Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INFORICH/ZC2EX6Xh7MnjkPKKO7Tgi6B8Dpw.roa
File: ZC2EX6Xh7MnjkPKKO7Tgi6B8Dpw.roa (raw, json)
Hash identifier: k6l14IahNhDoWJ6ajeVcXaOci+liyZHesttspZAJx5w=
Subject key identifier: 64:2D:84:5F:A5:E1:EC:C9:E3:90:F2:8A:3B:B4:E0:8B:A0:7C:0E:9C
Certificate issuer: /CN=9197E979AFBB1BEC2EFC2647207560561BE900B6
Certificate serial: 031A
Authority key identifier: 91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/ZC2EX6Xh7MnjkPKKO7Tgi6B8Dpw.roa
Signing time: Thu 15 Sep 2022 02:41:32 +0000
ROA not before: Thu 15 Sep 2022 02:41:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131674
IP address blocks: 103.152.252.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 794 (0x31a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9197E979AFBB1BEC2EFC2647207560561BE900B6
Validity
Not Before: Sep 15 02:41:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=642D845FA5E1ECC9E390F28A3BB4E08BA07C0E9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:7c:40:1c:35:38:59:95:97:33:88:ad:a7:f3:
bb:81:f9:27:c7:c7:af:91:aa:65:ac:30:f7:ad:79:
18:92:72:d6:7e:d0:f1:ec:dd:d4:d1:17:bc:ab:f2:
d5:2b:e0:87:8b:fb:4a:72:9e:2f:4f:ba:2d:e0:d8:
db:98:78:0a:63:05:5d:09:62:08:a8:37:35:62:32:
e4:b5:d8:19:83:4d:c6:04:e2:49:0e:60:9c:69:90:
aa:c2:45:63:63:5d:10:03:58:9a:a8:da:3d:db:e8:
dc:7c:00:5d:c6:2c:b7:b9:0c:30:63:37:52:8a:91:
12:a3:81:0c:5b:c7:0c:39:19:8b:4c:e9:1a:8a:70:
61:e8:9c:c3:d1:b4:ca:c7:d4:62:b3:df:75:da:ed:
f7:d4:b8:20:2b:06:8e:0c:63:73:b9:3f:ff:1d:27:
25:19:26:5b:f2:3d:de:d3:17:9e:23:35:55:5f:1f:
5c:f1:79:aa:c2:f4:10:5d:12:30:4e:80:a0:ff:af:
f2:fe:ab:34:8a:f1:36:e1:16:d3:aa:fd:de:bd:87:
79:92:99:5c:fb:65:0c:c6:8d:08:67:6e:d6:49:0c:
5d:57:f5:34:2e:2c:2d:bd:1f:38:fa:7c:98:61:32:
3b:fa:47:b7:44:45:5d:10:27:06:2f:8a:b7:e2:28:
a0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:2D:84:5F:A5:E1:EC:C9:E3:90:F2:8A:3B:B4:E0:8B:A0:7C:0E:9C
X509v3 Authority Key Identifier:
keyid:91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/ZC2EX6Xh7MnjkPKKO7Tgi6B8Dpw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.252.0/23
Signature Algorithm: sha256WithRSAEncryption
03:dd:ef:82:8a:06:ca:78:56:b8:b1:7d:eb:b0:e0:fb:b3:33:
5b:c7:59:da:1f:17:c8:9e:e6:ea:84:38:c0:d3:d0:97:7f:42:
e7:25:8d:b1:ec:08:fd:71:48:1f:f5:ac:8a:01:b5:35:75:3a:
70:cf:f6:e6:2d:ee:33:71:6a:0d:c8:7f:8e:3f:c5:d1:b8:99:
15:ae:5b:bc:02:69:9a:4d:9b:29:6c:63:68:a4:2c:df:0c:a5:
dc:4e:42:f0:9a:ef:6a:88:9c:45:6a:e6:0c:c1:7c:bd:3a:a8:
cf:5b:1b:60:ee:23:7b:45:b4:b8:70:1d:35:ef:2e:a4:47:6e:
05:6b:f3:60:ff:d6:24:b4:68:e8:40:1b:5a:b0:95:2f:d5:9a:
f9:ef:3a:4c:7d:85:42:2f:fa:ff:db:17:e5:c9:bb:ce:99:6b:
bf:34:8e:1e:c4:c3:11:0e:37:7a:7b:cb:c5:e4:1d:9b:70:09:
a4:8a:1b:0b:1b:40:f4:00:f0:bb:61:a9:36:f5:95:c0:0d:15:
06:bb:a3:68:0c:4d:e2:49:af:13:ae:31:ff:5c:c6:31:bf:63:
ba:c2:57:01:94:20:a1:11:b8:dc:07:17:85:75:6b:32:02:ee:
05:38:e8:b1:89:50:8a:24:10:49:ab:1d:cf:31:12:73:e2:05:
e2:10:f7:5a
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICAxowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTE5
N0U5NzlBRkJCMUJFQzJFRkMyNjQ3MjA3NTYwNTYxQkU5MDBCNjAeFw0yMjA5MTUw
MjQxMzJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDY0MkQ4NDVGQTVFMUVD
QzlFMzkwRjI4QTNCQjRFMDhCQTA3QzBFOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDsfEAcNThZlZcziK2n87uB+SfHx6+RqmWsMPeteRiSctZ+0PHs
3dTRF7yr8tUr4IeL+0pyni9Pui3g2NuYeApjBV0JYgioNzViMuS12BmDTcYE4kkO
YJxpkKrCRWNjXRADWJqo2j3b6Nx8AF3GLLe5DDBjN1KKkRKjgQxbxww5GYtM6RqK
cGHonMPRtMrH1GKz33Xa7ffUuCArBo4MY3O5P/8dJyUZJlvyPd7TF54jNVVfH1zx
earC9BBdEjBOgKD/r/L+qzSK8TbhFtOq/d69h3mSmVz7ZQzGjQhnbtZJDF1X9TQu
LC29Hzj6fJhhMjv6R7dERV0QJwYvirfiKKBFAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUZC2EX6Xh7MnjkPKKO7Tgi6B8DpwwHwYDVR0jBBgwFoAUkZfpea+7G+wu/CZH
IHVgVhvpALYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU5GT1JJ
Q0gva1pmcGVhLTdHLXd1X0NaSElIVmdWaHZwQUxZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9rWmZwZWEtN0ctd3VfQ1pISUhWZ1ZodnBBTFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTkZPUklDSC9aQzJFWDZYaDdNbmpr
UEtLTzdUZ2k2QjhEcHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQBZ5j8MA0GCSqGSIb3DQEBCwUAA4IBAQAD3e+CigbKeFa4sX3rsOD7szNbx1na
HxfInubqhDjA09CXf0LnJY2x7Aj9cUgf9ayKAbU1dTpwz/bmLe4zcWoNyH+OP8XR
uJkVrlu8AmmaTZspbGNopCzfDKXcTkLwmu9qiJxFauYMwXy9OqjPWxtg7iN7RbS4
cB017y6kR24Fa/Ng/9YktGjoQBtasJUv1Zr57zpMfYVCL/r/2xflybvOmWu/NI4e
xMMRDjd6e8vF5B2bcAmkihsLG0D0APC7Yak29ZXADRUGu6NoDE3iSa8TrjH/XMYx
v2O6wlcBlCChEbjcBxeFdWsyAu4FOOixiVCKJBBJqx3PMRJz4gXiEPda
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org