Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/Oocjrl7JDLn2rIGRTAE5AYfR4-w.roa
File: Oocjrl7JDLn2rIGRTAE5AYfR4-w.roa (raw, json)
Hash identifier: jCayr1JBHNmsFqdWHNquDIXh95w5ldIRMHc0EV1IdNU=
Subject key identifier: 3A:87:23:AE:5E:C9:0C:B9:F6:AC:81:91:4C:01:39:01:87:D1:E3:EC
Certificate issuer: /CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Certificate serial: 09BE
Authority key identifier: ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/Oocjrl7JDLn2rIGRTAE5AYfR4-w.roa
Signing time: Wed 06 Jul 2022 07:02:18 +0000
ROA not before: Wed 06 Jul 2022 07:02:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 103.123.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2494 (0x9be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Validity
Not Before: Jul 6 07:02:18 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3A8723AE5EC90CB9F6AC81914C01390187D1E3EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2d:54:40:67:cd:b5:ff:44:eb:e7:68:45:ec:
21:01:92:05:cd:c8:94:55:11:e9:d6:a3:04:6a:64:
5d:07:10:76:2f:0f:d3:08:54:a3:8c:1c:4e:83:f3:
15:e1:f8:d3:04:8e:c0:6a:bc:4d:4f:af:f7:24:30:
c4:e2:e8:2e:b9:f0:d4:5d:bb:fe:9e:0e:77:9a:c9:
34:d7:52:6e:96:0e:65:5c:7f:bc:73:51:3b:4d:7b:
54:cb:84:d2:87:eb:fb:b2:63:b7:ff:31:cd:b4:8f:
75:75:28:b6:22:ac:d1:ef:b3:c8:0d:2c:d5:14:5b:
99:98:75:0d:64:da:19:a3:dd:b6:be:26:fc:95:fc:
50:02:dd:93:f0:79:a1:b2:8d:d5:72:dc:73:f8:86:
72:be:50:64:7c:e8:c4:6d:b2:4d:8b:1d:04:fc:93:
ee:14:e6:1a:e4:cf:9f:44:14:80:11:46:0e:b3:32:
df:9a:be:f2:3f:ce:c4:77:ed:58:20:39:ea:b7:36:
42:f5:f9:25:1b:ef:2e:d0:f5:c7:f9:5e:1a:41:e4:
f2:7c:ca:7b:23:42:c9:5d:5a:ed:c9:bb:b1:25:51:
7c:80:ed:a8:94:51:d5:78:39:ca:3a:41:86:21:a9:
e0:bf:2d:a3:4d:26:37:58:cb:92:06:d9:81:f4:6d:
b4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:87:23:AE:5E:C9:0C:B9:F6:AC:81:91:4C:01:39:01:87:D1:E3:EC
X509v3 Authority Key Identifier:
keyid:ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/7cBFehQLLUNs5_rmfYSRz_xufz4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/Oocjrl7JDLn2rIGRTAE5AYfR4-w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.0.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:81:6f:3e:ca:40:ef:10:f8:92:7e:d6:99:fa:f9:f1:be:c0:
5d:dc:e7:a2:9d:00:b2:2e:c4:fa:7e:7e:6b:15:0f:8f:f0:07:
f0:31:96:8e:b3:a9:2e:6b:5d:57:ff:24:26:7a:88:2f:bb:2c:
f6:4a:27:4a:d7:6c:e8:8d:b3:45:d1:0f:3f:5d:b6:14:1b:fa:
6f:b8:fe:42:af:64:d2:a6:97:3c:ab:ee:56:88:30:f9:92:85:
29:37:f8:4e:e4:fd:cf:bf:dc:52:f8:e3:46:8f:54:ac:1e:a4:
fe:a1:1f:39:fd:be:79:9c:08:19:1e:f2:1c:c6:3f:fb:6c:63:
76:bf:3a:2b:cf:8f:55:66:2d:ef:0a:1b:72:2d:ba:46:25:22:
b1:82:27:1d:d9:1e:f8:e4:b6:40:13:9e:a2:14:1c:1d:56:fb:
49:c8:04:b3:f3:71:99:14:b2:99:d2:3f:01:3a:1a:89:d5:b1:
a7:97:9c:ce:cf:95:69:86:60:25:40:3e:2d:f3:f9:13:9f:54:
82:57:6a:59:d6:7f:1c:53:55:05:bd:37:97:2f:08:ef:58:4b:
10:3a:ef:3e:1e:d6:69:f6:24:97:88:6f:df:8d:fa:2b:df:91:
e9:95:62:6a:c7:53:83:c1:60:cc:a0:60:a4:61:6d:87:79:c5:
f3:eb:2f:21
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCb4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRURD
MDQ1N0ExNDBCMkQ0MzZDRTdGQUU2N0Q4NDkxQ0ZGQzZFN0YzRTAeFw0yMjA3MDYw
NzAyMThaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDNBODcyM0FFNUVDOTBD
QjlGNkFDODE5MTRDMDEzOTAxODdEMUUzRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzLVRAZ821/0Tr52hF7CEBkgXNyJRVEenWowRqZF0HEHYvD9MI
VKOMHE6D8xXh+NMEjsBqvE1Pr/ckMMTi6C658NRdu/6eDneayTTXUm6WDmVcf7xz
UTtNe1TLhNKH6/uyY7f/Mc20j3V1KLYirNHvs8gNLNUUW5mYdQ1k2hmj3ba+JvyV
/FAC3ZPweaGyjdVy3HP4hnK+UGR86MRtsk2LHQT8k+4U5hrkz59EFIARRg6zMt+a
vvI/zsR37VggOeq3NkL1+SUb7y7Q9cf5XhpB5PJ8ynsjQsldWu3Ju7ElUXyA7aiU
UdV4Oco6QYYhqeC/LaNNJjdYy5IG2YH0bbRhAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUOocjrl7JDLn2rIGRTAE5AYfR4+wwHwYDVR0jBBgwFoAU7cBFehQLLUNs5/rm
fYSRz/xufz4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVUU1dJ
Ti83Y0JGZWhRTExVTnM1X3JtZllTUnpfeHVmejQuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBLzdjQkZlaFFMTFVOczVfcm1mWVNSel94dWZ6NC5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0xFVFNXSU4vT29janJsN0pETG4ycklH
UlRBRTVBWWZSNC13LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGd7ADANBgkqhkiG9w0BAQsFAAOCAQEAH4FvPspA7xD4kn7Wmfr58b7AXdznop0A
si7E+n5+axUPj/AH8DGWjrOpLmtdV/8kJnqIL7ss9konStds6I2zRdEPP122FBv6
b7j+Qq9k0qaXPKvuVogw+ZKFKTf4TuT9z7/cUvjjRo9UrB6k/qEfOf2+eZwIGR7y
HMY/+2xjdr86K8+PVWYt7wobci26RiUisYInHdke+OS2QBOeohQcHVb7ScgEs/Nx
mRSymdI/AToaidWxp5eczs+VaYZgJUA+LfP5E59UgldqWdZ/HFNVBb03ly8I71hL
EDrvPh7WafYkl4hv3436K9+R6ZViasdTg8FgzKBgpGFth3nF8+svIQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org