Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GU/P_UttH0U7O-a6sFXtgmKzVHXMqY.roa
File: P_UttH0U7O-a6sFXtgmKzVHXMqY.roa (raw, json)
Hash identifier: d4yY0aZfKesc8ASJiaV+AbHxDCjkApwi6nkESf6D/Qk=
Subject key identifier: 3F:F5:2D:B4:7D:14:EC:EF:9A:EA:C1:57:B6:09:8A:CD:51:D7:32:A6
Certificate issuer: /CN=FD6A604FD79AF3477008E71EA4ED5CDF588CA664
Certificate serial: 1013
Authority key identifier: FD:6A:60:4F:D7:9A:F3:47:70:08:E7:1E:A4:ED:5C:DF:58:8C:A6:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_WpgT9ea80dwCOcepO1c31iMpmQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GU/P_UttH0U7O-a6sFXtgmKzVHXMqY.roa
Signing time: Wed 29 Sep 2021 02:44:25 +0000
ROA not before: Wed 29 Sep 2021 02:44:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18046
IP address blocks: 103.130.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4115 (0x1013)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FD6A604FD79AF3477008E71EA4ED5CDF588CA664
Validity
Not Before: Sep 29 02:44:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3FF52DB47D14ECEF9AEAC157B6098ACD51D732A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5d:98:fd:a5:06:ed:45:aa:fa:a7:6b:24:9f:
69:4e:1f:d8:b2:5d:ec:a8:b1:07:27:15:b2:4a:2a:
32:61:d5:c9:eb:9f:39:e2:b4:95:60:97:97:f1:6a:
d8:7d:7a:1c:1e:ee:0e:2e:5f:4f:4c:8f:24:5c:71:
2d:03:a3:02:43:30:3c:30:f8:34:fd:a0:75:57:06:
42:cf:89:71:c6:0b:84:28:bb:7a:73:15:24:73:bc:
4c:59:d3:d7:ac:e8:61:63:55:de:b5:61:b8:a7:b4:
5f:06:a2:e7:93:c9:66:ee:90:4b:89:0e:e6:90:42:
bd:8c:90:a0:9a:e7:8d:a5:2a:1b:c3:62:a1:cb:2e:
86:99:8d:04:9a:84:b7:8c:5f:bf:0e:5b:95:d4:94:
bd:32:79:db:04:95:3d:bb:33:d5:31:e8:15:8f:17:
09:36:65:a3:e3:72:42:e1:94:d3:b5:16:03:8b:bc:
c5:78:bf:5d:97:6e:bc:f8:48:d0:6b:81:60:48:de:
eb:24:35:dd:08:ea:78:fb:fe:16:3a:d3:e6:50:2f:
c8:4a:79:2d:ec:97:c9:83:d9:f5:99:b1:44:17:21:
82:87:cd:44:cd:d0:b6:a0:8f:94:37:ef:93:94:eb:
c7:a4:70:57:be:6a:9b:2e:ed:f7:cf:74:19:04:37:
a2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F5:2D:B4:7D:14:EC:EF:9A:EA:C1:57:B6:09:8A:CD:51:D7:32:A6
X509v3 Authority Key Identifier:
keyid:FD:6A:60:4F:D7:9A:F3:47:70:08:E7:1E:A4:ED:5C:DF:58:8C:A6:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GU/_WpgT9ea80dwCOcepO1c31iMpmQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_WpgT9ea80dwCOcepO1c31iMpmQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GU/P_UttH0U7O-a6sFXtgmKzVHXMqY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.32.0/22
Signature Algorithm: sha256WithRSAEncryption
92:11:b6:ac:fb:c4:80:9f:7b:6e:9d:11:bd:56:fd:21:55:13:
