Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ETIME/qM5j-581p9fbhFmmHEn329mtGFk.roa
File: qM5j-581p9fbhFmmHEn329mtGFk.roa (raw, json)
Hash identifier: SRHlyrVniFI2iYroAQdyL97Pxf2A4/rrLWEwI3Fkkis=
Subject key identifier: A8:CE:63:FB:9F:35:A7:D7:DB:84:59:A6:1C:49:F7:DB:D9:AD:18:59
Certificate issuer: /CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F
Certificate serial: 3B
Authority key identifier: E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/qM5j-581p9fbhFmmHEn329mtGFk.roa
Signing time: Sun 07 Feb 2021 13:06:22 +0000
ROA not before: Sun 07 Feb 2021 13:06:22 +0000
ROA not after: Tue 23 Nov 2021 09:57:13 +0000
asID: 134823
IP address blocks: 103.158.228.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59 (0x3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F
Validity
Not Before: Feb 7 13:06:22 2021 GMT
Not After : Nov 23 09:57:13 2021 GMT
Subject: CN=A8CE63FB9F35A7D7DB8459A61C49F7DBD9AD1859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:65:d2:b0:ea:e6:3d:e7:86:ff:41:b6:88:85:
99:ba:19:8c:23:48:c5:ee:e5:d3:a6:f3:bf:54:2a:
1f:27:7d:cc:31:f4:14:75:bc:a9:44:c8:62:87:63:
00:55:6b:ec:47:dd:8d:8b:6b:eb:4b:39:99:c2:7a:
61:b6:ef:67:ba:69:5c:d6:67:b5:72:e6:9f:64:13:
0c:c7:19:1b:7a:48:db:d3:49:12:83:37:f6:df:bc:
ec:47:89:25:e1:b8:bc:40:30:96:ac:13:5f:76:9c:
93:ff:94:b1:45:de:64:a8:9b:b7:6e:6a:13:6f:fe:
56:64:3b:7d:0b:06:53:4b:c7:45:53:4d:7b:5e:e0:
54:65:1f:5c:a0:3b:cb:85:07:d0:5f:c9:b4:6e:96:
2f:c1:36:5d:f3:f4:e8:89:4a:d6:d7:d0:a0:dc:77:
4c:51:89:71:25:19:cb:ea:43:4f:08:49:97:f0:64:
5f:b6:3e:07:5b:b2:b3:41:f2:bd:3a:b7:64:60:2c:
65:48:f6:8b:0f:30:8d:ba:15:b5:7a:af:15:e2:cc:
04:38:ef:35:b2:75:98:72:f8:ec:3f:02:55:81:b4:
81:ad:a5:35:bd:1b:18:93:e2:5a:18:61:a3:34:04:
5b:6b:2a:13:e5:c9:7d:ad:c8:63:b6:3b:65:ac:59:
61:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:CE:63:FB:9F:35:A7:D7:DB:84:59:A6:1C:49:F7:DB:D9:AD:18:59
X509v3 Authority Key Identifier:
keyid:E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/qM5j-581p9fbhFmmHEn329mtGFk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.228.0/23
Signature Algorithm: sha256WithRSAEncryption
75:21:eb:af:6b:15:e1:54:f1:48:b4:a4:ae:2d:62:d5:29:88:
2c:b3:48:ea:9c:84:6a:bd:4d:93:aa:b6:d2:39:13:77:82:4d:
47:1a:cf:a3:21:97:73:7f:e2:58:39:b9:ff:ea:b8:ad:4b:6d:
a6:a1:a3:b9:dd:1a:4e:29:44:3e:fe:7e:e7:15:33:c9:85:fe:
ed:ca:1a:b0:0e:d6:bb:d9:bd:3d:7c:d6:f1:88:49:3b:f5:f7:
59:91:3e:ae:e0:6b:a0:61:60:a5:56:be:bd:19:ab:10:c1:f4:
32:62:71:88:cf:ce:a1:27:9b:25:fb:7f:9e:62:58:ed:4d:87:
26:65:99:fd:26:90:42:33:2e:47:48:07:43:3f:1a:53:57:19:
de:f5:20:ba:9b:8f:3c:90:71:06:aa:ba:e6:a0:2e:ab:9c:e8:
32:6b:e4:fb:3e:10:43:4f:c8:46:c8:a4:25:ee:cf:7c:cf:2c:
34:c8:d4:14:31:3c:27:46:66:2b:f0:f9:63:a0:bf:96:85:bd:
22:c4:b5:08:88:d9:10:19:d3:ac:0b:26:af:3c:bf:20:86:33:
56:bd:b5:49:c2:89:c3:15:91:b1:46:8f:d2:2e:88:68:75:d0:
cc:e9:1e:04:3c:3a:9a:22:6a:11:8f:28:32:d8:d3:e4:56:db:
5a:c3:22:38
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgIBOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFMEVB
ODg1QTdFNjk3MUM5OTM0Mjc3N0U3REREQkE2NUQwRUIxMzFGMB4XDTIxMDIwNzEz
MDYyMloXDTIxMTEyMzA5NTcxM1owMzExMC8GA1UEAxMoQThDRTYzRkI5RjM1QTdE
N0RCODQ1OUE2MUM0OUY3REJEOUFEMTg1OTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMhl0rDq5j3nhv9BtoiFmboZjCNIxe7l06bzv1QqHyd9zDH0FHW8
qUTIYodjAFVr7EfdjYtr60s5mcJ6YbbvZ7ppXNZntXLmn2QTDMcZG3pI29NJEoM3
9t+87EeJJeG4vEAwlqwTX3ack/+UsUXeZKibt25qE2/+VmQ7fQsGU0vHRVNNe17g
VGUfXKA7y4UH0F/JtG6WL8E2XfP06IlK1tfQoNx3TFGJcSUZy+pDTwhJl/BkX7Y+
B1uys0HyvTq3ZGAsZUj2iw8wjboVtXqvFeLMBDjvNbJ1mHL47D8CVYG0ga2lNb0b
GJPiWhhhozQEW2sqE+XJfa3IY7Y7ZaxZYe0CAwEAAaOCAewwggHoMB0GA1UdDgQW
BBSozmP7nzWn19uEWaYcSffb2a0YWTAfBgNVHSMEGDAWgBTg6ohafmlxyZNCd359
3bpl0OsTHzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO
oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FVElNRS80
T3FJV241cGNjbVRRbmQtZmQyNlpkRHJFeDguY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
LzRPcUlXbjVwY2NtVFFuZC1mZDI2WmREckV4OC5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VUSU1FL3FNNWotNTgxcDlmYmhGbW1IRW4z
MjltdEdGay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y
cmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnuQw
DQYJKoZIhvcNAQELBQADggEBAHUh669rFeFU8Ui0pK4tYtUpiCyzSOqchGq9TZOq
ttI5E3eCTUcaz6Mhl3N/4lg5uf/quK1Lbaaho7ndGk4pRD7+fucVM8mF/u3KGrAO
1rvZvT181vGISTv191mRPq7ga6BhYKVWvr0ZqxDB9DJicYjPzqEnmyX7f55iWO1N
hyZlmf0mkEIzLkdIB0M/GlNXGd71ILqbjzyQcQaquuagLquc6DJr5Ps+EENPyEbI
pCXuz3zPLDTI1BQxPCdGZivw+WOgv5aFvSLEtQiI2RAZ06wLJq88vyCGM1a9tUnC
icMVkbFGj9IuiGh10MzpHgQ8OpoiahGPKDLY0+RW21rDIjg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org