb:4b:08:98:4c:3f:b0:a5:bf:92:14:
90:10:f1:5d:8c:77:9d:35:76:90:ca:79:36:5e:75:
bf:18:fc:90:e7:18:32:3c:a6:7e:74:a4:30:3d:51:
a9:ff:ab:95:9e:81:7a:cd:1a:42:db:b6:a1:40:6d:
05:70:14:a5:2d:49:fb:9f:32:02:ae:f0:9d:5b:00:
7d:01:99:02:0d:29:f0:72:e1:2a:2c:5b:d1:57:f6:
69:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:E5:30:FD:FE:91:33:70:9B:80:6D:A2:47:0D:D6:0E:2B:AD:82:29
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/nOUw_f6RM3CbgG2iRw3WDiutgik.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.12.76.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:44:da:7f:fd:8e:1b:21:73:d1:f8:ec:04:b2:d1:74:d0:a0:
b0:61:52:9d:ac:08:a4:d8:3f:88:9a:45:63:bd:de:3e:de:f1:
f4:63:6b:5f:ee:1f:2e:21:c2:7c:ca:92:4b:1a:d1:32:12:a5:
06:23:98:65:e1:37:58:8c:08:db:4d:40:fb:3c:02:d0:a8:87:
64:6e:63:29:ab:31:c6:a3:4d:51:0c:45:b8:14:b1:7c:87:8b:
25:8e:62:e0:10:ab:30:9b:53:67:19:65:0c:67:56:30:86:e0:
5c:65:b9:7a:51:ef:d0:5a:18:67:be:b4:6d:23:94:dc:be:a0:
95:2e:a7:5e:a5:9d:f7:ed:f4:87:9a:1c:29:6b:eb:f8:93:ad:
f3:31:75:9f:a5:8d:51:6f:68:f2:8c:c4:1a:33:3e:eb:f3:03:
15:85:e7:13:4e:03:83:d0:0d:a6:ff:11:99:4b:82:0e:59:15:
b1:cd:7e:50:a7:8d:a2:cd:2f:c8:48:a5:bb:f7:f8:67:3a:5a:
13:68:3c:42:13:14:8f:8c:4e:fc:7a:22:f0:84:6f:e9:97:e0:
92:e6:63:5f:3c:dd:27:60:3b:3b:6b:49:32:15:2d:95:9d:f4:
58:a5:bb:3e:27:cc:47:ee:d0:4b:e4:94:36:fd:1f:d4:a3:56:
0d:87:a5:9b
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCWMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB
NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yMTA5Mjkw
MjQyNTJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDlDRTUzMEZERkU5MTMz
NzA5QjgwNkRBMjQ3MERENjBFMkJBRDgyMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC65Eh6Ra+bP7LVWJpLoeEaiDua1QeY8sRle0a6aDns3Vs/FsaT
QJxJ2ivuCmCytqWDX875cDhCMoRtDBlCCSA+xOvy30iD5k02QPSue0GYjKWpXUus
jJ1rApX443Zpl3AuzfB3OpfIWnjJEHfooyf7Fl2drEfugOGI5VYusysXAzyKwsvS
W6s+LG2EZWE8Vb+WF4gxNV/4QU3gkQ5oMVMDOC+4HOytjyHLSwiYTD+wpb+SFJAQ
8V2Md501dpDKeTZedb8Y/JDnGDI8pn50pDA9Uan/q5WegXrNGkLbtqFAbQVwFKUt
SfufMgKu8J1bAH0BmQINKfBy4SosW9FX9mkpAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUnOUw/f6RM3CbgG2iRw3WDiutgikwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe
Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI
RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9uT1V3X2Y2Uk0zQ2Jn
RzJpUnczV0RpdXRnaWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCygxMMA0GCSqGSIb3DQEBCwUAA4IBAQAMRNp//Y4bIXPR+OwEstF00KCwYVKd
rAik2D+ImkVjvd4+3vH0Y2tf7h8uIcJ8ypJLGtEyEqUGI5hl4TdYjAjbTUD7PALQ
qIdkbmMpqzHGo01RDEW4FLF8h4sljmLgEKswm1NnGWUMZ1YwhuBcZbl6Ue/QWhhn
vrRtI5TcvqCVLqdepZ337fSHmhwpa+v4k63zMXWfpY1Rb2jyjMQaMz7r8wMVhecT
TgOD0A2m/xGZS4IOWRWxzX5Qp42izS/ISKW79/hnOloTaDxCExSPjE78eiLwhG/p
l+CS5mNfPN0nYDs7a0kyFS2VnfRYpbs+J8xH7tBL5JQ2/R/Uo1YNh6Wb
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:43 2023 by rpki-client on console-ams.rpki-client.org