Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/JQjdhwXk5yidCa_kH5Ml1XwkqG4.roa
File: JQjdhwXk5yidCa_kH5Ml1XwkqG4.roa (raw, json)
Hash identifier: RgsVcBWM9KWU3v38RpJ44w5g0CsCWdmnrqEeYIKuYNk=
Subject key identifier: 25:08:DD:87:05:E4:E7:28:9D:09:AF:E4:1F:93:25:D5:7C:24:A8:6E
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 08BE
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/JQjdhwXk5yidCa_kH5Ml1XwkqG4.roa
Signing time: Sun 07 Feb 2021 11:46:46 +0000
ROA not before: Sun 07 Feb 2021 11:46:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20473
IP address blocks: 103.123.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2238 (0x8be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Feb 7 11:46:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2508DD8705E4E7289D09AFE41F9325D57C24A86E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:c6:54:3d:96:d2:45:15:b9:e0:ca:99:c3:af:
3c:2b:53:fa:1b:5c:ee:c2:91:b1:0c:29:12:5d:77:
51:a3:69:0d:b8:90:66:b2:e6:a5:24:8b:b8:82:97:
05:86:5a:8f:f4:a5:0e:59:d4:03:48:0f:d9:ce:e2:
0a:31:b6:55:93:71:cd:d2:61:86:7f:45:e3:10:3a:
87:b7:63:da:07:2f:3a:68:47:b3:4e:b3:07:a2:a2:
8d:8e:a8:ee:fb:3c:ee:24:3a:0f:68:81:39:e2:d3:
39:7e:ea:45:40:e5:9f:ea:c7:dc:cc:27:09:f7:f1:
a3:80:39:c6:80:89:be:9e:1e:0a:4e:12:e6:1a:4d:
cf:e5:fa:41:d3:a3:00:92:98:8c:25:28:93:e9:07:
99:d3:da:63:c9:86:c2:c2:1b:d9:9d:f0:4b:f9:e9:
0c:33:56:04:56:b9:07:54:9b:f1:a2:07:6c:5e:f4:
1a:00:4f:64:53:66:9c:23:ea:a5:9a:4c:03:70:e2:
bf:b0:1f:a5:08:88:f3:80:c0:cd:c0:7f:bc:53:82:
f6:9f:3a:68:10:4b:d8:28:2a:45:a0:5f:f2:7e:f4:
d3:0a:80:04:b3:4d:b1:f5:41:5f:30:87:95:f4:ea:
c6:0a:d7:c2:38:22:25:64:8a:a4:e4:b2:7f:71:a2:
80:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:08:DD:87:05:E4:E7:28:9D:09:AF:E4:1F:93:25:D5:7C:24:A8:6E
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/JQjdhwXk5yidCa_kH5Ml1XwkqG4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.128.0/22
Signature Algorithm: sha256WithRSAEncryption
21:5e:62:f2:e1:36:01:51:45:be:c4:b9:35:38:76:19:35:3a:
24:35:79:f3:ea:44:42:99:ef:de:bf:1a:e9:fa:53:8b:cd:03:
d5:1b:28:06:7c:9c:ba:fb:fe:b3:d6:93:77:98:f1:c7:5d:20:
54:fa:bb:3d:e4:38:68:ab:d3:34:bd:fe:bf:d8:1e:6c:9f:5d:
e5:00:fd:45:3b:b8:ae:94:dd:fd:fb:e4:2f:6c:04:35:44:12:
00:1e:7f:8a:a6:3a:df:9e:a6:1f:9b:e5:4a:bc:95:2d:6d:4a:
ef:b6:57:d8:3f:ba:b4:78:b4:c6:30:80:3a:1b:b2:f9:02:1f:
3d:73:8d:7f:81:32:41:8c:a0:8d:f6:6b:80:e1:fc:17:5f:69:
78:5d:cb:69:d0:71:7a:b1:d5:e6:61:e7:e2:3e:71:ac:f2:e5:
bc:06:b2:14:72:bd:de:81:50:ee:98:62:32:ea:6d:46:7d:07:
9d:20:a3:ec:79:81:5a:09:79:06:f9:d5:09:f3:74:87:a6:9b:
57:78:80:d6:fa:db:ca:cd:4f:8a:42:3b:60:de:0b:b2:2c:58:
20:da:11:50:19:23:73:86:b3:71:a9:44:0a:c0:b4:77:e2:c1:
7f:1f:1b:59:61:cc:02:dd:bd:f0:f8:4f:d3:01:9a:7d:0d:23:
d4:1c:25:46
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF
RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yMTAyMDcx
MTQ2NDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDI1MDhERDg3MDVFNEU3
Mjg5RDA5QUZFNDFGOTMyNUQ1N0MyNEE4NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD6xlQ9ltJFFbngypnDrzwrU/obXO7CkbEMKRJdd1GjaQ24kGay
5qUki7iClwWGWo/0pQ5Z1ANID9nO4goxtlWTcc3SYYZ/ReMQOoe3Y9oHLzpoR7NO
sweioo2OqO77PO4kOg9ogTni0zl+6kVA5Z/qx9zMJwn38aOAOcaAib6eHgpOEuYa
Tc/l+kHTowCSmIwlKJPpB5nT2mPJhsLCG9md8Ev56QwzVgRWuQdUm/GiB2xe9BoA
T2RTZpwj6qWaTANw4r+wH6UIiPOAwM3Af7xTgvafOmgQS9goKkWgX/J+9NMKgASz
TbH1QV8wh5X06sYK18I4IiVkiqTksn9xooB9AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUJQjdhwXk5yidCa/kH5Ml1XwkqG4wHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc
TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ
Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vSlFqZGh3WGs1eWlkQ2Ff
a0g1TWwxWHdrcUc0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Amd7gDANBgkqhkiG9w0BAQsFAAOCAQEAIV5i8uE2AVFFvsS5NTh2GTU6JDV58+pE
Qpnv3r8a6fpTi80D1RsoBnycuvv+s9aTd5jxx10gVPq7PeQ4aKvTNL3+v9gebJ9d
5QD9RTu4rpTd/fvkL2wENUQSAB5/iqY6356mH5vlSryVLW1K77ZX2D+6tHi0xjCA
Ohuy+QIfPXONf4EyQYygjfZrgOH8F19peF3LadBxerHV5mHn4j5xrPLlvAayFHK9
3oFQ7phiMuptRn0HnSCj7HmBWgl5BvnVCfN0h6abV3iA1vrbys1PikI7YN4LsixY
INoRUBkjc4azcalECsC0d+LBfx8bWWHMAt298PhP0wGafQ0j1BwlRg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org