Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/nEqMpuzuc7GbJYRACSL0iBLwfms.roa
File: nEqMpuzuc7GbJYRACSL0iBLwfms.roa (raw, json)
Hash identifier: lGmS90deHOmeP2Op8m8krX7qZRBfgKNbaqGyYjNrDsM=
Subject key identifier: 9C:4A:8C:A6:EC:EE:73:B1:9B:25:84:40:09:22:F4:88:12:F0:7E:6B
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0D05
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/nEqMpuzuc7GbJYRACSL0iBLwfms.roa
Signing time: Thu 15 Sep 2022 02:37:08 +0000
ROA not before: Thu 15 Sep 2022 02:37:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131641
IP address blocks: 103.136.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3333 (0xd05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 15 02:37:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9C4A8CA6ECEE73B19B2584400922F48812F07E6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:69:5c:e4:85:a0:aa:5b:9a:8f:b1:81:4a:43:
e0:b2:9d:c2:be:c0:ae:14:32:53:e4:c9:0c:a7:71:
7d:14:95:98:43:40:a1:e9:2b:52:8b:23:37:8e:1c:
78:23:81:50:26:5a:10:af:dd:fc:60:a3:10:90:aa:
7e:e4:3d:a8:2d:4d:1f:9e:f1:28:57:28:73:4b:05:
f2:fc:8a:b6:af:59:83:1c:86:1e:c3:69:d3:af:4c:
51:47:ff:61:36:6b:b2:62:da:17:ae:77:21:dc:02:
4a:bf:13:19:ae:00:cc:ec:98:6f:15:3b:53:a9:ca:
3d:0e:86:a6:87:b5:4c:f5:c8:be:13:b3:00:41:31:
47:70:68:ec:51:e3:92:2e:0a:43:63:46:6f:54:c6:
66:e6:d3:a8:33:c1:81:7d:9d:32:29:54:cf:a7:e2:
12:68:1a:95:f2:19:bb:35:27:24:8d:b7:13:60:df:
35:4d:53:c0:33:23:a4:eb:82:9a:96:c8:7a:cb:bb:
12:d8:30:13:37:fb:29:f5:cf:65:bc:e1:5c:4b:10:
b5:2b:95:48:69:25:e4:7d:c5:1a:91:1c:45:43:40:
65:35:2a:42:60:9c:69:e1:bd:b0:5b:0f:9c:0e:62:
0f:ab:b1:9e:22:16:ec:b8:a2:7e:8b:e5:43:12:8c:
16:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:4A:8C:A6:EC:EE:73:B1:9B:25:84:40:09:22:F4:88:12:F0:7E:6B
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/nEqMpuzuc7GbJYRACSL0iBLwfms.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.61.0/24
Signature Algorithm: sha256WithRSAEncryption
01:b8:ca:f9:95:04:95:d5:15:9f:ae:25:5f:42:0b:c6:4b:04:
98:04:4c:2d:ea:6e:96:c3:9d:0f:34:25:30:88:3b:fa:68:97:
a7:8c:e8:af:b8:01:01:6a:b1:76:32:4e:17:d3:d4:ce:ba:e9:
ee:4b:f8:ec:52:56:32:da:a5:47:3f:8a:7e:a6:57:f8:78:83:
a6:d4:a6:b4:98:8d:37:87:d5:67:00:12:74:95:2f:06:99:00:
07:de:49:53:30:d9:c2:44:f8:80:00:bc:d7:a7:4f:a5:f6:6e:
a0:ee:98:18:84:ca:7f:bb:80:0e:07:44:6a:99:10:06:ea:1a:
50:f9:93:12:02:bf:9b:e0:00:1a:e3:ec:45:b6:89:ab:0b:a0:
28:1c:46:d4:e3:29:7b:67:d1:08:9a:ef:01:2b:1d:cb:1d:20:
15:37:b7:bc:67:20:37:ec:a1:d3:76:b6:bf:e9:11:9f:61:e8:
73:31:0a:42:03:6b:16:7f:e4:08:1d:b0:56:28:8b:b9:c0:6f:
73:d6:91:20:42:2f:6b:d5:3f:be:78:75:91:c4:47:ed:92:d5:
57:1f:70:78:9a:61:3e:01:ac:74:12:c9:ae:a2:d4:c1:a3:06:
6d:ac:fa:94:6b:22:71:a2:b9:da:dd:24:04:72:a1:2b:9c:f1:
fe:d7:39:d2
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDQUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG
MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMjA5MTUw
MjM3MDhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDlDNEE4Q0E2RUNFRTcz
QjE5QjI1ODQ0MDA5MjJGNDg4MTJGMDdFNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5aVzkhaCqW5qPsYFKQ+CyncK+wK4UMlPkyQyncX0UlZhDQKHp
K1KLIzeOHHgjgVAmWhCv3fxgoxCQqn7kPagtTR+e8ShXKHNLBfL8iravWYMchh7D
adOvTFFH/2E2a7Ji2heudyHcAkq/ExmuAMzsmG8VO1Opyj0OhqaHtUz1yL4TswBB
MUdwaOxR45IuCkNjRm9Uxmbm06gzwYF9nTIpVM+n4hJoGpXyGbs1JySNtxNg3zVN
U8AzI6TrgpqWyHrLuxLYMBM3+yn1z2W84VxLELUrlUhpJeR9xRqRHEVDQGU1KkJg
nGnhvbBbD5wOYg+rsZ4iFuy4on6L5UMSjBZbAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUnEqMpuzuc7GbJYRACSL0iBLwfmswHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75
mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ
RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL25FcU1wdXp1YzdHYkpZUkFDU0wwaUJM
d2Ztcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniD0wDQYJ
KoZIhvcNAQELBQADggEBAAG4yvmVBJXVFZ+uJV9CC8ZLBJgETC3qbpbDnQ80JTCI
O/pol6eM6K+4AQFqsXYyThfT1M666e5L+OxSVjLapUc/in6mV/h4g6bUprSYjTeH
1WcAEnSVLwaZAAfeSVMw2cJE+IAAvNenT6X2bqDumBiEyn+7gA4HRGqZEAbqGlD5
kxICv5vgABrj7EW2iasLoCgcRtTjKXtn0Qia7wErHcsdIBU3t7xnIDfsodN2tr/p
EZ9h6HMxCkIDaxZ/5AgdsFYoi7nAb3PWkSBCL2vVP754dZHER+2S1VcfcHiaYT4B
rHQSya6i1MGjBm2s+pRrInGiudrdJARyoSuc8f7XOdI=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:41 2025 by rpki-client