Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/xGzn5TcgFN3bUHkZhZaiswGTPE0.roa
File: xGzn5TcgFN3bUHkZhZaiswGTPE0.roa (raw, json)
Hash identifier: SkGzwDLCyBw12LKWEv20yZbvrRPr+CuOk+FWagBz7GI=
Subject key identifier: C4:6C:E7:E5:37:20:14:DD:DB:50:79:19:85:96:A2:B3:01:93:3C:4D
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 09F6
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/xGzn5TcgFN3bUHkZhZaiswGTPE0.roa
Signing time: Tue 20 Oct 2020 04:14:48 +0000
ROA not before: Tue 20 Oct 2020 04:14:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131642
IP address blocks: 103.137.246.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2550 (0x9f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Oct 20 04:14:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C46CE7E5372014DDDB5079198596A2B301933C4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:60:fe:4e:3c:cc:6f:29:27:64:96:93:a1:26:
27:fb:87:a5:7c:dd:1e:75:41:e5:bf:d2:7f:01:d5:
3b:e2:2d:b5:90:1d:01:e6:51:42:97:60:3a:d3:58:
b9:02:c5:2f:d9:49:43:5f:c5:81:01:ba:69:89:2e:
21:ce:06:a2:78:5e:4f:e4:76:21:3a:74:36:9e:9f:
6e:fd:ad:66:0f:44:cb:e8:ee:48:63:28:be:22:75:
01:f8:99:f3:2e:5d:a2:11:ed:7c:24:40:da:1c:39:
d1:46:10:0f:08:34:2a:1b:31:8b:84:5c:4f:47:a3:
bf:20:db:fd:e1:0f:47:4b:c2:b3:3a:4e:92:b1:50:
9b:c7:23:a4:9d:bd:cb:b9:bd:68:36:a2:8f:92:7f:
be:0c:7f:dd:49:d3:4e:61:31:fb:09:e5:32:c3:5f:
75:21:ff:58:8d:d4:15:21:0b:a4:dc:56:49:6f:f9:
0b:cf:f5:ec:17:a6:c2:46:e3:de:93:20:45:8c:da:
a7:e0:bf:05:2b:42:9d:ea:a0:4f:0e:5e:17:41:22:
04:6d:7d:f5:0c:55:4f:fd:70:ba:93:16:41:c4:59:
fa:0c:77:f6:79:f6:b7:49:96:11:a9:2f:4a:45:2f:
fc:dd:bf:72:ba:6a:61:a2:86:21:89:00:66:a1:29:
b0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:6C:E7:E5:37:20:14:DD:DB:50:79:19:85:96:A2:B3:01:93:3C:4D
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/xGzn5TcgFN3bUHkZhZaiswGTPE0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.246.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:38:96:58:40:8f:fa:3a:fa:63:69:60:17:9e:6a:26:16:6c:
39:fe:7f:de:fb:b0:d7:aa:cc:da:46:3f:e0:97:54:0b:0d:03:
2e:60:aa:6a:87:72:23:5a:0e:69:b5:63:eb:bf:8c:a0:49:0a:
c7:04:66:df:02:ba:82:3f:16:b6:3a:3d:44:d4:bb:ce:de:3b:
b1:3a:13:ad:61:22:d5:35:30:3f:7b:cf:ea:59:aa:e3:a5:b0:
11:fa:e2:64:f0:e9:73:ea:e5:8e:ce:72:a8:d7:ee:ff:b2:07:
79:7c:95:2f:c6:ae:56:34:f7:67:43:f8:87:8b:bf:81:55:7f:
3a:bd:ac:fa:83:41:3b:1d:c3:07:0e:1a:a4:46:99:3f:1f:54:
53:fe:0f:c8:02:1a:02:a3:1b:fd:3c:de:32:01:58:25:42:b1:
da:22:6a:ab:f7:b1:ca:52:0a:72:cd:6a:d3:ba:10:ac:9a:65:
11:80:a5:5a:36:92:02:5e:5b:6b:f3:a3:ce:52:8d:e5:e5:33:
ff:b4:40:f3:39:8c:7a:e6:16:5f:03:59:37:43:0c:f2:d8:f6:
76:06:25:1f:34:62:87:aa:e1:7f:46:53:a7:46:2f:f5:a7:4d:
b0:d4:f8:8d:78:21:74:36:dd:27:f5:73:4e:50:f2:98:b2:19:
0e:7b:18:0f
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCfYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTY1
NDk1RThEMzI3RTRGNjJENUExNjQzOEYwODBFNjA4QTM0RDBEMzAeFw0yMDEwMjAw
NDE0NDhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEM0NkNFN0U1MzcyMDE0
REREQjUwNzkxOTg1OTZBMkIzMDE5MzNDNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/YP5OPMxvKSdklpOhJif7h6V83R51QeW/0n8B1TviLbWQHQHm
UUKXYDrTWLkCxS/ZSUNfxYEBummJLiHOBqJ4Xk/kdiE6dDaen279rWYPRMvo7khj
KL4idQH4mfMuXaIR7XwkQNocOdFGEA8INCobMYuEXE9Ho78g2/3hD0dLwrM6TpKx
UJvHI6Sdvcu5vWg2oo+Sf74Mf91J005hMfsJ5TLDX3Uh/1iN1BUhC6TcVklv+QvP
9ewXpsJG496TIEWM2qfgvwUrQp3qoE8OXhdBIgRtffUMVU/9cLqTFkHEWfoMd/Z5
9rdJlhGpL0pFL/zdv3K6amGihiGJAGahKbAxAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUxGzn5TcgFN3bUHkZhZaiswGTPE0wHwYDVR0jBBgwFoAUFlSV6NMn5PYtWhZD
jwgOYIo00NMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0FNRVNP
VUwvRmxTVjZOTW41UFl0V2haRGp3Z09ZSW8wME5NLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9GbFNWNk5NbjVQWXRXaFpEandnT1lJbzAwTk0uY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU1FU09VTC94R3puNVRjZ0ZOM2JV
SGtaaFphaXN3R1RQRTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQBZ4n2MA0GCSqGSIb3DQEBCwUAA4IBAQCoOJZYQI/6OvpjaWAXnmomFmw5/n/e
+7DXqszaRj/gl1QLDQMuYKpqh3IjWg5ptWPrv4ygSQrHBGbfArqCPxa2Oj1E1LvO
3juxOhOtYSLVNTA/e8/qWarjpbAR+uJk8Olz6uWOznKo1+7/sgd5fJUvxq5WNPdn
Q/iHi7+BVX86vaz6g0E7HcMHDhqkRpk/H1RT/g/IAhoCoxv9PN4yAVglQrHaImqr
97HKUgpyzWrTuhCsmmURgKVaNpICXltr86POUo3l5TP/tEDzOYx65hZfA1k3Qwzy
2PZ2BiUfNGKHquF/RlOnRi/1p02w1PiNeCF0Nt0n9XNOUPKYshkOexgP
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:02 2023 by rpki-client on console-fra.rpki-client.org