Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/dsQbw5AZR1ko8auPr1rvGwTjFGc.roa
File: dsQbw5AZR1ko8auPr1rvGwTjFGc.roa (raw, json)
Hash identifier: WPab3wPAwODo1ECPCwn3VWIjpr1ydVVl7pqAc2XSDFY=
Subject key identifier: 76:C4:1B:C3:90:19:47:59:28:F1:AB:8F:AF:5A:EF:1B:04:E3:14:67
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 010E
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/dsQbw5AZR1ko8auPr1rvGwTjFGc.roa
Signing time: Fri 04 Dec 2020 05:02:01 +0000
ROA not before: Fri 04 Dec 2020 05:02:01 +0000
ROA not after: Tue 05 Oct 2021 04:04:36 +0000
asID: 212425
IP address blocks: 103.156.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 270 (0x10e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Dec 4 05:02:01 2020 GMT
Not After : Oct 5 04:04:36 2021 GMT
Subject: CN=76C41BC39019475928F1AB8FAF5AEF1B04E31467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d9:a7:39:30:f5:7a:3f:ff:f5:19:13:b4:1a:
26:7f:46:c9:41:80:57:5a:27:fa:80:78:f4:81:71:
15:f7:80:41:03:f8:3f:1d:d9:a5:ce:77:ee:5f:b2:
f8:b8:94:35:81:82:97:35:6e:d3:15:93:08:97:ad:
89:f9:99:9b:a4:67:54:e5:f8:77:cd:16:f0:1f:f4:
2c:f1:59:30:36:e0:46:2d:53:a7:de:cf:45:d8:45:
f9:af:db:a3:5d:23:f1:02:dc:a5:11:9d:f0:78:c5:
2e:6c:29:1e:12:fc:de:0f:97:af:97:c5:9a:5a:e0:
3e:fd:21:d6:65:84:3d:e1:74:7f:71:04:6a:2b:bd:
2c:99:b7:aa:c3:57:ce:9f:22:b1:f0:d5:a4:21:48:
e9:a7:06:0e:82:06:54:f1:70:67:42:a8:08:76:ce:
4b:b8:a2:0a:72:d6:fb:f2:95:10:c1:06:44:fa:05:
2c:57:af:0a:45:d5:99:87:92:c1:c4:eb:60:42:89:
7b:0c:48:47:e9:c3:8c:17:38:e5:86:6c:6b:db:7b:
65:5d:87:a1:cf:a8:74:ec:a3:c3:4f:69:c3:4b:24:
71:aa:3f:63:da:4a:ca:ed:f6:8b:35:4b:fe:48:3f:
17:00:2e:5d:2b:5d:a4:05:2e:9e:99:7d:be:6a:21:
bf:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C4:1B:C3:90:19:47:59:28:F1:AB:8F:AF:5A:EF:1B:04:E3:14:67
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/dsQbw5AZR1ko8auPr1rvGwTjFGc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.185.0/24
Signature Algorithm: sha256WithRSAEncryption
64:f1:d7:31:55:e9:b8:2c:6e:40:08:4c:57:ad:d3:d2:7d:01:
cc:1f:dc:a4:04:3a:52:21:3e:42:9e:52:a7:fc:e8:5d:2d:73:
0e:33:99:d8:ff:ca:09:ea:4f:e2:36:3a:21:f0:fa:c2:b1:ea:
7c:ee:3d:34:98:e2:2b:12:a7:6b:c7:26:5e:ac:bd:61:b4:5c:
ee:4d:87:0f:0d:9b:02:4b:85:56:cc:a9:12:02:cb:07:72:ab:
fb:d2:1f:f4:43:8a:2e:b2:da:ae:35:92:94:29:8c:4e:ba:c3:
91:c3:16:31:46:67:0f:21:ae:60:15:88:d7:98:16:3d:cd:02:
d4:19:e8:49:e1:e1:73:ef:ec:73:2a:97:e8:51:f9:58:1a:d8:
6d:48:29:95:e4:62:d4:27:69:d6:24:44:61:ac:99:ba:47:8c:
b7:2d:d6:87:db:37:67:86:66:81:96:54:31:10:47:26:0a:85:
8e:44:20:57:0b:e5:20:3f:08:90:32:c2:1f:c6:f1:a0:c4:84:
f3:14:df:d4:54:97:78:db:29:ed:97:b9:42:5e:3e:1d:bb:b8:
bf:b3:14:98:92:26:05:a8:be:e9:fa:da:ef:88:a1:49:b9:48:
05:de:da:d7:c7:4a:ff:dc:ed:69:a7:a9:7b:c5:5a:48:52:1f:
91:96:6c:f6
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB
OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yMDEyMDQw
NTAyMDFaFw0yMTEwMDUwNDA0MzZaMDMxMTAvBgNVBAMTKDc2QzQxQkMzOTAxOTQ3
NTkyOEYxQUI4RkFGNUFFRjFCMDRFMzE0NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCs2ac5MPV6P//1GRO0GiZ/RslBgFdaJ/qAePSBcRX3gEED+D8d
2aXOd+5fsvi4lDWBgpc1btMVkwiXrYn5mZukZ1Tl+HfNFvAf9CzxWTA24EYtU6fe
z0XYRfmv26NdI/EC3KURnfB4xS5sKR4S/N4Pl6+XxZpa4D79IdZlhD3hdH9xBGor
vSyZt6rDV86fIrHw1aQhSOmnBg6CBlTxcGdCqAh2zku4ogpy1vvylRDBBkT6BSxX
rwpF1ZmHksHE62BCiXsMSEfpw4wXOOWGbGvbe2Vdh6HPqHTso8NPacNLJHGqP2Pa
Ssrt9os1S/5IPxcALl0rXaQFLp6Zfb5qIb9pAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUdsQbw5AZR1ko8auPr1rvGwTjFGcwHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc
apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT
Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvZHNRYnc1QVpSMWtvOGF1
UHIxcnZHd1RqRkdjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGecuTANBgkqhkiG9w0BAQsFAAOCAQEAZPHXMVXpuCxuQAhMV63T0n0BzB/cpAQ6
UiE+Qp5Sp/zoXS1zDjOZ2P/KCepP4jY6IfD6wrHqfO49NJjiKxKna8cmXqy9YbRc
7k2HDw2bAkuFVsypEgLLB3Kr+9If9EOKLrLarjWSlCmMTrrDkcMWMUZnDyGuYBWI
15gWPc0C1BnoSeHhc+/scyqX6FH5WBrYbUgpleRi1Cdp1iREYayZukeMty3Wh9s3
Z4ZmgZZUMRBHJgqFjkQgVwvlID8IkDLCH8bxoMSE8xTf1FSXeNsp7Ze5Ql4+Hbu4
v7MUmJImBai+6fra74ihSblIBd7a18dK/9ztaaepe8VaSFIfkZZs9g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org