Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/4cE1jG0IRgyGpyKVbi30dsXEvOE.roa
File: 4cE1jG0IRgyGpyKVbi30dsXEvOE.roa (raw, json)
Hash identifier: ieTr+ObG1omu35RkenrItKQ3vo5ZievbqE8Kvqg8xIk=
Subject key identifier: E1:C1:35:8C:6D:08:46:0C:86:A7:22:95:6E:2D:F4:76:C5:C4:BC:E1
Certificate issuer: /CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C
Certificate serial: 0741
Authority key identifier: 8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/4cE1jG0IRgyGpyKVbi30dsXEvOE.roa
Signing time: Tue 29 Sep 2020 10:02:09 +0000
ROA not before: Tue 29 Sep 2020 10:02:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131618
IP address blocks: 103.103.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1857 (0x741)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C
Validity
Not Before: Sep 29 10:02:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E1C1358C6D08460C86A722956E2DF476C5C4BCE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:af:ca:93:5d:92:71:05:8a:6e:ab:c9:82:cb:
3a:b3:1f:a7:79:7e:26:4c:9b:87:c1:61:9f:69:ed:
ef:ce:39:78:7c:a7:9d:41:bf:d3:d6:67:b3:3b:7e:
39:6c:b0:70:a3:61:59:e6:e1:14:df:94:fa:36:5e:
83:e2:22:8d:26:84:a9:01:19:2d:0a:3a:1a:be:99:
fe:1d:2e:f1:48:03:dc:26:87:5c:7b:a2:78:cd:d5:
2c:23:75:43:ec:d9:75:f8:54:ca:df:45:9e:43:f7:
c0:ea:8f:e2:a7:33:64:8c:2a:44:ef:fd:76:8c:c1:
dd:59:34:72:0a:81:a6:e3:f9:92:3d:bd:ff:51:19:
4b:da:95:31:fe:b8:58:9f:d4:11:b9:47:a4:2c:fc:
54:ef:ed:46:81:13:59:39:d8:f3:a2:fa:f1:3f:3d:
30:65:70:88:44:ad:a3:2e:7c:05:70:14:8d:3c:f7:
a9:e3:cb:eb:bd:0a:ea:5a:1e:b1:c1:b6:cc:f1:12:
68:da:cc:f4:73:a0:ed:4c:30:c4:66:81:f0:7a:bf:
c1:4e:75:10:00:1e:fe:37:23:1c:34:9e:36:9f:d6:
07:af:25:54:0d:70:f3:12:00:b6:a7:3d:a6:65:03:
01:eb:0a:a8:e3:24:38:ff:1b:a8:e9:ea:9e:e0:f7:
41:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:C1:35:8C:6D:08:46:0C:86:A7:22:95:6E:2D:F4:76:C5:C4:BC:E1
X509v3 Authority Key Identifier:
keyid:8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/4cE1jG0IRgyGpyKVbi30dsXEvOE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.103.80.0/22
Signature Algorithm: sha256WithRSAEncryption
53:f2:b4:54:b0:c9:0b:e1:1e:ca:ff:5c:26:00:5e:03:91:ce:
76:eb:81:91:7e:30:28:83:4c:e7:d1:00:7b:42:f1:08:24:2c:
9f:56:ee:b2:c8:45:0d:65:0e:fe:61:0c:01:fa:c6:53:46:11:
04:36:40:2b:68:18:88:55:5b:b2:7f:1f:d3:40:6b:1d:27:51:
9b:71:e8:4f:57:14:cd:a3:61:c3:ca:ec:a6:f1:a2:d8:f4:72:
04:e5:44:0b:8e:fc:0f:d4:90:ea:de:17:bc:cd:a8:db:0b:3a:
b6:7e:d5:cf:f7:69:f9:1c:5e:f9:f9:d5:b5:13:4a:87:d2:33:
63:46:ee:ff:c1:76:47:0c:f3:c7:22:ce:c1:31:02:32:ca:1f:
67:76:46:98:a1:3f:99:a5:5c:39:98:77:2f:a6:43:31:0c:06:
ec:47:ca:3c:dc:e3:7f:4b:e1:d0:15:38:a3:fe:ed:6b:c5:a9:
5d:26:40:dd:11:5a:e2:4f:45:fd:58:cd:54:2c:60:82:d1:60:
7d:45:d3:2f:48:63:54:92:b6:66:ac:2f:da:a6:f3:b9:28:d6:
1c:72:4e:3c:a3:6f:6a:42:09:94:80:0f:cb:ee:10:08:5b:02:
a8:10:30:3d:ff:e6:18:52:a3:4f:a3:23:f0:65:0c:2f:e8:ed:
d7:ff:f8:72
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICB0EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEJE
NjQ1Mjc4RkM0QTJBMjAwQkNEODA3MkYzQjNEQzc5MzEyNTM2QzAeFw0yMDA5Mjkx
MDAyMDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEUxQzEzNThDNkQwODQ2
MEM4NkE3MjI5NTZFMkRGNDc2QzVDNEJDRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCvr8qTXZJxBYpuq8mCyzqzH6d5fiZMm4fBYZ9p7e/OOXh8p51B
v9PWZ7M7fjlssHCjYVnm4RTflPo2XoPiIo0mhKkBGS0KOhq+mf4dLvFIA9wmh1x7
onjN1SwjdUPs2XX4VMrfRZ5D98Dqj+KnM2SMKkTv/XaMwd1ZNHIKgabj+ZI9vf9R
GUvalTH+uFif1BG5R6Qs/FTv7UaBE1k52POi+vE/PTBlcIhEraMufAVwFI0896nj
y+u9CupaHrHBtszxEmjazPRzoO1MMMRmgfB6v8FOdRAAHv43Ixw0njaf1gevJVQN
cPMSALanPaZlAwHrCqjjJDj/G6jp6p7g90ExAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU4cE1jG0IRgyGpyKVbi30dsXEvOEwHwYDVR0jBBgwFoAUi9ZFJ4/EoqIAvNgH
Lzs9x5MSU2wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTC1O
RVQvaTlaRko0X0VvcUlBdk5nSEx6czl4NU1TVTJ3LmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9pOVpGSjRfRW9xSUF2TmdITHpzOXg1TVNVMncuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DQVJMLU5FVC80Y0UxakcwSVJneUdw
eUtWYmkzMGRzWEV2T0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZ2dQMA0GCSqGSIb3DQEBCwUAA4IBAQBT8rRUsMkL4R7K/1wmAF4Dkc5264GR
fjAog0zn0QB7QvEIJCyfVu6yyEUNZQ7+YQwB+sZTRhEENkAraBiIVVuyfx/TQGsd
J1GbcehPVxTNo2HDyuym8aLY9HIE5UQLjvwP1JDq3he8zajbCzq2ftXP92n5HF75
+dW1E0qH0jNjRu7/wXZHDPPHIs7BMQIyyh9ndkaYoT+ZpVw5mHcvpkMxDAbsR8o8
3ON/S+HQFTij/u1rxaldJkDdEVriT0X9WM1ULGCC0WB9RdMvSGNUkrZmrC/apvO5
KNYcck48o29qQgmUgA/L7hAIWwKoEDA9/+YYUqNPoyPwZQwv6O3X//hy
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org