Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKSMF/1TG7NaTq84MB97N3SUcdmReLdyw.roa
File: 1TG7NaTq84MB97N3SUcdmReLdyw.roa (raw, json)
Hash identifier: QoqW/L3ShyxdKwxdaD2sdMVx8fqOV/8zv2BEs8MpzSk=
Subject key identifier: D5:31:BB:35:A4:EA:F3:83:01:F7:B3:77:49:47:1D:99:17:8B:77:2C
Certificate issuer: /CN=FBCFA1880AC86CE4FB99F974E9953F3597DCDE0A
Certificate serial: 09BF
Authority key identifier: FB:CF:A1:88:0A:C8:6C:E4:FB:99:F9:74:E9:95:3F:35:97:DC:DE:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-8-hiArIbOT7mfl06ZU_NZfc3go.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKSMF/1TG7NaTq84MB97N3SUcdmReLdyw.roa
Signing time: Sun 07 Feb 2021 12:38:14 +0000
ROA not before: Sun 07 Feb 2021 12:38:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131645
IP address blocks: 103.142.42.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2495 (0x9bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FBCFA1880AC86CE4FB99F974E9953F3597DCDE0A
Validity
Not Before: Feb 7 12:38:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D531BB35A4EAF38301F7B37749471D99178B772C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:76:52:53:24:8e:e3:c8:fd:30:44:6b:6a:f8:
3a:45:97:d8:b2:90:bd:d0:1b:93:91:23:fa:2b:9c:
69:67:46:4c:fe:cf:34:ae:3b:df:46:62:0c:05:e3:
94:38:28:2d:d1:75:9d:25:6a:49:c9:9e:1b:8e:8c:
1c:06:53:8d:e9:69:ea:02:de:c1:c4:a9:24:13:93:
4c:6e:6e:46:d4:d4:ed:d2:e3:c7:93:74:3f:be:f1:
80:86:fe:4e:6c:42:67:84:63:f0:28:20:91:00:5c:
cf:39:f6:ed:0b:16:89:1e:1a:94:3f:53:ab:9d:f0:
94:0b:05:0f:c1:fe:ed:dc:3b:7c:81:38:73:2a:a7:
0e:d9:db:ae:47:6a:25:d4:53:27:86:13:85:38:d3:
a5:a4:e4:52:1f:23:dc:26:15:96:20:0a:d5:19:bd:
f5:76:29:12:33:5e:52:9a:9f:0d:30:77:6a:21:8c:
4f:7c:72:80:82:95:b5:21:40:b0:78:13:18:cf:ea:
fa:7c:18:21:f1:8d:f0:cf:e5:93:ca:9f:cb:a0:8a:
c8:ae:f2:05:14:6d:0c:71:45:45:69:49:3a:9b:ea:
97:f8:a3:ab:82:ad:45:8d:9f:0d:90:85:92:c2:c6:
4d:fc:6b:0e:3a:f2:0c:fe:21:6e:5b:ed:10:95:de:
55:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:31:BB:35:A4:EA:F3:83:01:F7:B3:77:49:47:1D:99:17:8B:77:2C
X509v3 Authority Key Identifier:
keyid:FB:CF:A1:88:0A:C8:6C:E4:FB:99:F9:74:E9:95:3F:35:97:DC:DE:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKSMF/-8-hiArIbOT7mfl06ZU_NZfc3go.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-8-hiArIbOT7mfl06ZU_NZfc3go.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKSMF/1TG7NaTq84MB97N3SUcdmReLdyw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.42.0/23
