Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/WDidbx6Xe70iOkyKyfZY69RQmEE.roa
File: WDidbx6Xe70iOkyKyfZY69RQmEE.roa (raw, json)
Hash identifier: YKWpGE8joEn39sBmaO0Bo+YNz23BVFR7qsdgD8zlgyY=
Subject key identifier: 58:38:9D:6F:1E:97:7B:BD:22:3A:4C:8A:C9:F6:58:EB:D4:50:98:41
Certificate issuer: /CN=461BC0E516022C3C278FC892420705FEB85668D9
Certificate serial: 06
Authority key identifier: 46:1B:C0:E5:16:02:2C:3C:27:8F:C8:92:42:07:05:FE:B8:56:68:D9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RhvA5RYCLDwnj8iSQgcF_rhWaNk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/WDidbx6Xe70iOkyKyfZY69RQmEE.roa
Signing time: Thu 07 Mar 2024 10:44:16 +0000
ROA not before: Thu 07 Mar 2024 10:44:16 +0000
ROA not after: Wed 29 Jan 2025 15:30:22 +0000
asID: 64512
IP address blocks: 157.15.70.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=461BC0E516022C3C278FC892420705FEB85668D9
Validity
Not Before: Mar 7 10:44:16 2024 GMT
Not After : Jan 29 15:30:22 2025 GMT
Subject: CN=58389D6F1E977BBD223A4C8AC9F658EBD4509841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:05:d7:96:ba:90:84:65:56:2c:9c:9f:5d:1a:
8e:24:28:eb:96:b4:6f:de:26:bc:74:96:dd:e1:09:
e2:32:b7:dc:8d:d2:85:10:9e:d7:b7:4c:0b:6c:15:
bd:71:16:e3:13:c1:eb:f1:c0:13:c8:65:c5:c4:6c:
e9:81:49:03:f6:2c:af:66:f5:21:23:84:ae:33:8a:
f9:ff:32:6c:48:52:33:e3:4b:f7:ba:28:4d:2c:59:
f4:52:28:56:fd:d2:c4:4b:1a:ca:10:30:9e:56:bd:
b4:28:f1:39:29:a7:07:c7:6e:cd:92:93:a0:a7:99:
99:e0:63:1f:d8:49:1e:0f:a3:87:99:46:74:73:d4:
65:fc:19:15:cc:78:7a:f0:7e:16:2a:15:36:dd:fd:
73:61:b0:91:ca:86:98:45:a7:da:85:07:be:c7:fc:
f8:0b:eb:87:ce:3f:89:6f:f0:63:f6:08:d1:21:98:
3d:de:f6:7e:c0:f3:60:51:69:46:fd:6d:f0:85:5c:
6a:68:f0:10:26:af:bd:e7:87:19:54:33:70:3c:c7:
6c:74:51:55:20:9d:f7:5f:23:e4:42:0a:33:3f:0d:
30:f8:1b:9f:35:a9:85:a8:54:1f:e1:91:41:49:b8:
c9:e2:84:05:e1:6d:34:91:6d:03:cb:e3:2f:0b:8c:
3a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:38:9D:6F:1E:97:7B:BD:22:3A:4C:8A:C9:F6:58:EB:D4:50:98:41
X509v3 Authority Key Identifier:
keyid:46:1B:C0:E5:16:02:2C:3C:27:8F:C8:92:42:07:05:FE:B8:56:68:D9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/RhvA5RYCLDwnj8iSQgcF_rhWaNk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RhvA5RYCLDwnj8iSQgcF_rhWaNk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/WDidbx6Xe70iOkyKyfZY69RQmEE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.70.0/23
Signature Algorithm: sha256WithRSAEncryption
