Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/XE59enGPLPT1HW_yXP2PILkPeIw.roa
File: XE59enGPLPT1HW_yXP2PILkPeIw.roa (raw, json)
Hash identifier: Fbn0c49YSJ5HuVMPVnhmrZTC1wlcUK6YwObzxufFJuA=
Subject key identifier: 5C:4E:7D:7A:71:8F:2C:F4:F5:1D:6F:F2:5C:FD:8F:20:B9:0F:78:8C
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0A52
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/XE59enGPLPT1HW_yXP2PILkPeIw.roa
Signing time: Thu 15 Sep 2022 02:38:38 +0000
ROA not before: Thu 15 Sep 2022 02:38:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131662
IP address blocks: 103.123.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2642 (0xa52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Sep 15 02:38:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5C4E7D7A718F2CF4F51D6FF25CFD8F20B90F788C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a6:8f:ac:e9:cf:c1:4f:5a:83:cb:8d:5b:51:
c2:96:a6:b4:ae:bc:24:20:9e:51:f7:48:49:62:28:
3d:d6:1f:15:8e:32:9b:32:ac:9a:a5:5c:5f:45:9e:
bb:83:5c:eb:f2:31:ce:be:40:a2:9e:6d:bf:fa:38:
ce:69:6a:ee:1a:9d:e4:bd:0f:82:c0:f8:dd:98:33:
1c:88:8f:7b:11:32:9f:cf:40:7d:0f:a1:a4:cf:80:
8d:13:f6:e9:72:55:fd:9e:27:52:b8:bf:25:f0:37:
c6:f5:62:68:af:2c:a4:4c:ef:7a:6e:e5:19:d5:3d:
fd:f5:82:02:f0:e3:05:40:31:f2:c8:77:85:d8:b7:
35:10:28:ea:a0:82:6d:02:10:7a:bd:d8:2a:25:62:
d9:7b:22:9f:0f:83:5b:30:d0:f7:58:70:a3:3c:bc:
40:4b:10:1e:f2:ed:af:f2:00:33:94:d8:36:6c:7a:
07:48:f8:cc:46:17:d4:3a:bd:fb:df:be:2d:ba:bc:
ba:92:79:72:9b:b5:77:fd:69:17:3e:fa:d0:44:a0:
4e:c6:cf:7c:16:12:31:f0:9d:e7:e7:87:d2:e2:ba:
b0:2c:c2:58:84:d1:ae:07:13:6a:ab:e0:fc:75:cd:
31:4e:20:2c:8e:97:78:f4:91:64:d6:5c:7d:da:b9:
d1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:4E:7D:7A:71:8F:2C:F4:F5:1D:6F:F2:5C:FD:8F:20:B9:0F:78:8C
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/XE59enGPLPT1HW_yXP2PILkPeIw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.128.0/22
Signature Algorithm: sha256WithRSAEncryption
27:bc:e2:91:3a:0b:1e:ae:7c:97:4f:74:96:5e:2c:49:af:71:
eb:43:47:4c:18:59:4d:14:73:22:84:8c:59:d0:65:db:30:9f:
82:22:a3:01:38:1f:9a:5f:42:48:9a:b7:28:d4:8c:94:6d:1a:
a7:48:e0:e0:dd:63:cd:42:1e:1b:05:44:1c:86:20:6e:d5:61:
e5:6a:af:18:35:c5:8b:4d:eb:bd:fb:29:ae:2d:97:17:09:e7:
36:6e:e3:38:bf:1c:ea:b9:5f:9f:0a:97:f0:21:54:a4:12:3c:
ea:f4:92:4d:9f:80:4a:36:98:ff:ed:29:3a:84:06:4a:d9:46:
5d:6d:c2:cc:2d:27:c6:0d:1d:3d:17:11:4b:69:d0:d8:fd:b6:
41:31:bd:98:52:1f:2b:e7:7c:5c:76:44:5f:ce:23:f4:2f:c6:
d0:2b:c9:d7:e9:c0:23:fe:70:71:47:ab:57:1d:c3:07:1c:e7:
9c:e2:45:7d:4c:51:aa:75:64:16:94:34:ce:96:7c:d8:2b:81:
03:5c:01:ec:bf:38:1a:39:51:96:68:9f:b9:ed:10:fe:62:75:
e0:a6:f0:bb:92:3f:4f:3d:d4:af:25:0f:a2:1d:80:27:5b:ed:
fd:40:67:77:8d:e4:9b:f8:88:d7:43:ec:22:fe:bd:6c:41:6b:
5f:95:34:c3
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICClIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF
RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yMjA5MTUw
MjM4MzhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDVDNEU3RDdBNzE4RjJD
RjRGNTFENkZGMjVDRkQ4RjIwQjkwRjc4OEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBpo+s6c/BT1qDy41bUcKWprSuvCQgnlH3SEliKD3WHxWOMpsy
rJqlXF9FnruDXOvyMc6+QKKebb/6OM5pau4aneS9D4LA+N2YMxyIj3sRMp/PQH0P
oaTPgI0T9ulyVf2eJ1K4vyXwN8b1YmivLKRM73pu5RnVPf31ggLw4wVAMfLId4XY
tzUQKOqggm0CEHq92ColYtl7Ip8Pg1sw0PdYcKM8vEBLEB7y7a/yADOU2DZsegdI
+MxGF9Q6vfvfvi26vLqSeXKbtXf9aRc++tBEoE7Gz3wWEjHwnefnh9LiurAswliE
0a4HE2qr4Px1zTFOICyOl3j0kWTWXH3audF7AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUXE59enGPLPT1HW/yXP2PILkPeIwwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc
TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ
Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vWEU1OWVuR1BMUFQxSFdf
eVhQMlBJTGtQZUl3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Amd7gDANBgkqhkiG9w0BAQsFAAOCAQEAJ7zikToLHq58l090ll4sSa9x60NHTBhZ
TRRzIoSMWdBl2zCfgiKjATgfml9CSJq3KNSMlG0ap0jg4N1jzUIeGwVEHIYgbtVh
5WqvGDXFi03rvfspri2XFwnnNm7jOL8c6rlfnwqX8CFUpBI86vSSTZ+ASjaY/+0p
OoQGStlGXW3CzC0nxg0dPRcRS2nQ2P22QTG9mFIfK+d8XHZEX84j9C/G0CvJ1+nA
I/5wcUerVx3DBxznnOJFfUxRqnVkFpQ0zpZ82CuBA1wB7L84GjlRlmifue0Q/mJ1
4Kbwu5I/Tz3UryUPoh2AJ1vt/UBnd43km/iI10PsIv69bEFrX5U0ww==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org