Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/hgkpgK-bb0hUIcG4VDuI_spRj2c.roa
File: hgkpgK-bb0hUIcG4VDuI_spRj2c.roa (raw, json)
Hash identifier: YRyQydiZxOt7Za5Ln92GCqQ0oFkROBfCnQ+Z0HXeXPw=
Subject key identifier: 86:09:29:80:AF:9B:6F:48:54:21:C1:B8:54:3B:88:FE:CA:51:8F:67
Certificate issuer: /CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Certificate serial: 0FC5
Authority key identifier: F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/hgkpgK-bb0hUIcG4VDuI_spRj2c.roa
Signing time: Wed 29 Sep 2021 02:55:55 +0000
ROA not before: Wed 29 Sep 2021 02:55:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 103.124.42.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4037 (0xfc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Validity
Not Before: Sep 29 02:55:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=86092980AF9B6F485421C1B8543B88FECA518F67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c5:02:c1:ee:af:66:c8:30:0f:1f:8d:02:a6:
fa:51:10:bd:39:8d:d6:30:fd:61:e4:02:7d:5b:62:
95:12:e8:63:12:dc:b4:50:15:ac:bf:07:32:f5:cd:
5c:20:fd:51:d3:75:0a:df:d1:1a:92:ba:a2:6a:0e:
5f:33:d8:64:b5:70:85:ff:f7:cc:eb:8b:b8:7a:4e:
6d:58:c0:8d:e4:cc:0c:ae:c6:d1:c0:cd:e6:67:13:
9b:b2:73:47:5c:06:0a:4b:4c:4d:dd:b0:8b:1a:b8:
f7:3a:d9:dd:80:7a:b5:74:84:1a:cd:22:8c:af:c8:
99:00:f0:7b:b3:48:bf:37:bb:5b:14:51:15:83:b3:
df:d0:e9:a9:80:47:ad:4f:83:5d:b2:91:13:63:af:
1a:02:d5:de:fe:ca:6d:ff:da:79:de:c1:88:37:99:
06:3a:fb:39:55:33:48:e5:b9:62:7b:98:ef:1c:4a:
c9:9b:7a:25:b3:07:ea:a7:12:9a:9a:b2:9c:6d:82:
d5:7b:e8:ea:58:9a:f9:ed:11:79:41:3f:91:72:ac:
c5:ae:9d:04:ab:44:fa:4a:04:6d:c1:89:a1:33:26:
07:b8:78:cf:9a:cc:0b:9b:e9:25:9f:80:b4:7e:88:
92:01:78:b9:9f:c9:55:b6:02:a6:87:ff:f6:97:18:
a4:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:09:29:80:AF:9B:6F:48:54:21:C1:B8:54:3B:88:FE:CA:51:8F:67
X509v3 Authority Key Identifier:
keyid:F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/hgkpgK-bb0hUIcG4VDuI_spRj2c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.42.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:f2:84:5b:c3:27:8b:ab:36:b2:4d:73:c0:c0:6b:1c:75:47:
31:43:ec:71:e0:95:1d:e7:2e:4d:8c:a5:e2:9b:87:ab:50:f4:
5a:37:cf:66:79:00:cb:a0:29:4f:b6:33:35:26:b1:51:aa:58:
f0:8b:05:91:87:f3:4c:b8:8c:d2:d3:96:bd:68:f1:5c:40:bd:
2f:23:d6:2d:ad:9a:c8:c1:36:13:02:a8:5c:de:d4:38:cf:af:
dc:0d:01:77:0f:6b:59:f2:e8:69:a7:32:60:45:af:d9:22:76:
51:44:a9:d3:84:34:4f:a1:e0:3b:39:45:4f:1d:b5:90:ae:94:
6f:4e:04:84:d8:94:ea:44:1a:0b:b8:51:e2:14:20:db:7a:de:
ac:91:61:b3:63:37:a5:fc:1c:59:46:6b:0c:5a:f2:d9:08:f0:
84:d2:73:99:5e:3a:cf:83:a7:db:c8:79:17:b1:06:80:dd:57:
a2:3e:32:d5:93:7e:4f:0f:80:73:44:6c:60:cf:39:ca:2f:77:
a6:99:3c:08:91:0a:3e:3c:30:03:fd:76:67:d0:3b:9a:10:d3:
85:85:93:68:5d:3c:af:3e:29:20:58:90:f3:c3:ec:46:9d:83:
2e:db:95:5b:d4:05:ab:5c:a6:07:0e:3e:4b:99:ab:9d:e8:b1:
3f:9d:a2:ac
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICD8UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMx
NzQ4MTNERkIxRjlCNDU2MDQ3MkMyNjdGNzZDRDBDMTQxRTVERTAeFw0yMTA5Mjkw
MjU1NTVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDg2MDkyOTgwQUY5QjZG
NDg1NDIxQzFCODU0M0I4OEZFQ0E1MThGNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyxQLB7q9myDAPH40CpvpREL05jdYw/WHkAn1bYpUS6GMS3LRQ
Fay/BzL1zVwg/VHTdQrf0RqSuqJqDl8z2GS1cIX/98zri7h6Tm1YwI3kzAyuxtHA
zeZnE5uyc0dcBgpLTE3dsIsauPc62d2AerV0hBrNIoyvyJkA8HuzSL83u1sUURWD
s9/Q6amAR61Pg12ykRNjrxoC1d7+ym3/2nnewYg3mQY6+zlVM0jluWJ7mO8cSsmb
eiWzB+qnEpqaspxtgtV76OpYmvntEXlBP5FyrMWunQSrRPpKBG3BiaEzJge4eM+a
zAub6SWfgLR+iJIBeLmfyVW2AqaH//aXGKQ7AgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUhgkpgK+bb0hUIcG4VDuI/spRj2cwHwYDVR0jBBgwFoAU8xdIE9+x+bRWBHLC
Z/ds0MFB5d4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFNSUxZ
UExVUy84eGRJRTkteC1iUldCSExDWl9kczBNRkI1ZDQuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBLzh4ZElFOS14LWJSV0JITENaX2RzME1GQjVkNC5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTUlMWVBMVVMvaGdrcGdLLWJi
MGhVSWNHNFZEdUlfc3BSajJjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAWd8KjANBgkqhkiG9w0BAQsFAAOCAQEAqvKEW8Mni6s2sk1zwMBrHHVH
MUPsceCVHecuTYyl4puHq1D0WjfPZnkAy6ApT7YzNSaxUapY8IsFkYfzTLiM0tOW
vWjxXEC9LyPWLa2ayME2EwKoXN7UOM+v3A0Bdw9rWfLoaacyYEWv2SJ2UUSp04Q0
T6HgOzlFTx21kK6Ub04EhNiU6kQaC7hR4hQg23rerJFhs2M3pfwcWUZrDFry2Qjw
hNJzmV46z4On28h5F7EGgN1Xoj4y1ZN+Tw+Ac0RsYM85yi93ppk8CJEKPjwwA/12
Z9A7mhDThYWTaF08rz4pIFiQ88PsRp2DLtuVW9QFq1ymBw4+S5mrneixP52irA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org