Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HWME1204/deM5lqv4ezeM91WiOyLfM_PZtvE.roa
File: deM5lqv4ezeM91WiOyLfM_PZtvE.roa (raw, json)
Hash identifier: TyvggV5hJhHUYIAMDFRO1Tb4I8+IOHiPqzXArgCuqfA=
Subject key identifier: 75:E3:39:96:AB:F8:7B:37:8C:F7:55:A2:3B:22:DF:33:F3:D9:B6:F1
Certificate issuer: /CN=E95973EB86F597CAE612C67929ED9352E70B5528
Certificate serial: 0E5B
Authority key identifier: E9:59:73:EB:86:F5:97:CA:E6:12:C6:79:29:ED:93:52:E7:0B:55:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/deM5lqv4ezeM91WiOyLfM_PZtvE.roa
Signing time: Wed 29 Sep 2021 02:50:38 +0000
ROA not before: Wed 29 Sep 2021 02:50:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18046
IP address blocks: 103.126.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3675 (0xe5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E95973EB86F597CAE612C67929ED9352E70B5528
Validity
Not Before: Sep 29 02:50:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=75E33996ABF87B378CF755A23B22DF33F3D9B6F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:49:9c:37:b9:16:1f:c5:b6:3b:1a:1b:bd:f8:
53:67:14:71:59:50:11:26:18:b4:7c:9c:f4:52:bb:
62:4d:1f:3e:1f:29:d0:f8:70:83:97:b2:a5:00:28:
4e:e9:cb:ce:8f:f8:e9:04:6e:8d:0b:9a:d4:47:6d:
dd:db:1f:3a:0d:6b:a5:7a:6d:60:88:93:4f:03:3d:
84:27:69:1e:ac:10:da:8f:d3:02:c0:c1:49:f7:a9:
da:4d:61:bc:f1:8c:96:30:bf:ef:54:3e:b0:5a:c0:
18:c9:6c:ba:4d:e2:8e:75:0d:f3:57:a7:b6:4b:5c:
73:ae:fd:83:d7:3c:16:7e:f0:ae:6b:1f:b0:d4:47:
2d:c5:d1:84:60:df:f1:ca:05:6d:b7:f5:d3:63:ea:
f8:8c:64:39:3a:d5:82:94:08:48:ac:2d:e5:d9:50:
a4:82:7b:60:1c:3a:c8:b5:83:0e:d0:70:29:b6:58:
e2:9d:8e:cd:7f:58:77:c8:e7:e7:4e:83:99:3d:54:
69:92:01:42:cd:fa:d9:c6:04:46:24:cf:70:a8:44:
e1:e2:dc:62:06:69:9a:fb:74:7e:60:49:76:e9:3a:
bc:df:67:bf:b0:02:bf:ab:7d:ed:02:fb:f1:22:93:
77:0b:5a:70:53:60:d8:89:5f:5f:79:69:e7:e8:21:
23:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E3:39:96:AB:F8:7B:37:8C:F7:55:A2:3B:22:DF:33:F3:D9:B6:F1
X509v3 Authority Key Identifier:
keyid:E9:59:73:EB:86:F5:97:CA:E6:12:C6:79:29:ED:93:52:E7:0B:55:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/deM5lqv4ezeM91WiOyLfM_PZtvE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.180.0/22
Signature Algorithm: sha256WithRSAEncryption
11:14:16:f9:2d:f4:0c:9f:ce:1e:c1:94:85:7d:a1:ce:24:3c:
9e:45:43:8f:61:d9:b0:4a:37:b6:e1:ce:f1:f4:04:88:2c:a6:
8a:7e:f1:44:74:69:b6:bc:02:0d:3f:04:52:d2:fa:82:0c:de:
c3:d2:ff:36:ca:ee:f0:f0:22:c5:8a:07:24:55:96:2e:61:8a:
e5:d6:11:cc:32:4a:a8:49:8a:82:9e:cf:95:aa:47:94:8a:66:
39:5f:46:c7:c7:37:b9:2b:dd:56:34:80:e3:67:20:e4:45:85:
86:e3:32:46:c5:38:27:3b:a7:39:af:a2:78:48:7a:8b:d6:85:
23:a3:46:57:93:5b:cd:a3:78:17:8e:e1:d2:b0:69:78:00:61:
4e:f9:43:5e:b2:a3:36:8f:f8:5d:af:e8:3e:cf:f2:e9:e4:af:
31:73:a8:1f:52:2c:e5:62:a4:bb:f3:33:c2:cc:b9:f1:d4:62:
30:70:14:ab:e5:df:50:63:31:be:ad:95:ff:f9:e6:16:48:6b:
39:19:5e:42:56:90:c0:03:b5:74:f7:6f:82:d2:21:64:74:61:
61:fa:62:40:2e:5e:03:92:a6:d1:67:2f:c5:6a:fd:97:2d:14:
b2:b7:0e:04:18:56:03:bc:54:ea:61:1c:24:e8:08:3d:c2:13:
cb:35:74:4a
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDlswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTk1
OTczRUI4NkY1OTdDQUU2MTJDNjc5MjlFRDkzNTJFNzBCNTUyODAeFw0yMTA5Mjkw
MjUwMzhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDc1RTMzOTk2QUJGODdC
Mzc4Q0Y3NTVBMjNCMjJERjMzRjNEOUI2RjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1SZw3uRYfxbY7Ghu9+FNnFHFZUBEmGLR8nPRSu2JNHz4fKdD4
cIOXsqUAKE7py86P+OkEbo0LmtRHbd3bHzoNa6V6bWCIk08DPYQnaR6sENqP0wLA
wUn3qdpNYbzxjJYwv+9UPrBawBjJbLpN4o51DfNXp7ZLXHOu/YPXPBZ+8K5rH7DU
Ry3F0YRg3/HKBW239dNj6viMZDk61YKUCEisLeXZUKSCe2AcOsi1gw7QcCm2WOKd
js1/WHfI5+dOg5k9VGmSAULN+tnGBEYkz3CoROHi3GIGaZr7dH5gSXbpOrzfZ7+w
Ar+rfe0C+/Eik3cLWnBTYNiJX195aefoISOfAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUdeM5lqv4ezeM91WiOyLfM/PZtvEwHwYDVR0jBBgwFoAU6Vlz64b1l8rmEsZ5
Ke2TUucLVSgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFdNRTEy
MDQvNlZsejY0YjFsOHJtRXNaNUtlMlRVdWNMVlNnLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS82Vmx6NjRiMWw4cm1Fc1o1S2UyVFV1Y0xWU2cuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9IV01FMTIwNC9kZU01bHF2NGV6ZU05
MVdpT3lMZk1fUFp0dkUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZ360MA0GCSqGSIb3DQEBCwUAA4IBAQARFBb5LfQMn84ewZSFfaHOJDyeRUOP
YdmwSje24c7x9ASILKaKfvFEdGm2vAINPwRS0vqCDN7D0v82yu7w8CLFigckVZYu
YYrl1hHMMkqoSYqCns+VqkeUimY5X0bHxze5K91WNIDjZyDkRYWG4zJGxTgnO6c5
r6J4SHqL1oUjo0ZXk1vNo3gXjuHSsGl4AGFO+UNesqM2j/hdr+g+z/Lp5K8xc6gf
UizlYqS78zPCzLnx1GIwcBSr5d9QYzG+rZX/+eYWSGs5GV5CVpDAA7V092+C0iFk
dGFh+mJALl4DkqbRZy/Fav2XLRSytw4EGFYDvFTqYRwk6Ag9whPLNXRK
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org