Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ETIME/NHLKwrf4pzATYxc2nbY3vY3FSBk.roa
File: NHLKwrf4pzATYxc2nbY3vY3FSBk.roa (raw, json)
Hash identifier: yBGfvvjiPTDH6QSTU4Bl92cxvXImC9W+KHv7EA/Ymoc=
Subject key identifier: 34:72:CA:C2:B7:F8:A7:30:13:63:17:36:9D:B6:37:BD:8D:C5:48:19
Certificate issuer: /CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F
Certificate serial: 01C5
Authority key identifier: E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/NHLKwrf4pzATYxc2nbY3vY3FSBk.roa
Signing time: Thu 15 Sep 2022 02:34:54 +0000
ROA not before: Thu 15 Sep 2022 02:34:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 134823
IP address blocks: 103.158.228.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 453 (0x1c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F
Validity
Not Before: Sep 15 02:34:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3472CAC2B7F8A730136317369DB637BD8DC54819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d7:72:b3:ba:73:28:cc:c0:e0:42:56:f5:3f:
c8:94:cf:2d:2d:68:61:0c:c1:a3:08:4c:be:4c:18:
10:69:6d:58:3b:90:07:34:72:c6:a9:99:7b:6a:66:
5c:06:51:77:e2:2a:93:eb:29:58:b1:84:3e:7d:6f:
13:88:d6:71:01:5a:9f:18:95:48:8a:55:bc:e1:1f:
9f:bc:e5:d3:37:ba:b0:c2:01:b0:80:03:01:34:b1:
62:a4:f6:6e:f2:46:5f:96:8a:d6:b7:b0:6e:31:76:
f0:2e:1d:d9:d2:2b:65:b5:7d:02:4f:52:d6:4d:f9:
c1:fb:70:9a:65:cb:df:e3:55:5f:85:d7:61:ce:ca:
df:3d:7d:5f:e4:01:63:bd:e0:18:21:52:04:5c:32:
e5:c5:9f:1f:88:17:38:9b:6b:9a:d0:be:12:79:9a:
a8:66:f6:f4:6b:97:c7:5d:53:37:43:10:f8:87:2b:
51:19:3b:00:12:b7:dc:e2:84:d8:5e:6d:67:1d:38:
b2:22:9f:03:ea:e4:57:66:2c:1e:1e:53:bd:ed:9b:
9f:e0:0b:e1:e5:61:42:99:3d:4e:04:41:e9:1c:c0:
fe:05:ad:b9:e4:83:8c:b7:ba:38:6e:54:61:1d:66:
e1:e3:67:08:54:d8:83:a7:f1:1b:4c:cc:ed:86:fa:
ce:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:72:CA:C2:B7:F8:A7:30:13:63:17:36:9D:B6:37:BD:8D:C5:48:19
X509v3 Authority Key Identifier:
keyid:E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/NHLKwrf4pzATYxc2nbY3vY3FSBk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.228.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:fe:e6:74:e2:e1:a1:ce:0d:11:95:a0:ad:54:02:7e:e4:a8:
7a:6a:b4:e2:61:1d:f4:81:ed:1d:97:bc:b9:be:9c:cc:0a:40:
f7:54:c7:cb:10:f6:0c:b4:6d:7a:9d:b8:88:64:43:ca:ae:f6:
d3:58:89:ff:a4:7b:63:50:7c:ad:31:69:96:88:08:a5:1d:8e:
a3:9a:55:88:08:fa:fa:54:fd:6b:04:7f:a7:82:fb:df:1c:ad:
db:8b:8d:08:96:4d:c7:c5:4a:41:41:70:27:66:39:6e:c7:fa:
e0:a1:24:97:15:af:72:27:33:a0:86:d9:a2:a8:d1:02:77:57:
44:f2:00:3c:62:48:a6:35:b8:97:c3:c8:f6:9d:41:0f:8f:ac:
20:67:16:37:11:9c:b0:2c:b6:fc:06:77:a9:bc:de:bb:4d:82:
df:6d:9a:0f:15:d0:d5:b2:09:1b:00:c7:45:ec:b2:1c:7b:dc:
d5:2b:13:0b:ae:e9:1a:2d:77:ce:37:ac:05:ae:c1:ce:e9:ec:
3e:89:3f:bb:76:c5:06:cf:08:47:77:ea:34:07:c2:6f:d5:0f:
98:e6:43:38:53:e3:9f:ab:0d:7b:a0:a7:66:be:4a:0c:5a:d5:
76:cb:03:16:e9:dc:cb:84:45:05:12:ae:d3:19:d8:03:1b:c6:
4a:4d:d3:dd
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTBF
QTg4NUE3RTY5NzFDOTkzNDI3NzdFN0REREJBNjVEMEVCMTMxRjAeFw0yMjA5MTUw
MjM0NTRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDM0NzJDQUMyQjdGOEE3
MzAxMzYzMTczNjlEQjYzN0JEOERDNTQ4MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDG13KzunMozMDgQlb1P8iUzy0taGEMwaMITL5MGBBpbVg7kAc0
csapmXtqZlwGUXfiKpPrKVixhD59bxOI1nEBWp8YlUiKVbzhH5+85dM3urDCAbCA
AwE0sWKk9m7yRl+Wita3sG4xdvAuHdnSK2W1fQJPUtZN+cH7cJply9/jVV+F12HO
yt89fV/kAWO94BghUgRcMuXFnx+IFziba5rQvhJ5mqhm9vRrl8ddUzdDEPiHK1EZ
OwASt9zihNhebWcdOLIinwPq5FdmLB4eU73tm5/gC+HlYUKZPU4EQekcwP4Frbnk
g4y3ujhuVGEdZuHjZwhU2IOn8RtMzO2G+s6XAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUNHLKwrf4pzATYxc2nbY3vY3FSBkwHwYDVR0jBBgwFoAU4OqIWn5pccmTQnd+
fd26ZdDrEx8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVRJTUUv
NE9xSVduNXBjY21UUW5kLWZkMjZaZERyRXg4LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80T3FJV241cGNjbVRRbmQtZmQyNlpkRHJFeDguY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FVElNRS9OSExLd3JmNHB6QVRZeGMybmJZ
M3ZZM0ZTQmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ57k
MA0GCSqGSIb3DQEBCwUAA4IBAQB6/uZ04uGhzg0RlaCtVAJ+5Kh6arTiYR30ge0d
l7y5vpzMCkD3VMfLEPYMtG16nbiIZEPKrvbTWIn/pHtjUHytMWmWiAilHY6jmlWI
CPr6VP1rBH+ngvvfHK3bi40Ilk3HxUpBQXAnZjlux/rgoSSXFa9yJzOghtmiqNEC
d1dE8gA8YkimNbiXw8j2nUEPj6wgZxY3EZywLLb8BnepvN67TYLfbZoPFdDVsgkb
AMdF7LIce9zVKxMLrukaLXfON6wFrsHO6ew+iT+7dsUGzwhHd+o0B8Jv1Q+Y5kM4
U+Ofqw17oKdmvkoMWtV2ywMW6dzLhEUFEq7TGdgDG8ZKTdPd
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org