1f:be:7a:13:31:1d:df:ac:36:14:0f:bc:8a:74:fd:12:87:6e:
3f:73:11:7d:ae:e3:0b:50:d9:0e:aa:dc:85:a4:ff:54:48:11:
a8:c5:36:83:65:0b:cb:9f:da:32:5b:94:8f:3d:3d:ac:ee:46:
5e:76:71:09:3a:13:6d:7e:1e:85:59:03:82:71:03:fb:6d:f3:
8c:48:52:4e:96:e1:6f:25:ae:9f:52:31:a3:c2:6a:71:86:b8:
7e:5e:a2:1d:0c:7a:d5:33:17:2b:e1:fe:82:4a:9e:e9:02:2b:
c4:25:29:3d:12:ce:58:24:9a:00:cc:14:e6:70:8e:53:4b:d3:
42:d1:d6:96:3b:95:26:72:bf:29:41:78:42:7b:66:23:14:9e:
25:ae:46:be:f8:53:26:0f:cd:a1:6e:4b:44:fe:59:58:a9:86:
dd:dc:9c:89:95:53:e9:63:d7:4a:17:d0:90:e7:af:b7:d3:91:
9a:01:5b:90:c4:d6:2b:07:8a:79:4b:c6:fe:75:0d:ed:61:97:
c3:f6:3f:64:2a:c0:8d:a5:23:16:18:ee:35:54:3a:58:1b:f3:
a9:95:39:0d:a5:ae:67:0c:87:04:4a:6b:7f:83:92:ae:3a:5a:
44:95:95:8e
-----BEGIN CERTIFICATE-----
MIIEyjCCA7KgAwIBAgICEBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkQ2
QTYwNEZENzlBRjM0NzcwMDhFNzFFQTRFRDVDREY1ODhDQTY2NDAeFw0yMTA5Mjkw
MjQ0MjVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDNGRjUyREI0N0QxNEVD
RUY5QUVBQzE1N0I2MDk4QUNENTFENzMyQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDkXZj9pQbtRar6p2skn2lOH9iyXeyosQcnFbJKKjJh1cnrnzni
tJVgl5fxath9ehwe7g4uX09MjyRccS0DowJDMDww+DT9oHVXBkLPiXHGC4Qou3pz
FSRzvExZ09es6GFjVd61YbintF8GoueTyWbukEuJDuaQQr2MkKCa542lKhvDYqHL
LoaZjQSahLeMX78OW5XUlL0yedsElT27M9Ux6BWPFwk2ZaPjckLhlNO1FgOLvMV4
v12Xbrz4SNBrgWBI3uskNd0I6nj7/hY60+ZQL8hKeS3sl8mD2fWZsUQXIYKHzUTN
0Lagj5Q375OU68ekcFe+apsu7ffPdBkEN6LjAgMBAAGjggHmMIIB4jAdBgNVHQ4E
FgQUP/UttH0U7O+a6sFXtgmKzVHXMqYwHwYDVR0jBBgwFoAU/WpgT9ea80dwCOce
pO1c31iMpmQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBYBgNVHR8EUTBPME2g
S6BJhkdyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1UvX1dw
Z1Q5ZWE4MGR3Q09jZXBPMWMzMWlNcG1RLmNybDBgBggrBgEFBQcBAQRUMFIwUAYI
KwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9f
V3BnVDllYTgwZHdDT2NlcE8xYzMxaU1wbVEuY2VyMA4GA1UdDwEB/wQEAwIHgDCB
mAYIKwYBBQUHAQsEgYswgYgwUwYIKwYBBQUHMAuGR3JzeW5jOi8vcnBraWNhLnR3
bmljLnR3L3Jwa2kvVFdOSUNDQS9HVS9QX1V0dEgwVTdPLWE2c0ZYdGdtS3pWSFhN
cVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9u
b3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4IgMA0GCSqG
SIb3DQEBCwUAA4IBAQCSEbas+8SAn3tunRG9Vv0hVRMfvnoTMR3frDYUD7yKdP0S
h24/cxF9ruMLUNkOqtyFpP9USBGoxTaDZQvLn9oyW5SPPT2s7kZednEJOhNtfh6F
WQOCcQP7bfOMSFJOluFvJa6fUjGjwmpxhrh+XqIdDHrVMxcr4f6CSp7pAivEJSk9
Es5YJJoAzBTmcI5TS9NC0daWO5Umcr8pQXhCe2YjFJ4lrka++FMmD82hbktE/llY
qYbd3JyJlVPpY9dKF9CQ56+305GaAVuQxNYrB4p5S8b+dQ3tYZfD9j9kKsCNpSMW
GO41VDpYG/OplTkNpa5nDIcESmt/g5KuOlpElZWO
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:02 2023 by rpki-client on console-fra.rpki-client.org