Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/s7pVo3KBJpCoJmEEwpT2PYzWuvA.roa
File: s7pVo3KBJpCoJmEEwpT2PYzWuvA.roa (raw, json)
Hash identifier: bqBH5QXsFSl+iTQDP/8DzeTPUwvqq2ynGdp8s6RhOl8=
Subject key identifier: B3:BA:55:A3:72:81:26:90:A8:26:61:04:C2:94:F6:3D:8C:D6:BA:F0
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 0ACE
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/s7pVo3KBJpCoJmEEwpT2PYzWuvA.roa
Signing time: Sun 07 Feb 2021 12:38:10 +0000
ROA not before: Sun 07 Feb 2021 12:38:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 64271
IP address blocks: 103.137.246.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2766 (0xace)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Feb 7 12:38:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B3BA55A372812690A8266104C294F63D8CD6BAF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d0:6d:bf:06:9b:dc:49:be:ab:85:1d:cb:7f:
ee:6e:be:97:bc:b9:e9:82:f5:ad:3e:fd:fc:ec:37:
54:72:e1:8f:0a:d4:7b:e2:fa:7b:bb:68:fe:3a:33:
31:2e:b5:24:77:17:65:01:cc:f8:b4:61:2b:56:92:
7b:b8:4f:31:4e:15:c1:65:fb:ea:7c:93:03:48:ca:
91:d7:04:f8:0c:53:97:d8:7e:4e:64:51:6f:f0:45:
a8:45:27:cc:b7:3c:6f:4f:e1:5a:9e:f9:cf:c3:9e:
e2:00:51:4f:e4:f4:c1:91:a8:99:ff:e9:cd:31:e9:
37:a9:5a:f1:63:aa:64:bb:00:d6:39:f4:b7:3b:a3:
84:8e:d3:97:d5:c7:52:90:c2:d8:7b:38:bc:55:32:
d3:bd:e6:15:51:0b:a5:0d:df:c4:ff:8a:2b:43:c8:
eb:65:60:52:36:a3:93:4e:51:48:9a:66:17:ce:f4:
2e:e7:8e:e0:05:d6:38:6e:0b:34:29:9d:57:23:8c:
91:49:1c:52:b1:7c:e4:52:5a:6e:6e:ee:c8:42:b2:
ec:ff:e5:8b:95:44:bd:5e:c1:be:98:a5:89:08:ba:
76:03:b2:c8:0f:ba:ea:19:08:3f:ce:13:fa:36:e4:
75:5c:da:31:9f:e6:5a:85:d4:3e:84:41:8e:27:98:
5a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BA:55:A3:72:81:26:90:A8:26:61:04:C2:94:F6:3D:8C:D6:BA:F0
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/s7pVo3KBJpCoJmEEwpT2PYzWuvA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.246.0/23
Signature Algorithm: sha256WithRSAEncryption
04:89:d7:dc:00:af:f3:83:76:77:ed:53:0b:3e:8b:c0:57:12:
71:2a:ab:df:19:22:c7:29:e5:81:80:59:5c:3b:2c:dc:3c:2e:
79:65:b7:4f:3c:7b:ea:45:40:11:da:af:4f:31:94:c0:ca:cd:
06:f3:d3:f4:e2:d3:a8:f3:a3:bb:e1:20:11:0d:31:f3:80:49:
91:dc:60:f4:05:50:be:95:9c:5c:fb:97:01:9d:2b:ac:38:b0:
0c:ba:b2:26:3a:52:91:80:a1:6d:d7:bb:be:6d:2d:41:a8:b6:
81:ea:0d:42:76:25:32:ae:5d:d3:41:c7:77:4d:11:22:4b:f3:
15:f5:8c:04:e3:a2:71:e1:df:ee:f3:f9:e7:db:54:7f:8c:36:
1e:42:90:f9:c4:d4:1b:bd:46:6d:62:99:12:2e:ef:8b:14:7d:
85:ef:ca:d9:3b:97:85:93:df:cf:7a:33:41:5f:1f:af:3e:e2:
d5:1f:d9:8c:4a:fa:2e:1f:88:01:c3:1f:bd:36:10:6d:00:fc:
ed:62:7a:11:d6:eb:7e:c1:cb:d6:85:d2:15:0b:50:ec:c9:9f:
b8:d3:1c:c9:16:98:52:9a:bf:19:cc:51:30:88:5c:2d:b5:b8:
90:f6:dd:a1:8a:4c:0f:90:6c:31:8f:b0:b9:76:5e:1c:ea:84:
df:24:8f:b8
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCs4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTY1
NDk1RThEMzI3RTRGNjJENUExNjQzOEYwODBFNjA4QTM0RDBEMzAeFw0yMTAyMDcx
MjM4MTBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEIzQkE1NUEzNzI4MTI2
OTBBODI2NjEwNEMyOTRGNjNEOENENkJBRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+0G2/BpvcSb6rhR3Lf+5uvpe8uemC9a0+/fzsN1Ry4Y8K1Hvi
+nu7aP46MzEutSR3F2UBzPi0YStWknu4TzFOFcFl++p8kwNIypHXBPgMU5fYfk5k
UW/wRahFJ8y3PG9P4Vqe+c/DnuIAUU/k9MGRqJn/6c0x6TepWvFjqmS7ANY59Lc7
o4SO05fVx1KQwth7OLxVMtO95hVRC6UN38T/iitDyOtlYFI2o5NOUUiaZhfO9C7n
juAF1jhuCzQpnVcjjJFJHFKxfORSWm5u7shCsuz/5YuVRL1ewb6YpYkIunYDssgP
uuoZCD/OE/o25HVc2jGf5lqF1D6EQY4nmFq7AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUs7pVo3KBJpCoJmEEwpT2PYzWuvAwHwYDVR0jBBgwFoAUFlSV6NMn5PYtWhZD
jwgOYIo00NMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0FNRVNP
VUwvRmxTVjZOTW41UFl0V2haRGp3Z09ZSW8wME5NLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9GbFNWNk5NbjVQWXRXaFpEandnT1lJbzAwTk0uY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU1FU09VTC9zN3BWbzNLQkpwQ29K
bUVFd3BUMlBZeld1dkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQBZ4n2MA0GCSqGSIb3DQEBCwUAA4IBAQAEidfcAK/zg3Z37VMLPovAVxJxKqvf
GSLHKeWBgFlcOyzcPC55ZbdPPHvqRUAR2q9PMZTAys0G89P04tOo86O74SARDTHz
gEmR3GD0BVC+lZxc+5cBnSusOLAMurImOlKRgKFt17u+bS1BqLaB6g1CdiUyrl3T
Qcd3TREiS/MV9YwE46Jx4d/u8/nn21R/jDYeQpD5xNQbvUZtYpkSLu+LFH2F78rZ
O5eFk9/PejNBXx+vPuLVH9mMSvouH4gBwx+9NhBtAPztYnoR1ut+wcvWhdIVC1Ds
yZ+40xzJFphSmr8ZzFEwiFwttbiQ9t2hikwPkGwxj7C5dl4c6oTfJI+4
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org