Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/45gT-SvvoH3jT8dayFScy_NpoyI.roa
File: 45gT-SvvoH3jT8dayFScy_NpoyI.roa (raw, json)
Hash identifier: jJeAa/yyOPKON6DSUqQMeF8dN9xU8ZaVd33BxktzpVo=
Subject key identifier: E3:98:13:F9:2B:EF:A0:7D:E3:4F:C7:5A:C8:54:9C:CB:F3:69:A3:22
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0B5E
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/45gT-SvvoH3jT8dayFScy_NpoyI.roa
Signing time: Sun 07 Feb 2021 07:53:47 +0000
ROA not before: Sun 07 Feb 2021 07:53:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 103.136.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2910 (0xb5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Feb 7 07:53:47 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E39813F92BEFA07DE34FC75AC8549CCBF369A322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:be:59:2a:b1:71:4d:b4:7b:50:08:f1:cd:7f:
82:5d:33:61:71:7f:71:b9:b5:f3:a1:bc:fb:d9:24:
95:47:ae:de:a8:21:ab:8d:58:c6:c0:87:cb:68:c7:
73:d9:e7:cd:1a:5d:8c:84:9d:f3:ae:48:f0:5b:dd:
7b:af:fb:36:18:ba:3e:60:fa:fb:21:76:03:f4:62:
d3:16:61:7a:0c:b2:67:34:7e:51:f7:d1:e8:be:80:
c3:d8:34:e9:71:54:c3:24:0d:b5:01:3b:ec:9b:95:
98:26:59:fb:8e:71:73:a0:33:78:b6:99:e9:2c:81:
ce:c8:af:c4:25:2b:9c:f2:5b:5d:ff:71:f7:08:a7:
b8:56:22:a2:79:74:c7:c7:22:e7:93:54:30:c1:58:
98:a7:99:85:c0:0b:c5:8c:b4:e9:5f:d7:4d:d3:90:
29:d2:fa:3c:cf:a4:72:b1:90:e7:9b:77:be:fb:36:
1b:1c:64:8b:e3:0e:66:f0:60:14:b2:b6:93:86:fc:
b9:c8:65:ab:16:1a:17:52:c6:30:b7:11:1c:2d:74:
f0:76:54:f2:59:99:41:49:32:aa:e7:85:6e:7d:21:
bd:b5:67:a7:79:a3:c9:b2:9f:aa:04:c7:e4:9b:f3:
40:af:7b:58:ef:b8:07:77:11:5a:b5:ff:95:57:d4:
c2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:98:13:F9:2B:EF:A0:7D:E3:4F:C7:5A:C8:54:9C:CB:F3:69:A3:22
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/45gT-SvvoH3jT8dayFScy_NpoyI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/24
Signature Algorithm: sha256WithRSAEncryption
54:dd:fa:a2:33:ff:10:bb:e6:ad:15:10:59:e0:1c:3c:c0:8a:
6c:20:7a:23:1c:df:68:bd:9c:3e:59:fd:dc:f8:0b:59:b6:db:
59:73:66:3f:7b:6b:df:e0:a8:35:92:bf:41:a4:a6:91:95:6a:
c2:ba:02:b1:bb:48:65:b7:e4:7c:e2:16:59:24:eb:3a:02:cb:
99:1c:16:3c:7b:19:65:f7:2f:83:f8:0f:ba:e9:4f:09:01:d1:
a2:5b:b2:17:b8:f1:5e:6f:0a:00:54:09:1e:a9:5d:89:d2:10:
bd:e7:0d:db:99:e1:91:55:ee:4c:bb:03:1f:da:77:86:01:5d:
cb:ab:b2:91:05:93:d2:0a:48:c2:cb:f6:03:f2:26:25:f6:db:
86:35:4d:eb:75:e1:cb:78:36:76:b3:54:2e:83:93:d8:4f:79:
22:87:87:a6:a4:b0:ec:ce:42:5a:9a:3a:26:0e:cc:12:11:74:
02:b9:82:6a:49:01:2d:7e:54:86:24:c4:4f:4d:22:b5:a2:af:
66:b4:ee:74:65:ca:a0:37:96:cb:30:d5:50:d1:d3:c5:73:d0:
78:eb:67:46:8c:4b:87:5a:78:a1:80:77:b6:23:2a:68:ae:3f:
24:c8:dd:f4:28:02:1c:b9:9c:5f:af:3d:60:4d:cc:67:8e:7f:
70:70:9d:b4
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICC14wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG
MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMTAyMDcw
NzUzNDdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEUzOTgxM0Y5MkJFRkEw
N0RFMzRGQzc1QUM4NTQ5Q0NCRjM2OUEzMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4vlkqsXFNtHtQCPHNf4JdM2Fxf3G5tfOhvPvZJJVHrt6oIauN
WMbAh8tox3PZ580aXYyEnfOuSPBb3Xuv+zYYuj5g+vshdgP0YtMWYXoMsmc0flH3
0ei+gMPYNOlxVMMkDbUBO+yblZgmWfuOcXOgM3i2meksgc7Ir8QlK5zyW13/cfcI
p7hWIqJ5dMfHIueTVDDBWJinmYXAC8WMtOlf103TkCnS+jzPpHKxkOebd777Nhsc
ZIvjDmbwYBSytpOG/LnIZasWGhdSxjC3ERwtdPB2VPJZmUFJMqrnhW59Ib21Z6d5
o8myn6oEx+Sb80Cve1jvuAd3EVq1/5VX1MI/AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU45gT+SvvoH3jT8dayFScy/NpoyIwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75
mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ
RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzQ1Z1QtU3Z2b0gzalQ4ZGF5RlNjeV9O
cG95SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniDwwDQYJ
KoZIhvcNAQELBQADggEBAFTd+qIz/xC75q0VEFngHDzAimwgeiMc32i9nD5Z/dz4
C1m221lzZj97a9/gqDWSv0GkppGVasK6ArG7SGW35HziFlkk6zoCy5kcFjx7GWX3
L4P4D7rpTwkB0aJbshe48V5vCgBUCR6pXYnSEL3nDduZ4ZFV7ky7Ax/ad4YBXcur
spEFk9IKSMLL9gPyJiX224Y1Tet14ct4NnazVC6Dk9hPeSKHh6aksOzOQlqaOiYO
zBIRdAK5gmpJAS1+VIYkxE9NIrWir2a07nRlyqA3lssw1VDR08Vz0HjrZ0aMS4da
eKGAd7YjKmiuPyTI3fQoAhy5nF+vPWBNzGeOf3BwnbQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org