Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/AsaEZNRcNO5apsb6o1L7k-H_9ok.roa
File: AsaEZNRcNO5apsb6o1L7k-H_9ok.roa (raw, json)
Hash identifier: HjL7L5JuvTUmbRq/N9all75pfcqJkhwlCc3H6N7hf84=
Subject key identifier: 02:C6:84:64:D4:5C:34:EE:5A:A6:C6:FA:A3:52:FB:93:E1:FF:F6:89
Certificate issuer: /CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6
Certificate serial: 0887
Authority key identifier: 32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/AsaEZNRcNO5apsb6o1L7k-H_9ok.roa
Signing time: Mon 25 Jan 2021 01:55:36 +0000
ROA not before: Mon 25 Jan 2021 01:55:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 103.197.172.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2183 (0x887)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6
Validity
Not Before: Jan 25 01:55:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=02C68464D45C34EE5AA6C6FAA352FB93E1FFF689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:de:a4:40:c8:c2:53:8b:85:e0:42:b6:94:24:
23:b5:2d:d8:c6:d7:8b:de:e6:76:fd:ba:ff:33:d9:
5a:3f:17:ec:8d:f5:c9:69:a1:f7:f4:d2:0c:b0:46:
4a:4f:67:85:5a:89:10:30:a3:55:72:f4:98:f7:80:
da:90:ef:c7:fe:88:0d:c9:a0:f9:43:ae:48:07:29:
03:67:a9:ca:01:83:ad:b6:f3:c9:8b:ba:29:33:2d:
db:4d:e6:c9:b7:25:4b:39:fe:6f:87:55:ce:7e:12:
ee:74:c9:5e:5c:b1:00:ce:f2:aa:49:5d:e9:d1:a1:
b6:d3:93:78:3e:49:f1:12:e7:9b:22:0f:c0:6c:d6:
31:ee:8e:0b:72:28:5d:5e:19:7a:80:ca:c0:da:e0:
8f:cf:66:50:31:d1:0b:af:2c:de:05:12:b0:b8:cb:
c0:1b:2d:d7:9c:7a:94:12:ac:be:75:bb:cb:40:e1:
77:12:db:8d:d5:ae:a5:f3:61:f8:15:2c:dc:07:f1:
a6:26:2f:60:d5:50:7a:d8:5d:d1:db:76:22:ae:20:
2a:3a:ca:6b:d8:b1:b8:70:de:f3:8a:2c:fe:66:99:
4e:05:f6:df:46:c0:e9:12:c7:c5:14:d6:98:3b:1f:
43:c1:d1:38:a8:e3:d7:74:24:65:71:74:1f:7b:98:
6f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:C6:84:64:D4:5C:34:EE:5A:A6:C6:FA:A3:52:FB:93:E1:FF:F6:89
X509v3 Authority Key Identifier:
keyid:32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/AsaEZNRcNO5apsb6o1L7k-H_9ok.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.197.172.0/23
Signature Algorithm: sha256WithRSAEncryption
26:d4:52:f6:27:d0:c3:65:5d:9b:f0:12:b8:84:4c:be:4c:40:
6d:05:00:ce:6e:76:7a:a5:b8:cd:47:cf:e7:df:f7:a4:44:b6:
ac:af:48:01:f0:68:1f:88:f0:85:a6:e2:77:87:b0:65:d0:c5:
9c:92:fc:74:d7:ad:89:6f:d7:37:b6:53:d0:57:58:de:2d:75:
00:09:5b:e2:76:61:93:c0:c5:c3:e0:fb:ea:6f:1d:e3:cc:f5:
56:1b:97:a0:0a:44:cb:00:02:ba:4c:a0:1b:1f:41:0b:07:b7:
c8:fa:5d:b6:f3:3c:f0:53:b7:b7:8b:c5:8d:57:0e:55:cd:f7:
22:da:dd:b4:dc:3a:73:1a:e3:da:a7:76:81:a6:3d:9e:72:d2:
ee:6b:77:26:3c:33:0d:f6:1d:62:3b:07:a5:d0:7d:1e:28:38:
a4:dc:13:15:e7:a0:d6:95:e2:24:5e:d6:ff:05:5b:c3:97:d9:
cb:20:21:8e:70:c8:ba:d2:be:60:12:69:46:f2:d5:62:31:ff:
9d:9b:54:42:b0:50:fa:3c:0a:5c:ef:82:82:10:db:bb:c6:06:
ae:5a:30:13:70:a8:c5:f7:3b:8a:ef:e4:e1:f9:9f:ab:d8:a1:
51:68:15:ee:1d:2b:17:6d:3b:6a:50:cc:df:fa:90:34:27:4e:
66:58:e7:a6
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzI0
QTdFNkVCRjY3OEY5OEI4NzIyOEVDODQ2NkMzNjkwQTQzRERCNjAeFw0yMTAxMjUw
MTU1MzZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDAyQzY4NDY0RDQ1QzM0
RUU1QUE2QzZGQUEzNTJGQjkzRTFGRkY2ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC63qRAyMJTi4XgQraUJCO1LdjG14ve5nb9uv8z2Vo/F+yN9clp
off00gywRkpPZ4VaiRAwo1Vy9Jj3gNqQ78f+iA3JoPlDrkgHKQNnqcoBg62288mL
uikzLdtN5sm3JUs5/m+HVc5+Eu50yV5csQDO8qpJXenRobbTk3g+SfES55siD8Bs
1jHujgtyKF1eGXqAysDa4I/PZlAx0QuvLN4FErC4y8AbLdecepQSrL51u8tA4XcS
243VrqXzYfgVLNwH8aYmL2DVUHrYXdHbdiKuICo6ymvYsbhw3vOKLP5mmU4F9t9G
wOkSx8UU1pg7H0PB0Tio49d0JGVxdB97mG+RAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUAsaEZNRcNO5apsb6o1L7k+H/9okwHwYDVR0jBBgwFoAUMkp+br9nj5i4cijs
hGbDaQpD3bYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0pB
WS9Na3AtYnI5bmo1aTRjaWpzaEdiRGFRcEQzYlkuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL01rcC1icjluajVpNGNpanNoR2JEYVFwRDNiWS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hPTkdKQVkvQXNhRVpOUmNOTzVhcHNi
Nm8xTDdrLUhfOW9rLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AWfFrDANBgkqhkiG9w0BAQsFAAOCAQEAJtRS9ifQw2Vdm/ASuIRMvkxAbQUAzm52
eqW4zUfP59/3pES2rK9IAfBoH4jwhabid4ewZdDFnJL8dNetiW/XN7ZT0FdY3i11
AAlb4nZhk8DFw+D76m8d48z1VhuXoApEywACukygGx9BCwe3yPpdtvM88FO3t4vF
jVcOVc33ItrdtNw6cxrj2qd2gaY9nnLS7mt3JjwzDfYdYjsHpdB9Hig4pNwTFeeg
1pXiJF7W/wVbw5fZyyAhjnDIutK+YBJpRvLVYjH/nZtUQrBQ+jwKXO+CghDbu8YG
rlowE3Coxfc7iu/k4fmfq9ihUWgV7h0rF207alDM3/qQNCdOZljnpg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org