Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/WhVa--n7-Iy5acF0fvm-DO0wxWE.roa
File: WhVa--n7-Iy5acF0fvm-DO0wxWE.roa (raw, json)
Hash identifier: Y7+P/m3aJyvpMMkWEUUPGt/TyxNWE98dcLOqwdRM2NE=
Subject key identifier: 5A:15:5A:FB:E9:FB:F8:8C:B9:69:C1:74:7E:F9:BE:0C:ED:30:C5:61
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C36
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/WhVa--n7-Iy5acF0fvm-DO0wxWE.roa
Signing time: Mon 15 Jan 2024 21:08:33 +0000
ROA not before: Mon 15 Jan 2024 21:08:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 103.36.116.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3126 (0xc36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:08:33 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5A155AFBE9FBF88CB969C1747EF9BE0CED30C561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f6:43:46:1b:98:64:fa:17:81:01:7d:e7:1f:
a1:83:fc:ef:69:92:be:4b:79:79:50:37:d1:74:b3:
b1:84:99:3f:1e:1d:d5:24:1a:4c:d0:00:f7:08:78:
f8:ef:bd:49:40:e1:21:2d:11:92:d1:d6:d2:f6:0e:
8a:df:d7:e5:88:7e:ed:d6:12:e9:47:5c:16:7a:5f:
6d:b1:79:a3:f5:c9:9a:ab:84:f3:a8:9f:90:86:62:
69:bb:b1:57:9a:65:09:02:6a:11:3b:5c:1b:ab:a1:
c1:c1:9f:c8:39:42:2d:1a:e3:48:25:d6:4e:45:98:
63:0a:88:11:6d:53:41:da:01:81:d5:ae:f5:00:68:
9f:77:4f:9e:85:d3:d9:0a:01:75:99:d8:73:74:5e:
3e:72:19:8b:e3:bb:ce:63:fb:54:ca:9b:5d:85:ff:
80:0a:69:f3:78:ab:5e:b0:d1:9e:b5:36:b7:44:4c:
1f:f0:38:5a:ff:a3:99:08:32:ca:0a:1f:c5:f4:37:
fe:13:fc:39:6d:f6:26:9b:0f:ee:89:fd:7c:0b:b4:
6a:03:19:c8:fb:88:a0:79:f3:cb:28:cd:d3:25:5a:
a5:3c:d2:ec:24:a2:23:25:75:a1:4b:c6:d8:da:0e:
86:ac:29:75:32:03:86:f0:e7:76:90:39:c3:d2:d5:
c3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:15:5A:FB:E9:FB:F8:8C:B9:69:C1:74:7E:F9:BE:0C:ED:30:C5:61
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/WhVa--n7-Iy5acF0fvm-DO0wxWE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.36.116.0/22
Signature Algorithm: sha256WithRSAEncryption
72:a3:b0:de:11:e6:ef:01:81:41:2a:0a:3a:ab:cb:c9:2e:77:
2e:c8:1d:d5:cd:b9:be:22:a2:86:5d:5d:93:e8:c0:30:3d:25:
56:b5:bc:8e:9f:e4:7c:e6:4a:e9:31:30:a4:bb:be:70:bd:5a:
38:e7:dc:80:17:25:a2:49:19:61:be:a5:a2:23:83:fc:40:e4:
42:99:f2:c8:f2:48:c2:9e:b5:b7:62:d5:89:44:5f:a4:37:30:
30:6b:ac:7d:5a:d3:08:f7:e4:9f:e9:30:b7:49:6b:14:c0:79:
dd:28:b0:a1:c9:97:8a:5c:ae:8d:ee:2d:90:ca:cf:0b:b8:a1:
e8:34:5a:0c:e4:6c:ad:33:37:f7:41:ea:26:da:a8:1b:a9:e1:
30:1d:b3:cb:9b:cd:a6:84:16:7c:07:1f:0a:5c:8d:e7:65:bd:
48:28:d3:cc:ea:6b:e7:96:65:f3:af:c5:d4:a4:78:4c:32:2c:
7f:7d:95:8a:65:70:d7:2e:a3:73:41:f4:40:91:d3:7d:d0:c6:
47:35:93:26:13:16:d0:4f:9a:54:01:24:1c:41:ea:e2:f9:29:
79:ab:bd:3c:eb:3d:2e:e8:ae:21:af:fd:90:1f:89:1b:39:09:
7b:00:bd:b5:23:79:90:92:f5:a2:86:43:b2:3c:4f:ef:75:8d:
38:1d:16:ef
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDDYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy
MTA4MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVBMTU1QUZCRTlGQkY4
OENCOTY5QzE3NDdFRjlCRTBDRUQzMEM1NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDS9kNGG5hk+heBAX3nH6GD/O9pkr5LeXlQN9F0s7GEmT8eHdUk
GkzQAPcIePjvvUlA4SEtEZLR1tL2Dorf1+WIfu3WEulHXBZ6X22xeaP1yZqrhPOo
n5CGYmm7sVeaZQkCahE7XBurocHBn8g5Qi0a40gl1k5FmGMKiBFtU0HaAYHVrvUA
aJ93T56F09kKAXWZ2HN0Xj5yGYvju85j+1TKm12F/4AKafN4q16w0Z61NrdETB/w
OFr/o5kIMsoKH8X0N/4T/Dlt9iabD+6J/XwLtGoDGcj7iKB588sozdMlWqU80uwk
oiMldaFLxtjaDoasKXUyA4bw53aQOcPS1cNFAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUWhVa++n7+Iy5acF0fvm+DO0wxWEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1doVmEtLW43LUl5NWFjRjBmdm0tRE8w
d3hXRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnJHQwDQYJ
KoZIhvcNAQELBQADggEBAHKjsN4R5u8BgUEqCjqry8kudy7IHdXNub4iooZdXZPo
wDA9JVa1vI6f5HzmSukxMKS7vnC9Wjjn3IAXJaJJGWG+paIjg/xA5EKZ8sjySMKe
tbdi1YlEX6Q3MDBrrH1a0wj35J/pMLdJaxTAed0osKHJl4pcro3uLZDKzwu4oeg0
WgzkbK0zN/dB6ibaqBup4TAds8ubzaaEFnwHHwpcjedlvUgo08zqa+eWZfOvxdSk
eEwyLH99lYplcNcuo3NB9ECR033Qxkc1kyYTFtBPmlQBJBxB6uL5KXmrvTzrPS7o
riGv/ZAfiRs5CXsAvbUjeZCS9aKGQ7I8T+91jTgdFu8=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:39 2025 by rpki-client