Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/P7OTqpiRwdWLF2NIAxYI2hD77Bc.roa
File: P7OTqpiRwdWLF2NIAxYI2hD77Bc.roa (raw, json)
Hash identifier: db5wOxqilSVVxbiQixW7YSEhG990qoiLbflPCXQBzLg=
Subject key identifier: 3F:B3:93:AA:98:91:C1:D5:8B:17:63:48:03:16:08:DA:10:FB:EC:17
Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02
Certificate serial: EF
Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/P7OTqpiRwdWLF2NIAxYI2hD77Bc.roa
Signing time: Wed 19 Oct 2022 01:30:52 +0000
ROA not before: Wed 19 Oct 2022 01:30:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9920
IP address blocks: 103.173.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 239 (0xef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02
Validity
Not Before: Oct 19 01:30:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3FB393AA9891C1D58B176348031608DA10FBEC17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:68:cf:c8:56:0c:d2:83:f2:cc:32:1f:4a:af:
71:f8:3a:64:bd:51:0c:23:a8:d2:21:72:7f:f2:44:
b7:0d:83:60:08:e4:0c:74:f3:33:ad:e5:f1:ef:b7:
46:02:78:60:c6:3f:5f:75:c2:d4:4f:50:aa:8f:fc:
9e:f1:d8:f0:43:88:02:be:94:a2:cb:61:48:0e:f2:
8d:db:9f:fc:de:eb:6a:71:b6:9d:08:39:9b:9a:57:
78:4e:fc:fc:6c:42:5b:33:58:d6:5f:72:74:e9:28:
7c:f3:27:fc:7b:7d:ea:a2:76:56:0b:46:f9:40:a2:
90:37:48:ca:7b:68:26:f9:0f:e5:b9:f4:6a:0d:57:
2e:88:3b:de:0b:0d:f5:e3:b8:ec:ef:06:e0:c4:79:
96:20:0b:84:61:d6:47:26:48:49:8b:71:f0:3e:2b:
76:40:de:82:8e:81:34:50:fe:2f:dc:a8:78:a5:37:
67:95:e9:40:37:10:68:4e:89:4d:9f:84:12:ea:94:
e2:3b:61:3f:5c:1a:e7:e5:03:8e:43:b9:6a:3e:24:
6b:22:e3:44:70:9c:7c:61:2c:54:70:f6:bc:d9:cb:
25:18:17:f1:a0:c2:d5:ae:76:71:1e:14:87:1e:b2:
3d:6c:1c:d0:cc:f7:98:26:3f:e3:9e:9f:b8:ac:89:
9b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B3:93:AA:98:91:C1:D5:8B:17:63:48:03:16:08:DA:10:FB:EC:17
X509v3 Authority Key Identifier:
keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/P7OTqpiRwdWLF2NIAxYI2hD77Bc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.173.94.0/24
Signature Algorithm: sha256WithRSAEncryption
00:bb:1b:8a:44:4f:db:d9:39:bd:cc:d4:81:bc:0d:09:54:8f:
26:c7:13:70:69:b1:29:51:32:2f:5d:d2:ae:45:e9:c8:80:30:
76:08:58:e3:b9:54:f3:2a:da:a4:4a:cf:b4:8e:45:f7:31:35:
94:4e:0a:5d:04:10:1b:7f:ac:60:b8:81:59:dd:9b:81:c7:7d:
a6:d0:83:fc:d1:2c:1a:0f:43:75:88:ef:32:ec:2d:7f:73:b5:
83:67:41:bc:fc:54:56:f9:a5:86:49:d7:57:c9:11:30:a3:34:
cd:39:3d:97:9e:2a:fc:4e:bc:dd:d2:d0:a5:14:98:54:e9:b1:
f6:97:85:ca:e6:c2:a1:b8:ff:86:fe:7f:20:e9:52:24:ff:19:
41:ea:f6:f4:5e:78:dc:81:1d:8b:6a:49:f7:bf:c6:39:92:37:
32:07:25:fc:70:a3:f1:2a:2e:fe:85:21:ee:c1:39:9b:b6:17:
d3:c2:ec:11:d8:16:30:8d:a3:86:e3:49:a4:54:6d:5a:d2:7e:
36:16:7d:c3:86:2c:2e:f8:07:2c:de:63:6d:a0:be:62:82:3a:
cf:30:68:80:9b:6a:e5:ca:b6:43:39:b7:58:2c:18:b5:e9:98:
59:41:f7:16:04:23:c3:9b:52:da:ec:eb:34:07:1b:eb:e1:6f:
92:65:2b:38
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjg4
Nzk4NURCMTlFNUZEODJGOTYyQjQyMEVDQzBGQzRFRDczMEQwMjAeFw0yMjEwMTkw
MTMwNTJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDNGQjM5M0FBOTg5MUMx
RDU4QjE3NjM0ODAzMTYwOERBMTBGQkVDMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0aM/IVgzSg/LMMh9Kr3H4OmS9UQwjqNIhcn/yRLcNg2AI5Ax0
8zOt5fHvt0YCeGDGP191wtRPUKqP/J7x2PBDiAK+lKLLYUgO8o3bn/ze62pxtp0I
OZuaV3hO/PxsQlszWNZfcnTpKHzzJ/x7feqidlYLRvlAopA3SMp7aCb5D+W59GoN
Vy6IO94LDfXjuOzvBuDEeZYgC4Rh1kcmSEmLcfA+K3ZA3oKOgTRQ/i/cqHilN2eV
6UA3EGhOiU2fhBLqlOI7YT9cGuflA45DuWo+JGsi40RwnHxhLFRw9rzZyyUYF/Gg
wtWudnEeFIcesj1sHNDM95gmP+Oen7isiZtxAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUP7OTqpiRwdWLF2NIAxYI2hD77BcwHwYDVR0jBBgwFoAUaIeYXbGeX9gvlitC
DswPxO1zDQIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNUVkMv
YUllWVhiR2VYOWd2bGl0Q0Rzd1B4TzF6RFFJLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9hSWVZWGJHZVg5Z3ZsaXRDRHN3UHhPMXpEUUkuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JU1RWQy9QN09UcXBpUndkV0xGMk5JQXhZ
STJoRDc3QmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ61e
MA0GCSqGSIb3DQEBCwUAA4IBAQAAuxuKRE/b2Tm9zNSBvA0JVI8mxxNwabEpUTIv
XdKuRenIgDB2CFjjuVTzKtqkSs+0jkX3MTWUTgpdBBAbf6xguIFZ3ZuBx32m0IP8
0SwaD0N1iO8y7C1/c7WDZ0G8/FRW+aWGSddXyREwozTNOT2Xnir8Trzd0tClFJhU
6bH2l4XK5sKhuP+G/n8g6VIk/xlB6vb0XnjcgR2Lakn3v8Y5kjcyByX8cKPxKi7+
hSHuwTmbthfTwuwR2BYwjaOG40mkVG1a0n42Fn3Dhiwu+Acs3mNtoL5igjrPMGiA
m2rlyrZDObdYLBi16ZhZQfcWBCPDm1La7Os0Bxvr4W+SZSs4
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org