Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/4HQjRvdQaC3G1p_dZcG_j1SabW4.roa
File: 4HQjRvdQaC3G1p_dZcG_j1SabW4.roa (raw, json)
Hash identifier: 78KUR2B4E+Sr+WMk4Q2yfCyB2HwEmpGO9nsoygsVmUc=
Subject key identifier: E0:74:23:46:F7:50:68:2D:C6:D6:9F:DD:65:C1:BF:8F:54:9A:6D:6E
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0A08
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/4HQjRvdQaC3G1p_dZcG_j1SabW4.roa
Signing time: Tue 29 Sep 2020 10:03:09 +0000
ROA not before: Tue 29 Sep 2020 10:03:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131641
IP address blocks: 103.136.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2568 (0xa08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 10:03:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E0742346F750682DC6D69FDD65C1BF8F549A6D6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0b:4d:7e:a5:5b:fb:ef:b2:42:07:a8:7c:5c:
bb:43:6d:d6:03:ab:e1:0f:85:49:0a:ff:df:91:95:
6c:64:78:4b:58:99:7b:86:ce:43:21:de:66:0c:32:
5c:0c:1b:8b:6d:31:37:d9:56:e9:95:66:f9:97:3c:
2c:e3:4b:af:f6:4c:b5:e9:2d:f5:45:bd:1e:1a:a6:
78:82:c9:7c:97:b0:e9:49:f5:33:e0:38:b8:7f:84:
29:99:c2:5f:dd:db:5e:4a:75:f6:ab:00:8c:eb:9f:
b7:3e:0a:db:dc:b8:6b:9c:84:6f:7c:d4:0c:31:a1:
6c:bd:5f:94:06:94:2c:39:fd:b3:13:62:40:18:7d:
61:c6:7e:bd:30:55:d0:09:91:e1:54:dc:a0:27:1d:
d9:57:52:15:a6:43:f9:c7:42:6e:d3:1d:17:d2:b8:
2e:ca:c1:59:3d:6b:d4:2e:75:78:68:a1:0c:59:4f:
32:83:26:34:ff:26:f1:4d:a5:ea:46:3b:1b:13:2f:
6e:51:b1:e1:17:f2:8c:5e:fc:1e:e8:fa:ee:f0:fe:
f2:94:a3:ef:c3:ee:fd:a4:3b:72:73:7e:1a:3d:c2:
a0:c6:89:56:47:80:03:0c:0d:39:99:f4:f2:c1:06:
9c:34:b3:e3:e7:b2:17:64:40:57:a3:35:ac:06:f1:
c6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:74:23:46:F7:50:68:2D:C6:D6:9F:DD:65:C1:BF:8F:54:9A:6D:6E
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/4HQjRvdQaC3G1p_dZcG_j1SabW4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.61.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:26:e0:db:4b:50:aa:ea:3f:3e:05:b9:f5:78:b9:c6:11:f7:
51:9b:84:af:6a:2d:14:84:c8:f5:c6:a0:f1:34:85:cc:af:2e:
28:6f:39:c5:d7:26:0e:89:22:c4:62:14:84:ee:1b:30:1b:21:
42:a1:92:2d:95:06:e0:a7:b2:5b:0b:4a:b6:be:2c:00:1c:29:
0e:c8:70:b1:b3:9c:5f:08:55:57:ec:a3:d7:66:1a:09:f1:33:
66:92:f8:67:e0:97:18:a1:14:11:11:a2:57:10:68:44:3d:18:
a6:fc:d8:21:7a:93:1b:f6:bd:ad:11:63:20:e0:d9:bc:5e:3a:
d6:40:86:6d:72:87:4e:ba:15:8e:a2:be:53:d1:d9:8b:b2:00:
0d:14:ae:0d:3a:50:40:78:09:6c:63:25:a2:4c:ea:e0:ff:55:
12:44:85:81:f1:5f:7d:c4:2f:30:c3:55:4b:2a:5a:df:f2:c0:
05:91:22:84:f9:c7:4f:ef:38:77:d1:d3:0c:cd:e6:b2:b9:53:
e3:db:0c:ac:13:08:e1:80:e6:d5:40:30:ff:c9:01:d1:93:4b:
ad:28:25:0e:8c:31:59:b5:b0:8e:a6:63:f8:47:dd:e1:fb:ab:
04:81:14:dc:32:37:23:53:c5:46:69:d0:f2:4b:d3:31:88:ba:
da:98:3b:9d
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCggwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG
MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMDA5Mjkx
MDAzMDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEUwNzQyMzQ2Rjc1MDY4
MkRDNkQ2OUZERDY1QzFCRjhGNTQ5QTZENkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzC01+pVv777JCB6h8XLtDbdYDq+EPhUkK/9+RlWxkeEtYmXuG
zkMh3mYMMlwMG4ttMTfZVumVZvmXPCzjS6/2TLXpLfVFvR4apniCyXyXsOlJ9TPg
OLh/hCmZwl/d215KdfarAIzrn7c+CtvcuGuchG981AwxoWy9X5QGlCw5/bMTYkAY
fWHGfr0wVdAJkeFU3KAnHdlXUhWmQ/nHQm7THRfSuC7KwVk9a9QudXhooQxZTzKD
JjT/JvFNpepGOxsTL25RseEX8oxe/B7o+u7w/vKUo+/D7v2kO3Jzfho9wqDGiVZH
gAMMDTmZ9PLBBpw0s+PnshdkQFejNawG8cZtAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU4HQjRvdQaC3G1p/dZcG/j1SabW4wHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75
mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ
RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzRIUWpSdmRRYUMzRzFwX2RaY0dfajFT
YWJXNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniD0wDQYJ
KoZIhvcNAQELBQADggEBADsm4NtLUKrqPz4FufV4ucYR91GbhK9qLRSEyPXGoPE0
hcyvLihvOcXXJg6JIsRiFITuGzAbIUKhki2VBuCnslsLSra+LAAcKQ7IcLGznF8I
VVfso9dmGgnxM2aS+GfglxihFBERolcQaEQ9GKb82CF6kxv2va0RYyDg2bxeOtZA
hm1yh066FY6ivlPR2YuyAA0Urg06UEB4CWxjJaJM6uD/VRJEhYHxX33ELzDDVUsq
Wt/ywAWRIoT5x0/vOHfR0wzN5rK5U+PbDKwTCOGA5tVAMP/JAdGTS60oJQ6MMVm1
sI6mY/hH3eH7qwSBFNwyNyNTxUZp0PJL0zGIutqYO50=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org