Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/QkQca3VzDjiVxqHQk1W7VpG1ftg.roa
File: QkQca3VzDjiVxqHQk1W7VpG1ftg.roa (raw, json)
Hash identifier: V1+2Fd/djNJN2PtPjW9G6w8bVFMGHgIfeYIkN3kjmkk=
Subject key identifier: 42:44:1C:6B:75:73:0E:38:95:C6:A1:D0:93:55:BB:56:91:B5:7E:D8
Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Certificate serial: 89
Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/QkQca3VzDjiVxqHQk1W7VpG1ftg.roa
Signing time: Fri 13 Oct 2023 22:09:41 +0000
ROA not before: Fri 13 Oct 2023 22:09:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 63910
IP address blocks: 103.130.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137 (0x89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Validity
Not Before: Oct 13 22:09:41 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=42441C6B75730E3895C6A1D09355BB5691B57ED8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:28:72:27:dd:78:e1:d9:dc:f9:f6:2f:0b:a3:
6d:ca:57:00:71:d0:ed:67:03:fb:06:80:97:af:de:
9d:9d:0c:fa:e9:ec:3e:9d:5e:95:6d:4d:22:bd:fe:
0e:c4:c9:b4:4b:a4:98:b6:fc:d1:28:1d:b8:25:75:
9f:23:0b:7d:ec:e8:3e:b4:3e:61:bf:3c:4a:7a:9b:
18:8d:7d:5a:6e:b1:91:06:43:8f:ab:b1:ea:83:48:
eb:71:b5:8d:35:b0:bf:c0:16:f2:a3:12:02:b1:7b:
b9:37:43:d3:8e:3b:07:18:56:9d:10:fa:aa:f4:00:
cf:f1:e3:6a:dd:57:77:82:f9:28:ec:c6:86:36:c2:
3d:8e:22:8c:f5:e6:d3:dd:b8:7e:8e:8c:3d:bf:5b:
3a:a3:78:d7:6f:de:53:7e:f5:c4:f7:9f:50:dc:61:
a3:de:bd:f4:0b:76:e8:8b:4c:b4:d6:89:a4:1a:fb:
b7:34:1b:dc:c6:15:cf:7b:3a:c7:03:54:51:c5:75:
50:8d:fa:80:94:35:6c:40:3d:36:68:f6:23:2b:43:
44:eb:2c:9f:07:31:27:54:6f:6f:12:6a:76:e1:6d:
e5:73:0f:0d:fc:44:89:be:39:f5:19:31:58:06:95:
84:01:bf:c4:de:ba:ea:19:52:f5:12:21:06:da:52:
27:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:44:1C:6B:75:73:0E:38:95:C6:A1:D0:93:55:BB:56:91:B5:7E:D8
X509v3 Authority Key Identifier:
keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/QkQca3VzDjiVxqHQk1W7VpG1ftg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.236.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:bb:f5:cb:ea:15:94:fc:d3:4a:c8:fc:c0:b5:fa:c2:af:f3:
de:92:07:26:d7:66:a9:b7:2e:4d:c4:c4:3a:28:30:92:0d:e9:
b9:16:5e:7a:5b:d6:27:13:18:89:15:37:bc:6b:63:86:fc:47:
90:ce:b6:68:b8:9c:0e:37:f6:bf:53:38:a0:36:6a:97:ee:38:
d8:4b:6f:4e:6c:ba:af:03:a9:91:42:94:ad:d9:a3:2b:f6:75:
ba:ea:67:c2:af:54:5c:71:8a:db:06:28:cb:ab:ae:b2:d8:40:
c1:81:56:b0:d7:9f:28:25:75:b1:43:98:04:07:32:da:f3:85:
90:34:55:20:65:c4:41:87:5b:85:fe:f4:6f:11:bf:bb:77:22:
97:3f:b4:1c:fe:f2:e7:1e:6e:d8:9f:e2:75:9e:f8:33:d6:89:
c2:c1:86:ce:78:8a:72:29:41:9b:95:0d:de:ac:c1:8e:14:43:
43:66:22:79:b7:b6:32:2e:67:e9:8d:1b:e0:ce:6f:fd:b5:1f:
8d:9a:7f:ea:d7:a5:ec:94:2d:ad:b4:88:4c:fd:3e:cc:33:89:
6f:6b:e1:2c:10:b8:a1:ab:bd:18:78:4c:a7:f2:ee:53:19:51:
23:30:80:50:fb:03:a6:1b:c4:4b:4d:6f:67:94:d9:7e:53:7c:
bd:51:96:bc
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRB
RjA0MDJGRUY1NkMzNEExOTJEMUQyMTg1RTZGQjU0NkFBNzAyQzAeFw0yMzEwMTMy
MjA5NDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQyNDQxQzZCNzU3MzBF
Mzg5NUM2QTFEMDkzNTVCQjU2OTFCNTdFRDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAKHIn3Xjh2dz59i8Lo23KVwBx0O1nA/sGgJev3p2dDPrp7D6d
XpVtTSK9/g7EybRLpJi2/NEoHbgldZ8jC33s6D60PmG/PEp6mxiNfVpusZEGQ4+r
seqDSOtxtY01sL/AFvKjEgKxe7k3Q9OOOwcYVp0Q+qr0AM/x42rdV3eC+SjsxoY2
wj2OIoz15tPduH6OjD2/WzqjeNdv3lN+9cT3n1DcYaPevfQLduiLTLTWiaQa+7c0
G9zGFc97OscDVFHFdVCN+oCUNWxAPTZo9iMrQ0TrLJ8HMSdUb28SanbhbeVzDw38
RIm+OfUZMVgGlYQBv8TeuuoZUvUSIQbaUicnAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUQkQca3VzDjiVxqHQk1W7VpG1ftgwHwYDVR0jBBgwFoAUdK8EAv71bDShktHS
GF5vtUaqcCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xBUksv
ZEs4RUF2NzFiRFNoa3RIU0dGNXZ0VWFxY0N3LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9kSzhFQXY3MWJEU2hrdEhTR0Y1dnRVYXFjQ3cuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTEFSSy9Ra1FjYTNWekRqaVZ4cUhRazFX
N1ZwRzFmdGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4Ls
MA0GCSqGSIb3DQEBCwUAA4IBAQCru/XL6hWU/NNKyPzAtfrCr/Pekgcm12apty5N
xMQ6KDCSDem5Fl56W9YnExiJFTe8a2OG/EeQzrZouJwON/a/UzigNmqX7jjYS29O
bLqvA6mRQpSt2aMr9nW66mfCr1RccYrbBijLq66y2EDBgVaw158oJXWxQ5gEBzLa
84WQNFUgZcRBh1uF/vRvEb+7dyKXP7Qc/vLnHm7Yn+J1nvgz1onCwYbOeIpyKUGb
lQ3erMGOFENDZiJ5t7YyLmfpjRvgzm/9tR+Nmn/q16XslC2ttIhM/T7MM4lva+Es
ELihq70YeEyn8u5TGVEjMIBQ+wOmG8RLTW9nlNl+U3y9UZa8
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:51 2025 by rpki-client