Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/uN7zvOtfDdWvz1JkSeybvJjXADY.roa
File: uN7zvOtfDdWvz1JkSeybvJjXADY.roa (raw, json)
Hash identifier: rvP/GoI0uYhIcTV0/O6pKfOE4yL2JYc+VZskXAP9WOc=
Subject key identifier: B8:DE:F3:BC:EB:5F:0D:D5:AF:CF:52:64:49:EC:9B:BC:98:D7:00:36
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 02C0
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/uN7zvOtfDdWvz1JkSeybvJjXADY.roa
Signing time: Mon 04 Apr 2022 09:42:21 +0000
ROA not before: Mon 04 Apr 2022 09:42:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 41255
IP address blocks: 103.156.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 704 (0x2c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Apr 4 09:42:21 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B8DEF3BCEB5F0DD5AFCF526449EC9BBC98D70036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:22:a4:a6:3a:5c:cc:d1:64:5b:41:5c:8d:fa:
70:fb:e3:fb:36:ce:58:75:07:ef:21:74:28:d1:4c:
0e:cb:52:53:0e:c3:24:c2:a9:1e:80:b7:cc:0c:f4:
2a:b8:90:19:5c:23:3c:43:c3:bb:79:74:eb:d5:5d:
b7:e2:1a:81:27:39:85:ad:8f:c6:6c:ea:08:5e:0b:
c6:23:8b:a0:a1:20:00:cf:f8:2e:15:f8:46:23:00:
33:44:68:6e:d8:ca:93:28:af:51:32:99:f4:dc:9c:
55:b5:d0:ab:6a:d5:e8:89:02:f1:33:78:b2:ce:a4:
53:ad:1a:55:36:d5:f1:89:5a:d0:f7:35:0e:b7:7d:
a8:62:19:97:e2:1b:c7:0d:49:91:d0:43:fc:57:df:
4a:dd:5d:fc:49:b2:a6:66:b1:3c:5b:cb:09:7f:78:
c5:85:1c:44:ef:87:8f:05:3b:65:62:cd:15:d9:01:
7d:2c:1e:4b:2c:b8:63:f1:fa:cf:9c:6f:03:42:20:
98:35:5a:f7:ac:20:73:39:8a:25:2d:3f:54:5a:b7:
e1:76:04:16:48:01:86:b8:df:15:bc:6b:62:30:dc:
bd:8b:16:d2:18:62:2b:c2:29:13:0a:ae:8e:48:23:
3a:ed:70:a5:68:0e:55:d2:ff:3e:a7:68:fc:df:67:
49:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:DE:F3:BC:EB:5F:0D:D5:AF:CF:52:64:49:EC:9B:BC:98:D7:00:36
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/uN7zvOtfDdWvz1JkSeybvJjXADY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:fe:71:e3:5e:ae:bf:ad:5a:a5:3b:0f:40:52:66:0e:d1:76:
47:9a:94:ab:81:58:4e:0c:e5:84:e0:09:1e:df:54:36:e2:f8:
c0:5e:13:11:7b:1d:4c:8e:8d:6a:89:e6:44:e3:db:7d:81:6d:
da:2b:4e:db:49:55:b0:5d:4f:2f:c0:f4:41:1d:10:4e:ab:6f:
2e:f3:3a:4e:23:53:0c:1a:3f:ce:57:e8:27:a5:47:99:02:f6:
c1:02:c8:88:77:cc:60:d6:16:85:4b:15:9d:41:70:f6:33:99:
56:70:8f:82:bd:0d:df:3c:18:77:a1:36:7b:77:3e:99:82:6c:
5a:94:76:4c:b8:d7:c6:ac:81:5e:2a:15:4d:17:25:7c:9a:eb:
44:01:4f:0a:58:92:02:da:ee:26:ea:15:b7:4c:e0:25:58:2d:
f3:d4:61:1e:41:ad:c1:3e:6b:c0:9c:6d:2f:0a:5e:37:dd:42:
3d:d2:b9:de:67:8d:62:02:01:81:ae:ed:5c:97:bf:06:bf:07:
48:56:f6:85:b6:32:0a:d0:f4:e8:6a:d8:fe:cf:d5:82:79:16:
69:37:0c:68:e1:8f:f9:20:b4:ce:b3:c9:c1:bc:da:29:67:9a:
6d:19:c1:3a:89:a4:bf:6e:59:f3:8c:7d:d3:ac:3d:34:5c:da:
b4:2d:5b:cb
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICAsAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB
OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yMjA0MDQw
OTQyMjFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEI4REVGM0JDRUI1RjBE
RDVBRkNGNTI2NDQ5RUM5QkJDOThENzAwMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDIqSmOlzM0WRbQVyN+nD74/s2zlh1B+8hdCjRTA7LUlMOwyTC
qR6At8wM9Cq4kBlcIzxDw7t5dOvVXbfiGoEnOYWtj8Zs6gheC8Yji6ChIADP+C4V
+EYjADNEaG7YypMor1EymfTcnFW10Ktq1eiJAvEzeLLOpFOtGlU21fGJWtD3NQ63
fahiGZfiG8cNSZHQQ/xX30rdXfxJsqZmsTxbywl/eMWFHETvh48FO2VizRXZAX0s
HkssuGPx+s+cbwNCIJg1WvesIHM5iiUtP1Rat+F2BBZIAYa43xW8a2Iw3L2LFtIY
YivCKRMKro5IIzrtcKVoDlXS/z6naPzfZ0mTAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUuN7zvOtfDdWvz1JkSeybvJjXADYwHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc
apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT
Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvdU43enZPdGZEZFd2ejFK
a1NleWJ2SmpYQURZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGecuDANBgkqhkiG9w0BAQsFAAOCAQEAzf5x416uv61apTsPQFJmDtF2R5qUq4FY
TgzlhOAJHt9UNuL4wF4TEXsdTI6NaonmROPbfYFt2itO20lVsF1PL8D0QR0QTqtv
LvM6TiNTDBo/zlfoJ6VHmQL2wQLIiHfMYNYWhUsVnUFw9jOZVnCPgr0N3zwYd6E2
e3c+mYJsWpR2TLjXxqyBXioVTRclfJrrRAFPCliSAtruJuoVt0zgJVgt89RhHkGt
wT5rwJxtLwpeN91CPdK53meNYgIBga7tXJe/Br8HSFb2hbYyCtD06GrY/s/VgnkW
aTcMaOGP+SC0zrPJwbzaKWeabRnBOomkv25Z84x906w9NFzatC1byw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org