26:ff:db:7d:7d:77:eb:43:bd:b3:94:c1:60:4c:71:b6:e2:67:
e4:fe:08:3e:e0:7c:86:71:d9:d8:d3:52:99:e5:97:2d:2d:17:
43:40:f7:bd:5b:5f:44:0f:df:fb:b2:c9:64:7e:89:0a:c7:e1:
5c:28:db:aa:ad:da:5c:82:3d:05:e7:5f:c8:a2:01:39:07:a2:
e3:f8:19:6f:ec:05:48:48:45:f5:5d:bb:c6:7b:1b:29:eb:7a:
90:b8:33:d2:0b:94:25:af:f2:63:0d:78:cb:b5:fd:ce:f4:f6:
29:05:1c:d0:cf:4b:ec:93:cd:b0:a5:45:86:ff:6e:91:8e:18:
37:a5:29:18:fd:fe:15:4a:2e:a5:eb:5f:b7:5d:e3:35:86:25:
ce:65:70:16:52:67:44:a6:63:75:0f:a7:c7:20:65:b3:fd:64:
1e:3e:2e:e3:d9:61:f3:df:83:53:47:c0:ab:ed:db:8a:d2:51:
3c:29:86:8f:c5:d2:9b:f2:50:06:e5:25:a2:27:cd:dc:c2:5c:
a9:0d:0c:39:66:71:53:a5:1b:17:cc:c9:55:a2:50:92:74:6d:
d3:64:df:a6:5f:5a:01:a0:f8:dd:64:7c:6b:36:7c:85:0c:3d:
38:e0:0a:46:25:84:a0:f0:22:77:2a:53:c2:47:48:a9:f4:c0:
55:98:7d:c1
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0NjFC
QzBFNTE2MDIyQzNDMjc4RkM4OTI0MjA3MDVGRUI4NTY2OEQ5MB4XDTI0MDMwNzEw
NDQxNloXDTI1MDEyOTE1MzAyMlowMzExMC8GA1UEAxMoNTgzODlENkYxRTk3N0JC
RDIyM0E0QzhBQzlGNjU4RUJENDUwOTg0MTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANIF15a6kIRlViycn10ajiQo65a0b94mvHSW3eEJ4jK33I3ShRCe
17dMC2wVvXEW4xPB6/HAE8hlxcRs6YFJA/Ysr2b1ISOErjOK+f8ybEhSM+NL97oo
TSxZ9FIoVv3SxEsayhAwnla9tCjxOSmnB8duzZKToKeZmeBjH9hJHg+jh5lGdHPU
ZfwZFcx4evB+FioVNt39c2GwkcqGmEWn2oUHvsf8+Avrh84/iW/wY/YI0SGYPd72
fsDzYFFpRv1t8IVcamjwECavveeHGVQzcDzHbHRRVSCd918j5EIKMz8NMPgbnzWp
hahUH+GRQUm4yeKEBeFtNJFtA8vjLwuMOvkCAwEAAaOCAfQwggHwMB0GA1UdDgQW
BBRYOJ1vHpd7vSI6TIrJ9ljr1FCYQTAfBgNVHSMEGDAWgBRGG8DlFgIsPCePyJJC
BwX+uFZo2TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS
oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU1BJUkFQ
UFMvUmh2QTVSWUNMRHduajhpU1FnY0ZfcmhXYU5rLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9SaHZBNVJZQ0xEd25qOGlTUWdjRl9yaFdhTmsuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU1BJUkFQUFMvV0RpZGJ4NlhlNzBp
T2t5S3lmWlk2OVJRbUVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3
bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAZ0PRjANBgkqhkiG9w0BAQsFAAOCAQEAJv/bfX1360O9s5TBYExxtuJn5P4I
PuB8hnHZ2NNSmeWXLS0XQ0D3vVtfRA/f+7LJZH6JCsfhXCjbqq3aXII9BedfyKIB
OQei4/gZb+wFSEhF9V27xnsbKet6kLgz0guUJa/yYw14y7X9zvT2KQUc0M9L7JPN
sKVFhv9ukY4YN6UpGP3+FUoupetft13jNYYlzmVwFlJnRKZjdQ+nxyBls/1kHj4u
49lh89+DU0fAq+3bitJRPCmGj8XSm/JQBuUloifN3MJcqQ0MOWZxU6UbF8zJVaJQ
knRt02Tfpl9aAaD43WR8azZ8hQw9OOAKRiWEoPAidypTwkdIqfTAVZh9wQ==
-----END CERTIFICATE-----
Generated at Sat May 10 11:42:58 2025 by rpki-client