Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/HuCMDWU3Zpa-yYGN64sWmI0J4sY.roa
File: HuCMDWU3Zpa-yYGN64sWmI0J4sY.roa (raw, json)
Hash identifier: W2v9DX4XuuqGxP3orBJgscQkyjdnOCa+jh9gHq/4NQQ=
Subject key identifier: 1E:E0:8C:0D:65:37:66:96:BE:C9:81:8D:EB:8B:16:98:8D:09:E2:C6
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 0A3B
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/HuCMDWU3Zpa-yYGN64sWmI0J4sY.roa
Signing time: Thu 15 Sep 2022 02:47:55 +0000
ROA not before: Thu 15 Sep 2022 02:47:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9264
IP address blocks: 103.130.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2619 (0xa3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Sep 15 02:47:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1EE08C0D65376696BEC9818DEB8B16988D09E2C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ce:55:8a:08:87:a0:d8:f2:c1:c7:ee:0c:69:
82:f3:71:be:4c:14:24:d3:88:6f:c8:a3:75:07:94:
6a:e5:67:03:e6:ed:60:2a:31:77:b4:2f:58:2d:2a:
16:15:7d:3c:86:20:53:b7:90:c0:f6:7e:65:5d:21:
2f:94:14:b3:93:dd:4e:60:9c:c6:7e:4a:7a:34:9d:
66:a8:54:8e:8b:ca:9d:e1:e7:7f:72:df:22:e5:ad:
a6:31:dd:2a:96:d5:fd:cb:0d:ed:75:47:01:61:02:
da:4d:8e:42:57:ad:63:68:62:71:6c:77:91:90:27:
c0:8a:ea:9e:47:15:e4:34:59:8b:27:b2:ae:f5:7b:
27:1f:06:cc:a0:a9:bf:9c:e9:25:ff:ea:77:e1:e5:
d2:cd:81:7e:02:ee:04:d2:aa:53:2c:4e:8c:d0:59:
14:7e:8f:a6:b7:50:91:f3:7e:58:7e:f3:d9:45:f2:
49:d0:9b:e0:e5:a2:70:84:13:42:83:54:54:65:58:
ba:cd:32:df:07:eb:81:97:eb:90:63:4a:ee:a3:53:
e4:04:27:96:e0:05:2c:07:1e:37:02:00:60:e0:5a:
a4:5f:8f:4a:47:ed:f9:32:6e:21:4c:18:f6:3d:00:
f5:65:51:4c:8f:58:e1:6f:ce:c4:1a:d3:a3:a4:8e:
33:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E0:8C:0D:65:37:66:96:BE:C9:81:8D:EB:8B:16:98:8D:09:E2:C6
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/HuCMDWU3Zpa-yYGN64sWmI0J4sY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.252.0/22
Signature Algorithm: sha256WithRSAEncryption
df:fc:67:91:e0:aa:bd:73:64:74:42:e0:90:46:ac:9c:21:21:
e8:ec:f9:69:04:62:1b:b6:71:ff:d1:a9:70:80:b0:66:4d:c4:
21:32:7b:07:c5:b1:31:5f:3e:ea:fd:f1:53:da:12:25:6f:7e:
54:4e:40:a7:13:0a:8d:e5:62:c3:88:f3:15:bf:2f:3f:2e:56:
6b:cb:fa:4e:37:8a:50:0c:df:ba:98:8b:e1:07:b1:2a:64:66:
20:bc:0d:c3:ca:4e:7f:54:9e:ce:29:0b:0e:ee:fe:af:c5:37:
21:3a:37:ef:5d:4f:b3:7d:3a:71:76:4b:a2:e3:6d:00:0f:b5:
9c:71:98:f4:2a:ca:8e:5f:5f:24:4d:13:4d:59:81:72:0f:d6:
be:98:43:d8:0a:a5:60:53:0e:cf:41:9f:8c:0c:a2:f7:f0:41:
be:7d:b8:77:16:ad:e2:4e:4a:a8:f2:c8:cb:ca:f6:a9:9c:14:
4a:bb:e7:ad:df:8f:c1:3c:ad:5e:f6:74:f1:3a:e4:3c:e8:80:
c8:e2:ca:d3:73:15:8b:a5:37:2d:26:f8:aa:f2:e8:82:37:4e:
54:f8:11:8b:9c:2e:dd:6c:78:61:4e:a2:06:b8:10:9a:dd:94:
f5:c9:0d:23:38:46:54:e0:f4:77:26:d7:45:78:6d:01:11:d8:
ee:3f:de:55
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCjswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5
ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yMjA5MTUw
MjQ3NTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFFRTA4QzBENjUzNzY2
OTZCRUM5ODE4REVCOEIxNjk4OEQwOUUyQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIzlWKCIeg2PLBx+4MaYLzcb5MFCTTiG/Io3UHlGrlZwPm7WAq
MXe0L1gtKhYVfTyGIFO3kMD2fmVdIS+UFLOT3U5gnMZ+Sno0nWaoVI6Lyp3h539y
3yLlraYx3SqW1f3LDe11RwFhAtpNjkJXrWNoYnFsd5GQJ8CK6p5HFeQ0WYsnsq71
eycfBsygqb+c6SX/6nfh5dLNgX4C7gTSqlMsTozQWRR+j6a3UJHzflh+89lF8knQ
m+DlonCEE0KDVFRlWLrNMt8H64GX65BjSu6jU+QEJ5bgBSwHHjcCAGDgWqRfj0pH
7fkybiFMGPY9APVlUUyPWOFvzsQa06OkjjO3AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUHuCMDWU3Zpa+yYGN64sWmI0J4sYwHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj
U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv
Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9IdUNNRFdVM1pwYS15WUdONjRz
V21JMEo0c1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4L8
MA0GCSqGSIb3DQEBCwUAA4IBAQDf/GeR4Kq9c2R0QuCQRqycISHo7PlpBGIbtnH/
0alwgLBmTcQhMnsHxbExXz7q/fFT2hIlb35UTkCnEwqN5WLDiPMVvy8/LlZry/pO
N4pQDN+6mIvhB7EqZGYgvA3Dyk5/VJ7OKQsO7v6vxTchOjfvXU+zfTpxdkui420A
D7WccZj0KsqOX18kTRNNWYFyD9a+mEPYCqVgUw7PQZ+MDKL38EG+fbh3Fq3iTkqo
8sjLyvapnBRKu+et34/BPK1e9nTxOuQ86IDI4srTcxWLpTctJviq8uiCN05U+BGL
nC7dbHhhTqIGuBCa3ZT1yQ0jOEZU4PR3JtdFeG0BEdjuP95V
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:50 2025 by rpki-client