Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/qTTWrTzBvv9WNJ8VHvZryY5tMvU.roa
File: qTTWrTzBvv9WNJ8VHvZryY5tMvU.roa (raw, json)
Hash identifier: 6bZDFEacPG/iFbt4ogOYF7EWnI0FNO8V1uWOIy3PNek=
Subject key identifier: A9:34:D6:AD:3C:C1:BE:FF:56:34:9F:15:1E:F6:6B:C9:8E:6D:32:F5
Certificate issuer: /CN=834D79F4126BF9E9DC0B32B86764E7D602514E01
Certificate serial: 02B9
Authority key identifier: 83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/qTTWrTzBvv9WNJ8VHvZryY5tMvU.roa
Signing time: Mon 26 Aug 2024 05:11:33 +0000
ROA not before: Mon 26 Aug 2024 05:11:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7483
IP address blocks: 103.175.166.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 697 (0x2b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=834D79F4126BF9E9DC0B32B86764E7D602514E01
Validity
Not Before: Aug 26 05:11:33 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A934D6AD3CC1BEFF56349F151EF66BC98E6D32F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:25:8d:e2:69:12:d2:cb:20:3c:0d:7c:95:b7:
1f:0e:18:75:83:b8:0f:65:13:67:bc:42:03:7c:28:
64:45:50:d9:26:22:2e:0e:fa:99:20:3a:eb:77:78:
a4:d3:ea:19:97:df:8b:04:9a:79:c6:66:57:5e:eb:
57:81:4c:04:d7:74:b1:d7:da:b0:cd:f4:ff:c5:00:
7a:58:57:6c:7e:b8:c0:1d:23:98:c6:69:aa:21:bc:
3b:2f:8e:c9:12:a7:dd:a3:c7:de:b4:46:0d:b9:ed:
82:7d:02:73:f9:f2:dc:93:38:48:d3:ea:bb:9b:56:
ba:a5:a1:1b:03:0b:81:fe:89:fa:ae:5c:99:04:2b:
b2:63:d2:1f:4c:91:28:13:bb:15:fa:33:6d:6c:fb:
72:75:fd:a4:4a:aa:a5:47:f3:c8:d8:20:50:5f:a2:
f6:95:7b:3b:8f:8e:13:84:e2:9f:c9:fe:e7:4e:8a:
ba:10:fa:f7:0e:1c:01:b2:36:c7:60:c8:7b:29:7f:
a3:27:e3:74:41:56:cc:af:30:31:b2:77:61:13:89:
cf:ba:2e:ff:bc:c0:a4:b1:c5:fc:98:5b:41:24:17:
98:19:ac:1b:67:92:dd:4f:92:01:de:fc:e9:8d:de:
bb:9a:7e:72:19:cc:13:c2:4d:86:f1:3e:f7:e3:5d:
03:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:34:D6:AD:3C:C1:BE:FF:56:34:9F:15:1E:F6:6B:C9:8E:6D:32:F5
X509v3 Authority Key Identifier:
keyid:83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/qTTWrTzBvv9WNJ8VHvZryY5tMvU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.166.0/23
Signature Algorithm: sha256WithRSAEncryption
65:ac:35:ea:36:78:00:28:6d:9b:52:3e:12:ae:f0:11:ee:3f:
14:80:84:29:f2:a5:a4:e3:1a:09:1d:4e:dc:09:51:4e:6b:8a:
30:2d:8e:1f:07:3a:76:b5:35:2c:48:f5:82:eb:2b:63:77:d8:
37:d4:40:cb:e8:de:1d:f8:a0:fd:e8:45:83:28:07:b7:56:a0:
7d:c0:7b:c0:6c:c9:ff:67:68:d8:4f:2b:a4:1c:4e:e0:15:61:
46:ab:9f:0a:86:3f:31:cd:59:0b:a1:af:3a:67:1b:86:1e:44:
18:ee:86:90:a3:53:ef:b9:31:f9:c9:ef:6e:df:4b:a3:f7:6a:
f5:dd:39:8d:a7:62:bb:58:3b:b4:53:e0:23:f6:ed:44:8b:80:
44:ad:7f:9b:63:b7:16:f8:29:46:07:b9:aa:2d:95:b5:77:98:
63:a8:e6:c6:b8:29:05:34:25:2d:81:88:ab:61:b8:16:20:38:
00:15:e2:09:20:32:0c:7a:46:72:33:6d:3f:7f:87:24:e0:2b:
26:06:f4:4e:18:6e:c3:a6:db:17:e7:c6:b6:7d:4b:8f:9a:5b:
49:af:b4:e8:a3:0a:f3:ac:4f:75:0d:c6:c3:10:f0:95:af:99:
dc:78:15:59:e2:87:bb:02:ca:6f:c2:67:f4:75:11:37:f3:82:
2b:aa:ee:99
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICArkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODM0
RDc5RjQxMjZCRjlFOURDMEIzMkI4Njc2NEU3RDYwMjUxNEUwMTAeFw0yNDA4MjYw
NTExMzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE5MzRENkFEM0NDMUJF
RkY1NjM0OUYxNTFFRjY2QkM5OEU2RDMyRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDZJY3iaRLSyyA8DXyVtx8OGHWDuA9lE2e8QgN8KGRFUNkmIi4O
+pkgOut3eKTT6hmX34sEmnnGZlde61eBTATXdLHX2rDN9P/FAHpYV2x+uMAdI5jG
aaohvDsvjskSp92jx960Rg257YJ9AnP58tyTOEjT6rubVrqloRsDC4H+ifquXJkE
K7Jj0h9MkSgTuxX6M21s+3J1/aRKqqVH88jYIFBfovaVezuPjhOE4p/J/udOiroQ
+vcOHAGyNsdgyHspf6Mn43RBVsyvMDGyd2ETic+6Lv+8wKSxxfyYW0EkF5gZrBtn
kt1PkgHe/OmN3ruafnIZzBPCTYbxPvfjXQPRAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUqTTWrTzBvv9WNJ8VHvZryY5tMvUwHwYDVR0jBBgwFoAUg0159BJr+encCzK4
Z2Tn1gJRTgEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURO
T0RFL2cwMTU5QkpyLWVuY0N6SzRaMlRuMWdKUlRnRS5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvZzAxNTlCSnItZW5jQ3pLNFoyVG4xZ0pSVGdFLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVUROT0RFL3FUVFdyVHpCdnY5
V05KOFZIdlpyeVk1dE12VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAFnr6YwDQYJKoZIhvcNAQELBQADggEBAGWsNeo2eAAobZtSPhKu8BHuPxSA
hCnypaTjGgkdTtwJUU5rijAtjh8HOna1NSxI9YLrK2N32DfUQMvo3h34oP3oRYMo
B7dWoH3Ae8Bsyf9naNhPK6QcTuAVYUarnwqGPzHNWQuhrzpnG4YeRBjuhpCjU++5
MfnJ727fS6P3avXdOY2nYrtYO7RT4CP27USLgEStf5tjtxb4KUYHuaotlbV3mGOo
5sa4KQU0JS2BiKthuBYgOAAV4gkgMgx6RnIzbT9/hyTgKyYG9E4YbsOm2xfnxrZ9
S4+aW0mvtOijCvOsT3UNxsMQ8JWvmdx4FVnih7sCym/CZ/R1ETfzgiuq7pk=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:40 2025 by rpki-client