Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKMT/0QUqXbs-1iOezqt7uzcqzPY8Rl4.roa
File: 0QUqXbs-1iOezqt7uzcqzPY8Rl4.roa (raw, json)
Hash identifier: Gsy8BnZn45kedIZN3ufH9dIDqSET0l1thinWwXOQAhY=
Subject key identifier: D1:05:2A:5D:BB:3E:D6:23:9E:CE:AB:7B:BB:37:2A:CC:F6:3C:46:5E
Certificate issuer: /CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5
Certificate serial: 0AD9
Authority key identifier: 48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/0QUqXbs-1iOezqt7uzcqzPY8Rl4.roa
Signing time: Wed 29 Sep 2021 02:38:05 +0000
ROA not before: Wed 29 Sep 2021 02:38:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131645
IP address blocks: 103.141.82.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2777 (0xad9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5
Validity
Not Before: Sep 29 02:38:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D1052A5DBB3ED6239ECEAB7BBB372ACCF63C465E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:97:f3:67:0a:e5:4b:21:f0:77:c6:7c:00:14:
95:66:bc:b3:33:da:f8:2b:8b:06:47:84:1f:88:e8:
ad:0a:5a:76:cc:3c:72:60:90:23:b9:da:c3:f2:dc:
38:3a:25:14:f2:d2:6d:01:8d:c6:e3:62:83:3c:9e:
0b:0b:2c:10:07:56:63:da:a3:49:95:6e:8b:50:ef:
2c:a0:95:a9:47:f0:6a:90:3d:0b:ed:b1:85:4d:4c:
f3:8e:c8:8a:57:c8:7f:63:dd:62:18:a1:d2:68:dd:
d5:f8:83:9c:90:59:96:5f:8e:32:63:a8:23:4d:89:
bb:13:c5:3b:42:90:4a:39:6c:99:c0:12:f9:14:93:
7f:cd:97:a7:2c:c5:c4:f6:fc:67:ee:c3:2c:07:f7:
2a:5e:02:d6:35:03:aa:4d:9e:4c:bb:b3:af:c3:3b:
b9:59:f1:35:61:3d:f7:f0:c3:59:0e:dc:00:32:45:
b1:39:4e:4d:90:0a:5f:76:6d:18:2e:eb:3c:1f:14:
69:2a:28:6e:14:a9:5a:40:81:3c:12:e2:ac:17:c2:
3f:6b:64:21:bf:a8:84:0b:06:3c:2c:33:eb:d4:44:
6d:49:bd:ab:95:2c:2e:d0:d4:5f:a4:62:99:42:6b:
fd:b4:d5:0d:a3:43:27:2d:04:00:2e:67:61:0e:9e:
6b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:05:2A:5D:BB:3E:D6:23:9E:CE:AB:7B:BB:37:2A:CC:F6:3C:46:5E
X509v3 Authority Key Identifier:
keyid:48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/SFQOE_iyyuhs0fjHJSg5pQePFqU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/0QUqXbs-1iOezqt7uzcqzPY8Rl4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.82.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:45:a6:cf:28:6e:1b:11:ba:c8:81:c1:f4:a5:1a:82:a2:39:
50:04:96:cb:22:5a:10:c9:c2:4e:be:41:cb:bb:2e:83:fe:85:
7c:5b:46:77:c8:c1:79:6c:e9:0a:73:ef:e0:0a:0b:dd:78:6e:
5e:0f:79:99:31:ad:53:82:c8:2b:6b:db:e1:f7:6d:26:a5:55:
e6:1e:6f:38:35:a4:d3:0e:95:ec:60:9a:33:d3:d0:9a:c9:97:
c4:18:a4:36:20:d8:2c:2b:6a:b5:ef:27:a9:b5:e3:8e:fa:12:
a9:40:5a:65:70:7b:68:36:e4:0d:1e:a2:f8:da:28:02:a8:c0:
09:90:6b:ae:07:34:86:ee:e8:22:16:c7:2e:0d:80:33:8c:33:
99:23:42:2f:34:1c:87:b4:7b:4d:f5:48:66:a4:87:30:9d:7c:
69:ee:7f:42:ac:0f:50:f4:1b:c7:f1:da:52:15:16:3a:4b:72:
02:11:06:e7:97:0f:54:4f:8d:01:8b:b2:d1:d3:6c:b6:57:84:
cd:47:8b:8d:6f:83:18:34:b4:d0:bc:99:52:b2:b2:f8:42:d2:
5a:e1:40:a4:87:1f:65:9b:6a:0d:06:0b:0e:37:ff:2e:0b:fd:
be:e9:0a:ed:14:10:02:67:70:e4:05:74:75:c6:2c:c6:c1:55:
40:45:03:5a
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCtkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDg1
NDBFMTNGOEIyQ0FFODZDRDFGOEM3MjUyODM5QTUwNzhGMTZBNTAeFw0yMTA5Mjkw
MjM4MDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQxMDUyQTVEQkIzRUQ2
MjM5RUNFQUI3QkJCMzcyQUNDRjYzQzQ2NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDgl/NnCuVLIfB3xnwAFJVmvLMz2vgriwZHhB+I6K0KWnbMPHJg
kCO52sPy3Dg6JRTy0m0BjcbjYoM8ngsLLBAHVmPao0mVbotQ7yyglalH8GqQPQvt
sYVNTPOOyIpXyH9j3WIYodJo3dX4g5yQWZZfjjJjqCNNibsTxTtCkEo5bJnAEvkU
k3/Nl6csxcT2/GfuwywH9ypeAtY1A6pNnky7s6/DO7lZ8TVhPffww1kO3AAyRbE5
Tk2QCl92bRgu6zwfFGkqKG4UqVpAgTwS4qwXwj9rZCG/qIQLBjwsM+vURG1JvauV
LC7Q1F+kYplCa/201Q2jQyctBAAuZ2EOnmtzAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU0QUqXbs+1iOezqt7uzcqzPY8Rl4wHwYDVR0jBBgwFoAUSFQOE/iyyuhs0fjH
JSg5pQePFqUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tNVC9T
RlFPRV9peXl1aHMwZmpISlNnNXBRZVBGcVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L1NGUU9FX2l5eXVoczBmakhKU2c1cFFlUEZxVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0tLTVQvMFFVcVhicy0xaU9lenF0N3V6Y3F6
UFk4Umw0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeNUjAN
BgkqhkiG9w0BAQsFAAOCAQEASkWmzyhuGxG6yIHB9KUagqI5UASWyyJaEMnCTr5B
y7sug/6FfFtGd8jBeWzpCnPv4AoL3XhuXg95mTGtU4LIK2vb4fdtJqVV5h5vODWk
0w6V7GCaM9PQmsmXxBikNiDYLCtqte8nqbXjjvoSqUBaZXB7aDbkDR6i+NooAqjA
CZBrrgc0hu7oIhbHLg2AM4wzmSNCLzQch7R7TfVIZqSHMJ18ae5/QqwPUPQbx/Ha
UhUWOktyAhEG55cPVE+NAYuy0dNstleEzUeLjW+DGDS00LyZUrKy+ELSWuFApIcf
ZZtqDQYLDjf/Lgv9vukK7RQQAmdw5AV0dcYsxsFVQEUDWg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org