Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/SmJ28UO9aWZvfimXSgtvJYUNMJc.roa
File: SmJ28UO9aWZvfimXSgtvJYUNMJc.roa (raw, json)
Hash identifier: rQIeEdT1vCtNfvAOgOkPryI8JrGmArisoWiQmN6uH+g=
Subject key identifier: 4A:62:76:F1:43:BD:69:66:6F:7E:29:97:4A:0B:6F:25:85:0D:30:97
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0ACA
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/SmJ28UO9aWZvfimXSgtvJYUNMJc.roa
Signing time: Wed 04 Nov 2020 08:17:56 +0000
ROA not before: Wed 04 Nov 2020 08:17:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 103.136.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2762 (0xaca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Nov 4 08:17:56 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4A6276F143BD69666F7E29974A0B6F25850D3097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:19:13:b8:ef:d2:64:0b:ce:13:b3:65:0c:08:
f5:aa:89:5b:72:df:7d:08:f0:87:66:63:54:ab:3e:
eb:97:71:6a:15:e7:11:05:bf:9c:69:b6:1a:63:8e:
f6:fe:93:a6:47:bb:c8:48:9a:87:fc:a6:3e:b6:18:
3d:2f:87:69:61:5d:20:69:db:28:f3:85:a4:db:76:
ea:69:08:26:ea:f5:19:ea:50:bc:a4:66:cb:84:94:
b4:4f:de:62:b1:63:94:90:58:6e:7b:97:eb:8e:0d:
74:31:c8:ee:07:10:ae:e6:38:82:8a:60:fb:e3:52:
2e:30:88:7f:f3:64:db:3d:06:95:e3:ec:61:1e:89:
d1:bc:ed:44:f5:79:cf:03:44:ea:cd:32:fc:e8:99:
7e:a8:72:6c:04:1e:45:16:ad:5e:5c:af:7a:a8:7c:
52:26:1d:ae:7c:67:f1:0f:d2:46:e5:f5:50:cb:02:
06:ee:49:cd:85:32:d5:0f:d0:4a:3d:af:cd:e4:b0:
41:55:22:16:9e:b2:7f:f4:cc:22:c5:0b:e6:fb:8a:
1b:9a:46:39:89:36:00:21:61:1e:46:a2:1c:66:28:
26:d2:ce:0f:bd:d7:28:bd:54:68:95:33:9d:5d:78:
bf:e1:63:dd:26:5d:25:6e:77:89:e0:95:e9:c8:62:
58:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:62:76:F1:43:BD:69:66:6F:7E:29:97:4A:0B:6F:25:85:0D:30:97
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/SmJ28UO9aWZvfimXSgtvJYUNMJc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.61.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:00:f3:0b:1e:63:bd:d5:54:1b:f5:4b:10:2d:68:9e:96:44:
e5:78:39:a8:5e:b8:c2:76:96:cb:0d:71:89:8f:33:89:ea:36:
4a:c6:1f:1b:2a:58:ca:5c:73:e2:9d:c7:5b:c8:dc:af:79:df:
90:08:7d:39:73:92:4e:d3:8c:54:13:75:1f:10:ba:e6:bd:d1:
ce:5f:5c:e9:9c:37:28:0f:3a:09:69:c8:f2:d4:02:18:ed:19:
fd:16:aa:10:88:b6:47:8a:b6:c9:5f:27:6c:49:27:70:79:e4:
3d:4d:bb:95:b4:52:bc:6c:4d:73:60:91:1d:2a:68:17:b0:e2:
1f:78:3d:1f:bf:fe:6b:e3:8d:80:09:b0:8a:13:79:7d:10:34:
84:a0:23:a0:d1:41:ca:dd:6c:d6:54:4b:2a:19:d7:4b:af:7c:
16:fe:54:ce:9a:80:53:38:a3:20:97:b6:6b:ed:8b:4e:13:9a:
22:a4:2c:c8:c8:89:24:e7:c5:16:2d:c9:3f:b2:2c:93:cc:af:
8e:d2:50:5b:bb:72:fd:e3:9d:4c:f2:c4:86:f9:28:7e:12:66:
81:e6:01:c1:b9:a3:55:f6:8e:b9:0a:c2:a8:2e:bc:03:1d:a8:
a3:04:d3:98:32:ac:7c:ee:ac:42:48:64:4f:6c:6b:63:28:e7:
38:1a:2c:c4
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCsowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG
MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMDExMDQw
ODE3NTZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDRBNjI3NkYxNDNCRDY5
NjY2RjdFMjk5NzRBMEI2RjI1ODUwRDMwOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzGRO479JkC84Ts2UMCPWqiVty330I8IdmY1SrPuuXcWoV5xEF
v5xpthpjjvb+k6ZHu8hImof8pj62GD0vh2lhXSBp2yjzhaTbduppCCbq9RnqULyk
ZsuElLRP3mKxY5SQWG57l+uODXQxyO4HEK7mOIKKYPvjUi4wiH/zZNs9BpXj7GEe
idG87UT1ec8DROrNMvzomX6ocmwEHkUWrV5cr3qofFImHa58Z/EP0kbl9VDLAgbu
Sc2FMtUP0Eo9r83ksEFVIhaesn/0zCLFC+b7ihuaRjmJNgAhYR5GohxmKCbSzg+9
1yi9VGiVM51deL/hY90mXSVud4nglenIYli/AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUSmJ28UO9aWZvfimXSgtvJYUNMJcwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75
mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ
RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL1NtSjI4VU85YVdadmZpbVhTZ3R2SllV
Tk1KYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniD0wDQYJ
KoZIhvcNAQELBQADggEBACwA8wseY73VVBv1SxAtaJ6WROV4OaheuMJ2lssNcYmP
M4nqNkrGHxsqWMpcc+Kdx1vI3K9535AIfTlzkk7TjFQTdR8Quua90c5fXOmcNygP
OglpyPLUAhjtGf0WqhCItkeKtslfJ2xJJ3B55D1Nu5W0UrxsTXNgkR0qaBew4h94
PR+//mvjjYAJsIoTeX0QNISgI6DRQcrdbNZUSyoZ10uvfBb+VM6agFM4oyCXtmvt
i04TmiKkLMjIiSTnxRYtyT+yLJPMr47SUFu7cv3jnUzyxIb5KH4SZoHmAcG5o1X2
jrkKwqguvAMdqKME05gyrHzurEJIZE9sa2Mo5zgaLMQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org