Signature Algorithm: sha256WithRSAEncryption
cd:3c:7e:bc:25:0a:37:c2:b4:16:b0:40:4b:01:3b:28:25:b6:
4c:10:ff:39:04:6f:58:2b:d7:99:74:b7:0c:ee:95:7e:7d:e7:
56:46:78:bc:d5:89:dc:90:3f:39:66:21:cd:71:27:f2:b1:eb:
58:b3:89:54:e7:50:24:28:32:f3:64:f8:37:11:04:47:e7:78:
32:c9:0d:ad:1d:7a:8c:c0:96:5f:e8:c7:d2:47:8a:8c:02:b7:
c6:c8:7a:aa:51:ef:66:72:92:af:51:3b:9c:70:c9:7f:28:b3:
fb:87:dc:37:48:0b:3c:ed:1f:aa:91:da:dc:62:72:04:a2:7f:
5e:4b:95:58:56:85:e0:f2:96:e2:59:9f:e8:91:07:c8:11:9c:
bc:58:19:ed:4c:10:ec:01:e3:96:ea:74:90:83:8b:b9:2f:f6:
40:23:34:2d:74:9f:2a:07:b2:f1:3c:a8:14:36:ea:a3:1b:c3:
d3:45:16:c3:4b:25:ef:bb:14:53:5a:26:ab:a6:fa:ac:6c:ba:
18:f5:6a:6a:67:17:3b:60:73:0b:6e:4f:16:b4:9c:e9:7f:ee:
6d:b7:8c:f1:5c:c4:10:05:bd:86:5d:56:6a:0d:b7:80:0b:66:
91:5a:ad:50:82:1a:d0:aa:6c:57:5f:5e:1c:5b:25:47:d1:04:
28:92:5e:bf
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCb8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkJD
RkExODgwQUM4NkNFNEZCOTlGOTc0RTk5NTNGMzU5N0RDREUwQTAeFw0yMTAyMDcx
MjM4MTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEQ1MzFCQjM1QTRFQUYz
ODMwMUY3QjM3NzQ5NDcxRDk5MTc4Qjc3MkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5dlJTJI7jyP0wRGtq+DpFl9iykL3QG5ORI/ornGlnRkz+zzSu
O99GYgwF45Q4KC3RdZ0laknJnhuOjBwGU43paeoC3sHEqSQTk0xubkbU1O3S48eT
dD++8YCG/k5sQmeEY/AoIJEAXM859u0LFokeGpQ/U6ud8JQLBQ/B/u3cO3yBOHMq
pw7Z265HaiXUUyeGE4U406Wk5FIfI9wmFZYgCtUZvfV2KRIzXlKanw0wd2ohjE98
coCClbUhQLB4ExjP6vp8GCHxjfDP5ZPKn8ugisiu8gUUbQxxRUVpSTqb6pf4o6uC
rUWNnw2QhZLCxk38aw468gz+IW5b7RCV3lUFAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU1TG7NaTq84MB97N3SUcdmReLdywwHwYDVR0jBBgwFoAU+8+hiArIbOT7mfl0
6ZU/NZfc3gowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tTTUYv
LTgtaGlBckliT1Q3bWZsMDZaVV9OWmZjM2dvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8tOC1oaUFySWJPVDdtZmwwNlpVX05aZmMzZ28uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9LS1NNRi8xVEc3TmFUcTg0TUI5N04zU1Vj
ZG1SZUxkeXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ44q
MA0GCSqGSIb3DQEBCwUAA4IBAQDNPH68JQo3wrQWsEBLATsoJbZMEP85BG9YK9eZ
dLcM7pV+fedWRni81YnckD85ZiHNcSfysetYs4lU51AkKDLzZPg3EQRH53gyyQ2t
HXqMwJZf6MfSR4qMArfGyHqqUe9mcpKvUTuccMl/KLP7h9w3SAs87R+qkdrcYnIE
on9eS5VYVoXg8pbiWZ/okQfIEZy8WBntTBDsAeOW6nSQg4u5L/ZAIzQtdJ8qB7Lx
PKgUNuqjG8PTRRbDSyXvuxRTWiarpvqsbLoY9WpqZxc7YHMLbk8WtJzpf+5tt4zx
XMQQBb2GXVZqDbeAC2aRWq1QghrQqmxXX14cWyVH0QQokl6/
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:02 2025 by rpki-client