Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/jU_K_PCrGkF6vRpsY1Wb3QBFj8E.roa
File: jU_K_PCrGkF6vRpsY1Wb3QBFj8E.roa (raw, json)
Hash identifier: gKgsTUGIqde2vgK+UhxTBwM/sMSITy61BIBIXZw1TL4=
Subject key identifier: 8D:4F:CA:FC:F0:AB:1A:41:7A:BD:1A:6C:63:55:9B:DD:00:45:8F:C1
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0ACC
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/jU_K_PCrGkF6vRpsY1Wb3QBFj8E.roa
Signing time: Wed 04 Nov 2020 08:18:12 +0000
ROA not before: Wed 04 Nov 2020 08:18:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 103.136.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2764 (0xacc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Nov 4 08:18:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8D4FCAFCF0AB1A417ABD1A6C63559BDD00458FC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:70:7f:61:ff:63:15:6f:71:d6:79:72:ee:38:
70:f9:97:5a:a9:11:70:0f:85:0d:89:b9:19:18:ea:
a8:f7:d5:ba:67:15:07:4d:a5:2b:79:68:79:88:d8:
69:ab:e0:fb:c9:60:dc:09:12:42:74:6b:39:bb:21:
0c:6b:ca:c8:f9:a7:c4:4e:55:2e:98:51:84:57:1d:
a6:01:88:43:07:34:53:46:5e:5c:36:52:e8:95:5b:
cc:ec:f0:d7:6c:3f:ae:5e:0d:38:a5:62:e6:f6:51:
07:3e:05:13:96:97:9c:7c:30:b3:7b:d7:4d:6e:f4:
ed:64:fd:ec:fe:3d:be:af:4e:b6:bf:97:2a:95:3a:
2b:d4:bb:a4:97:43:cd:51:34:fd:fb:8c:87:7c:82:
fa:e9:cd:5b:a1:8b:45:6f:36:a4:02:75:ae:c0:7d:
15:6b:05:32:e5:d7:fa:05:04:ba:25:1b:5a:26:f1:
60:15:9c:46:25:cd:43:97:27:53:d6:7b:5b:1a:61:
19:49:c8:54:ba:a6:b8:f9:83:67:53:6c:55:29:dd:
a5:0a:0d:16:86:e9:82:6a:32:9c:ab:a7:74:2a:88:
06:ce:5b:05:6f:c2:2f:7d:d1:cf:fa:c3:d4:3b:19:
5d:02:2e:7b:33:50:cd:d1:5c:92:61:05:a8:9a:cb:
e4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:4F:CA:FC:F0:AB:1A:41:7A:BD:1A:6C:63:55:9B:DD:00:45:8F:C1
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/jU_K_PCrGkF6vRpsY1Wb3QBFj8E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:3b:0b:54:8c:39:c7:82:a9:a1:1f:5a:66:f9:d8:e2:43:99:
42:d4:db:4c:29:bd:a3:6b:71:7f:23:7c:1d:f5:fc:9d:76:79:
28:b2:41:e1:61:f8:c4:3e:7c:e2:73:e1:41:30:99:eb:80:7a:
61:b8:80:1b:b7:0d:4d:23:c7:97:3e:fa:98:5d:0d:6a:a6:2d:
23:f5:29:74:26:6e:0d:ae:09:58:70:ba:24:f8:35:cf:3f:bd:
46:bd:c0:87:10:98:db:f9:55:6b:5e:bb:f1:cc:c0:c3:d1:33:
dc:d7:30:86:4e:3a:81:c9:93:8e:87:52:61:0c:d0:24:ee:78:
5e:5c:6a:a0:02:69:10:3a:0e:d7:f3:28:25:72:ab:4e:83:f3:
90:e9:f6:c6:21:75:8a:05:38:8c:9c:13:c1:5f:ad:5d:08:b4:
94:16:89:ba:cd:b3:4f:4e:82:c8:41:2b:b1:de:92:9d:a2:6a:
b4:49:38:22:51:92:3f:b1:28:2f:5b:af:0a:52:28:fe:68:d2:
b7:d6:ff:a1:ec:eb:7e:ff:01:4b:77:3f:9e:42:43:68:d7:5e:
de:ed:32:51:01:bd:0a:a2:f9:7c:67:51:2b:58:3c:ce:94:42:
29:72:f6:82:34:a9:55:be:1e:cc:55:be:ea:32:fd:4a:96:7c:
ab:46:9b:94
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCswwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG
MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMDExMDQw
ODE4MTJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDhENEZDQUZDRjBBQjFB
NDE3QUJEMUE2QzYzNTU5QkREMDA0NThGQzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5cH9h/2MVb3HWeXLuOHD5l1qpEXAPhQ2JuRkY6qj31bpnFQdN
pSt5aHmI2Gmr4PvJYNwJEkJ0azm7IQxrysj5p8ROVS6YUYRXHaYBiEMHNFNGXlw2
UuiVW8zs8NdsP65eDTilYub2UQc+BROWl5x8MLN7101u9O1k/ez+Pb6vTra/lyqV
OivUu6SXQ81RNP37jId8gvrpzVuhi0VvNqQCda7AfRVrBTLl1/oFBLolG1om8WAV
nEYlzUOXJ1PWe1saYRlJyFS6prj5g2dTbFUp3aUKDRaG6YJqMpyrp3QqiAbOWwVv
wi990c/6w9Q7GV0CLnszUM3RXJJhBaiay+T3AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUjU/K/PCrGkF6vRpsY1Wb3QBFj8EwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75
mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ
RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL2pVX0tfUENyR2tGNnZScHNZMVdiM1FC
Rmo4RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniDwwDQYJ
KoZIhvcNAQELBQADggEBALo7C1SMOceCqaEfWmb52OJDmULU20wpvaNrcX8jfB31
/J12eSiyQeFh+MQ+fOJz4UEwmeuAemG4gBu3DU0jx5c++phdDWqmLSP1KXQmbg2u
CVhwuiT4Nc8/vUa9wIcQmNv5VWteu/HMwMPRM9zXMIZOOoHJk46HUmEM0CTueF5c
aqACaRA6DtfzKCVyq06D85Dp9sYhdYoFOIycE8FfrV0ItJQWibrNs09OgshBK7He
kp2iarRJOCJRkj+xKC9brwpSKP5o0rfW/6Hs637/AUt3P55CQ2jXXt7tMlEBvQqi
+XxnUStYPM6UQily9oI0qVW+HsxVvuoy/UqWfKtGm5Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org