Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKMT/BM_rpTgFamW5sYxr5nOn1jt0RI8.roa
File: BM_rpTgFamW5sYxr5nOn1jt0RI8.roa (raw, json)
Hash identifier: x0TZVdLLX/iO0DMgvYdppW7X+JKdPwa622rr4LfQ6tY=
Subject key identifier: 04:CF:EB:A5:38:05:6A:65:B9:B1:8C:6B:E6:73:A7:D6:3B:74:44:8F
Certificate issuer: /CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5
Certificate serial: 0BC4
Authority key identifier: 48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/BM_rpTgFamW5sYxr5nOn1jt0RI8.roa
Signing time: Thu 15 Sep 2022 02:38:39 +0000
ROA not before: Thu 15 Sep 2022 02:38:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131645
IP address blocks: 103.141.82.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3012 (0xbc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5
Validity
Not Before: Sep 15 02:38:39 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=04CFEBA538056A65B9B18C6BE673A7D63B74448F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:cf:83:67:f0:19:6c:97:8a:de:e5:ae:c2:e9:
7f:ed:4b:e8:7f:ad:7d:45:6e:d0:9c:8d:c4:89:1e:
e6:4a:87:84:1d:c4:3b:2a:43:b4:ce:ed:3d:60:ee:
ae:62:14:0a:a1:f8:06:b9:12:ac:9b:e3:fd:43:a7:
02:82:11:5a:c2:45:8e:de:10:81:b7:71:b7:d8:f6:
fb:91:d0:5c:b9:80:47:1b:7d:67:d9:57:7a:f6:dc:
7b:e1:68:63:d2:96:2b:77:56:a5:c1:96:f4:bf:f4:
25:e0:95:0b:b8:b2:8f:43:a6:9c:92:5b:c8:e1:b9:
17:a2:75:e6:10:54:6d:c2:fa:3e:47:de:c0:93:dc:
fe:0b:58:ec:c2:98:89:45:3d:c9:c0:8d:0a:b3:a8:
5c:f2:c7:3d:68:ec:f3:3a:c2:cf:72:72:32:69:3e:
b5:4d:7f:81:42:69:9d:bc:6d:6b:13:a7:bb:13:32:
af:f3:ad:2e:d2:bb:9e:99:f2:68:90:4f:72:ea:38:
fa:84:39:c9:8e:6e:26:c5:83:57:9c:bd:76:40:0c:
fd:48:5e:6d:47:30:f5:14:ec:4b:5d:43:a7:4b:92:
b3:69:b2:38:8f:ef:7c:f8:67:bd:0d:50:22:96:4c:
f5:f5:5a:a0:dc:53:ba:41:9b:16:e7:6a:04:c9:6d:
3c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:CF:EB:A5:38:05:6A:65:B9:B1:8C:6B:E6:73:A7:D6:3B:74:44:8F
X509v3 Authority Key Identifier:
keyid:48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/SFQOE_iyyuhs0fjHJSg5pQePFqU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/BM_rpTgFamW5sYxr5nOn1jt0RI8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.82.0/23
Signature Algorithm: sha256WithRSAEncryption
45:2b:c2:76:2e:d2:9a:00:fd:10:eb:69:f9:62:46:81:32:18:
71:7a:38:bc:53:28:64:a0:01:f0:d6:dc:e8:66:d4:f5:9a:3b:
5e:eb:7f:4c:3f:b2:40:1f:6f:fa:7f:85:e1:64:97:6f:51:5d:
91:4e:2f:cf:f1:4d:23:d0:90:28:9b:05:b0:95:06:1a:33:c1:
4e:c5:50:9e:26:3f:99:58:d5:05:61:b6:87:e2:e6:74:91:db:
c7:a7:e9:d5:b4:34:31:b0:5f:7f:44:3f:9d:1b:6d:cf:e5:8a:
b7:58:39:52:81:e7:f1:63:7b:76:75:8d:9a:c5:c5:8a:8f:86:
9a:ed:36:f0:87:1c:36:b1:54:2d:95:35:3a:6e:c1:5a:a7:4d:
40:3e:60:fb:45:f5:57:c3:e0:2d:1d:f0:c9:34:f8:00:6c:e4:
7f:c6:31:55:28:96:a0:32:62:7d:0d:c7:da:2c:bb:0f:6d:06:
c6:7e:51:48:84:99:87:35:34:7c:42:44:92:4e:86:43:03:ee:
f3:1e:43:c1:d1:f2:ca:c5:77:7d:9d:4b:4c:21:d9:a1:59:02:
2a:3a:b9:94:3e:46:5b:83:c8:f4:3e:c1:0f:3f:3d:14:9d:11:
f3:e2:a8:56:a6:46:6d:da:be:93:b5:b6:e4:a2:af:bd:ab:ee:
14:2e:5b:6d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDg1
NDBFMTNGOEIyQ0FFODZDRDFGOEM3MjUyODM5QTUwNzhGMTZBNTAeFw0yMjA5MTUw
MjM4MzlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDA0Q0ZFQkE1MzgwNTZB
NjVCOUIxOEM2QkU2NzNBN0Q2M0I3NDQ0OEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDtz4Nn8Blsl4re5a7C6X/tS+h/rX1FbtCcjcSJHuZKh4QdxDsq
Q7TO7T1g7q5iFAqh+Aa5Eqyb4/1DpwKCEVrCRY7eEIG3cbfY9vuR0Fy5gEcbfWfZ
V3r23HvhaGPSlit3VqXBlvS/9CXglQu4so9DppySW8jhuReideYQVG3C+j5H3sCT
3P4LWOzCmIlFPcnAjQqzqFzyxz1o7PM6ws9ycjJpPrVNf4FCaZ28bWsTp7sTMq/z
rS7Su56Z8miQT3LqOPqEOcmObibFg1ecvXZADP1IXm1HMPUU7EtdQ6dLkrNpsjiP
73z4Z70NUCKWTPX1WqDcU7pBmxbnagTJbTw7AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUBM/rpTgFamW5sYxr5nOn1jt0RI8wHwYDVR0jBBgwFoAUSFQOE/iyyuhs0fjH
JSg5pQePFqUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tNVC9T
RlFPRV9peXl1aHMwZmpISlNnNXBRZVBGcVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L1NGUU9FX2l5eXVoczBmakhKU2c1cFFlUEZxVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0tLTVQvQk1fcnBUZ0ZhbVc1c1l4cjVuT24x
anQwUkk4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeNUjAN
BgkqhkiG9w0BAQsFAAOCAQEARSvCdi7SmgD9EOtp+WJGgTIYcXo4vFMoZKAB8Nbc
6GbU9Zo7Xut/TD+yQB9v+n+F4WSXb1FdkU4vz/FNI9CQKJsFsJUGGjPBTsVQniY/
mVjVBWG2h+LmdJHbx6fp1bQ0MbBff0Q/nRttz+WKt1g5UoHn8WN7dnWNmsXFio+G
mu028IccNrFULZU1Om7BWqdNQD5g+0X1V8PgLR3wyTT4AGzkf8YxVSiWoDJifQ3H
2iy7D20Gxn5RSISZhzU0fEJEkk6GQwPu8x5DwdHyysV3fZ1LTCHZoVkCKjq5lD5G
W4PI9D7BDz89FJ0R8+KoVqZGbdq+k7W25KKvvavuFC5bbQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org