Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/Q4zCMHgJDCwtGR5u-SgKL4bDNUk.roa
File: Q4zCMHgJDCwtGR5u-SgKL4bDNUk.roa (raw, json)
Hash identifier: m+wTuJSt2KVzMm0LoOcPdvpU8OQqsBMJBb3SvH1em2A=
Subject key identifier: 43:8C:C2:30:78:09:0C:2C:2D:19:1E:6E:F9:28:0A:2F:86:C3:35:49
Certificate issuer: /CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Certificate serial: 0913
Authority key identifier: 4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/Q4zCMHgJDCwtGR5u-SgKL4bDNUk.roa
Signing time: Wed 29 Sep 2021 02:44:21 +0000
ROA not before: Wed 29 Sep 2021 02:44:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131149
IP address blocks: 103.129.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2323 (0x913)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Validity
Not Before: Sep 29 02:44:21 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=438CC23078090C2C2D191E6EF9280A2F86C33549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fe:2a:66:d7:f4:68:62:8d:a6:56:85:af:c3:
b1:31:5e:55:5b:3f:40:1f:31:65:78:cf:6a:a2:d2:
5e:e7:ee:7a:97:2f:ac:91:a3:fa:de:f5:a2:1d:c9:
26:e5:bc:3a:c3:0e:a4:49:d8:61:5a:d2:ba:39:63:
e5:41:c7:53:eb:e8:56:43:6d:93:89:6f:5c:01:07:
e8:de:a7:91:82:73:7b:97:93:b5:6d:2e:65:c3:28:
34:bd:54:5d:3b:fe:db:16:6b:f5:8a:c8:ed:7f:87:
8a:8c:5b:f4:a9:43:3b:b5:6d:ce:e2:a1:0b:24:de:
12:c6:d6:91:e9:62:67:ba:c8:11:05:c9:03:5c:72:
da:2b:13:03:c2:e0:ee:87:fd:ee:a2:6a:38:82:a2:
42:c1:0e:d6:63:38:83:b3:ef:89:ac:0a:8b:c8:a8:
fb:d6:82:08:d9:18:da:e4:a8:d2:34:bb:57:d8:72:
ed:d9:ce:48:e6:9e:78:cb:31:1d:9b:59:2e:ad:1d:
bf:86:e3:bf:50:5b:ab:4f:da:5f:6b:68:3a:7c:0a:
d7:92:c1:fb:cd:8c:db:08:5a:2e:3c:9e:5e:67:b3:
47:73:f4:88:d0:bb:2c:c5:ba:77:6d:d2:f4:bf:fe:
e3:14:e0:2b:fe:ec:cd:75:49:9c:2b:ab:ca:0a:76:
b7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:8C:C2:30:78:09:0C:2C:2D:19:1E:6E:F9:28:0A:2F:86:C3:35:49
X509v3 Authority Key Identifier:
keyid:4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/TmCbp0GG0LDjoanAENod8FWaGYI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/Q4zCMHgJDCwtGR5u-SgKL4bDNUk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.168.0/22
Signature Algorithm: sha256WithRSAEncryption
71:df:fd:88:23:ff:39:5f:10:44:cd:d4:ec:b1:d5:59:b7:e3:
83:70:f6:0e:98:04:dc:87:15:ea:b7:24:ec:6b:f8:da:9c:b7:
02:66:27:37:a8:7b:cd:35:e8:a8:9f:6a:66:c8:d6:8a:62:ee:
b3:02:a0:e3:7a:05:bd:6f:df:34:43:85:8d:07:7a:5b:54:5d:
42:38:bc:c2:5d:47:56:85:48:fb:6b:b7:fa:8d:8d:1d:48:55:
43:c4:fa:8f:00:5a:c3:2f:ed:b6:7b:1b:af:d1:78:33:e5:50:
95:48:15:25:e0:f7:e4:a1:32:23:07:fd:d6:11:9b:f8:5b:e2:
a3:fe:7f:70:38:de:aa:2b:65:57:d0:4c:09:12:f9:f6:47:2b:
2f:7e:4f:b5:7a:59:9a:9f:fb:29:3e:c0:33:b5:cd:54:67:c4:
23:a1:4a:10:e9:cd:f6:43:7f:6e:23:e9:3c:ca:8f:e5:52:54:
aa:6b:5f:4a:cf:d9:0b:35:70:92:98:2f:75:ac:52:ea:8f:7f:
de:9b:97:cf:cd:ab:b6:17:5c:de:3d:95:71:99:c0:cc:c3:c1:
bb:5d:45:de:f1:6f:29:69:cc:c9:ce:e8:dc:79:0c:dc:08:4e:
00:d1:56:86:66:be:4b:5b:a7:4d:a9:9f:50:18:d8:fe:b6:da:
98:07:a8:f5
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCRMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEU2
MDlCQTc0MTg2RDBCMEUzQTFBOUMwMTBEQTFERjA1NTlBMTk4MjAeFw0yMTA5Mjkw
MjQ0MjFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDQzOENDMjMwNzgwOTBD
MkMyRDE5MUU2RUY5MjgwQTJGODZDMzM1NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCW/ipm1/RoYo2mVoWvw7ExXlVbP0AfMWV4z2qi0l7n7nqXL6yR
o/re9aIdySblvDrDDqRJ2GFa0ro5Y+VBx1Pr6FZDbZOJb1wBB+jep5GCc3uXk7Vt
LmXDKDS9VF07/tsWa/WKyO1/h4qMW/SpQzu1bc7ioQsk3hLG1pHpYme6yBEFyQNc
ctorEwPC4O6H/e6iajiCokLBDtZjOIOz74msCovIqPvWggjZGNrkqNI0u1fYcu3Z
zkjmnnjLMR2bWS6tHb+G479QW6tP2l9raDp8CteSwfvNjNsIWi48nl5ns0dz9IjQ
uyzFundt0vS//uMU4Cv+7M11SZwrq8oKdrcPAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUQ4zCMHgJDCwtGR5u+SgKL4bDNUkwHwYDVR0jBBgwFoAUTmCbp0GG0LDjoanA
ENod8FWaGYIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVENP
TVRXL1RtQ2JwMEdHMExEam9hbkFFTm9kOEZXYUdZSS5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvVG1DYnAwR0cwTERqb2FuQUVOb2Q4RldhR1lJLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVENPTVRXL1E0ekNNSGdKREN3
dEdSNXUtU2dLTDRiRE5Vay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAJngagwDQYJKoZIhvcNAQELBQADggEBAHHf/Ygj/zlfEETN1Oyx1Vm344Nw
9g6YBNyHFeq3JOxr+NqctwJmJzeoe8016KifambI1opi7rMCoON6Bb1v3zRDhY0H
eltUXUI4vMJdR1aFSPtrt/qNjR1IVUPE+o8AWsMv7bZ7G6/ReDPlUJVIFSXg9+Sh
MiMH/dYRm/hb4qP+f3A43qorZVfQTAkS+fZHKy9+T7V6WZqf+yk+wDO1zVRnxCOh
ShDpzfZDf24j6TzKj+VSVKprX0rP2Qs1cJKYL3WsUuqPf96bl8/Nq7YXXN49lXGZ
wMzDwbtdRd7xbylpzMnO6Nx5DNwITgDRVoZmvktbp02pn1AY2P622pgHqPU=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org