Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/M98VBXvNhhSD1zzU8JdwPrTn5MY.roa
File: M98VBXvNhhSD1zzU8JdwPrTn5MY.roa (raw, json)
Hash identifier: KgObSm7YYKojx8oaYQqXoY0rISzlY/dU09N2CRCfWVI=
Subject key identifier: 33:DF:15:05:7B:CD:86:14:83:D7:3C:D4:F0:97:70:3E:B4:E7:E4:C6
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 08D6
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/M98VBXvNhhSD1zzU8JdwPrTn5MY.roa
Signing time: Sun 07 Feb 2021 05:53:10 +0000
ROA not before: Sun 07 Feb 2021 05:53:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 103.122.148.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2262 (0x8d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 7 05:53:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=33DF15057BCD861483D73CD4F097703EB4E7E4C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9e:d5:1d:82:14:cd:47:d8:1d:38:ef:20:ed:
92:1c:d4:73:a2:22:8c:81:46:f8:f7:c8:b8:29:9a:
7a:9f:c4:08:5c:c1:37:56:82:b7:36:84:85:d4:f1:
05:7e:8e:1b:c5:0b:20:7b:ad:ff:25:7b:b8:4d:b7:
14:f8:76:5e:09:16:f4:bc:c0:d8:ff:32:7b:05:ed:
e7:99:1f:e6:ad:fa:66:5a:9a:f1:8e:40:33:7b:3a:
53:82:b4:ee:8c:d0:75:4a:be:27:27:42:b0:f0:6d:
bb:7b:08:44:b3:e7:97:77:8b:eb:db:3b:fa:f3:ac:
bb:79:a5:f7:07:c2:7c:d7:f0:1c:67:26:17:e9:bd:
ff:6b:22:d5:f2:42:a3:b6:ce:4f:31:9b:9a:ee:3b:
1a:24:45:1f:2a:02:8f:73:7c:b5:77:08:ca:86:c1:
96:7d:e0:5f:c7:80:89:34:be:f9:f2:f7:7c:e7:0a:
2a:3f:3a:ab:5f:ad:a7:4a:0d:b2:f3:ff:6b:26:5a:
3d:7c:7c:e5:c9:0c:cd:00:54:4f:40:99:e7:44:72:
c2:cc:a7:e4:be:ea:85:fb:fc:4f:04:a9:e7:7c:8b:
46:b8:63:7e:05:b7:3a:c3:ec:97:0c:85:ea:3b:77:
a4:0d:7c:5c:9f:6b:90:4a:a7:cb:9a:bd:d0:9a:b9:
16:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DF:15:05:7B:CD:86:14:83:D7:3C:D4:F0:97:70:3E:B4:E7:E4:C6
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/M98VBXvNhhSD1zzU8JdwPrTn5MY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.148.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:89:9f:68:dc:14:55:e8:93:74:65:d0:d2:45:44:70:9e:98:
d7:7b:54:5c:cb:99:96:bf:70:74:c9:23:4c:c5:38:cf:ae:1c:
9f:aa:68:ae:bd:9a:fb:1a:45:f0:04:62:56:62:21:47:c6:5f:
fe:2a:52:fc:e6:0d:42:a6:56:ad:18:c2:72:37:29:b6:6e:2c:
45:5a:a0:f6:02:f1:25:2b:c0:97:78:4c:11:c4:ac:4b:05:8c:
cf:05:f1:95:54:ee:21:8b:f3:2d:81:67:30:ba:00:84:53:f8:
e7:41:ef:0f:24:71:f1:d0:cf:15:71:08:0d:af:bb:90:ee:3a:
30:44:83:2c:d5:9e:25:0f:25:b2:54:fc:fa:80:83:26:2d:68:
a9:5a:59:3d:97:ba:a8:00:88:42:5e:fc:07:bd:b6:13:0c:45:
a8:18:55:1f:d5:97:3a:d2:cc:34:f5:6c:bb:6c:61:72:0b:04:
01:36:d4:8e:ab:01:aa:27:2f:2a:ff:78:aa:73:bd:e1:10:6d:
78:3f:89:e7:26:a3:ad:89:e8:47:fa:16:0b:bc:2e:97:60:08:
61:e6:97:28:ff:69:15:57:19:13:83:16:1d:74:42:f4:f1:01:
2d:2e:9b:f0:a8:c1:e0:7e:a5:52:e1:ed:eb:e0:96:0b:10:2b:
6f:82:b1:55
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCNYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMTAyMDcw
NTUzMTBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDMzREYxNTA1N0JDRDg2
MTQ4M0Q3M0NENEYwOTc3MDNFQjRFN0U0QzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTntUdghTNR9gdOO8g7ZIc1HOiIoyBRvj3yLgpmnqfxAhcwTdW
grc2hIXU8QV+jhvFCyB7rf8le7hNtxT4dl4JFvS8wNj/MnsF7eeZH+at+mZamvGO
QDN7OlOCtO6M0HVKvicnQrDwbbt7CESz55d3i+vbO/rzrLt5pfcHwnzX8BxnJhfp
vf9rItXyQqO2zk8xm5ruOxokRR8qAo9zfLV3CMqGwZZ94F/HgIk0vvny93znCio/
OqtfradKDbLz/2smWj18fOXJDM0AVE9AmedEcsLMp+S+6oX7/E8Eqed8i0a4Y34F
tzrD7JcMheo7d6QNfFyfa5BKp8uavdCauRZDAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUM98VBXvNhhSD1zzU8JdwPrTn5MYwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL005OFZCWHZOaGhTRDF6elU4SmR3UHJU
bjVNWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnepQwDQYJ
KoZIhvcNAQELBQADggEBAGyJn2jcFFXok3Rl0NJFRHCemNd7VFzLmZa/cHTJI0zF
OM+uHJ+qaK69mvsaRfAEYlZiIUfGX/4qUvzmDUKmVq0YwnI3KbZuLEVaoPYC8SUr
wJd4TBHErEsFjM8F8ZVU7iGL8y2BZzC6AIRT+OdB7w8kcfHQzxVxCA2vu5DuOjBE
gyzVniUPJbJU/PqAgyYtaKlaWT2XuqgAiEJe/Ae9thMMRagYVR/VlzrSzDT1bLts
YXILBAE21I6rAaonLyr/eKpzveEQbXg/iecmo62J6Ef6Fgu8LpdgCGHmlyj/aRVX
GRODFh10QvTxAS0um/CoweB+pVLh7evglgsQK2+CsVU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org