Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/QefetaXq26N-ccuukAyKw4rq7rg.roa
File: QefetaXq26N-ccuukAyKw4rq7rg.roa (raw, json)
Hash identifier: icIfoWCYkUQM/1aegqg4kRGeyAq1x6qXFWEPHYgrYpg=
Subject key identifier: 41:E7:DE:B5:A5:EA:DB:A3:7E:71:CB:AE:90:0C:8A:C3:8A:EA:EE:B8
Certificate issuer: /CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Certificate serial: 09BB
Authority key identifier: ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/QefetaXq26N-ccuukAyKw4rq7rg.roa
Signing time: Wed 06 Jul 2022 06:47:58 +0000
ROA not before: Wed 06 Jul 2022 06:47:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 103.123.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2491 (0x9bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Validity
Not Before: Jul 6 06:47:58 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=41E7DEB5A5EADBA37E71CBAE900C8AC38AEAEEB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:9c:76:4d:00:fe:00:f8:67:78:ee:3a:a1:0f:
5b:e1:99:62:6c:12:9f:25:56:f5:98:09:68:4b:2c:
d9:85:07:7c:e7:f0:80:e1:b1:b2:80:77:52:53:2b:
19:4d:13:26:02:0d:7d:aa:2f:58:8c:a7:b4:fb:87:
77:46:ba:e4:e4:38:6f:10:73:f3:33:83:26:9f:a8:
36:77:00:f1:75:06:5c:48:63:36:8a:c9:ff:f6:3e:
e1:4a:c0:f8:c1:a1:6d:04:c6:9b:45:45:f0:04:59:
5d:92:71:ce:7c:1a:f7:dd:04:ba:5b:a9:7a:50:46:
54:ca:61:12:d0:77:06:78:e5:d9:c6:83:a5:c2:2a:
54:19:61:a6:db:ec:f5:92:d2:9d:d4:aa:f9:1b:1e:
de:b3:02:d3:36:93:14:c5:76:bd:91:d9:93:0f:36:
54:7b:6b:35:80:29:2b:71:b5:f8:e6:76:59:20:74:
e1:2b:25:d3:9c:4b:c6:5d:92:0a:de:e1:df:40:8f:
a0:d7:a4:ef:d0:c1:e9:ce:0f:fc:d2:ed:9f:49:fa:
1a:d9:b7:40:a6:79:a6:89:4e:50:16:7d:6d:8c:25:
c6:e6:b8:4b:c3:00:8f:6e:89:44:a3:23:cc:94:58:
c3:f0:e6:06:56:c3:aa:43:d2:20:f2:b1:2d:3f:67:
3f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E7:DE:B5:A5:EA:DB:A3:7E:71:CB:AE:90:0C:8A:C3:8A:EA:EE:B8
X509v3 Authority Key Identifier:
keyid:ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/7cBFehQLLUNs5_rmfYSRz_xufz4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/QefetaXq26N-ccuukAyKw4rq7rg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.2.0/24
Signature Algorithm: sha256WithRSAEncryption
98:50:a8:7c:a1:80:70:fe:a7:e9:e0:db:a7:7d:55:d5:5f:f4:
9f:67:2f:1b:75:10:8a:dc:6e:2e:28:1e:1e:55:2c:30:80:32:
e9:5f:22:74:73:bc:87:31:82:af:ea:13:db:36:53:e8:e8:6c:
ae:d9:fb:77:57:b6:4d:65:44:08:27:c8:00:bb:64:67:5d:0c:
d1:ba:0d:31:ef:cb:93:3c:21:ed:36:f9:65:03:3d:42:af:b1:
3c:b6:59:6e:8e:16:06:d3:be:dc:dd:10:1d:71:41:f9:4c:07:
29:f4:66:61:4a:f4:53:f4:fa:68:58:ad:9b:e1:72:cb:24:5a:
c2:1b:c8:dd:90:53:60:3e:cb:ee:60:48:1f:c9:44:59:38:1b:
d0:09:1d:c8:b9:00:fe:4c:ea:8f:23:c6:fd:5a:6a:5f:b6:06:
0c:7b:76:80:3d:0b:5d:75:3f:42:ad:a8:58:08:0b:28:15:6a:
03:c3:79:0f:00:4d:c7:62:65:09:ba:4f:d0:ea:d9:56:94:23:
43:91:99:cb:7e:d9:c3:a1:0b:88:5e:b8:8e:71:8a:bf:79:fa:
23:08:b3:04:d5:b3:b4:86:59:41:0e:42:25:8e:4e:54:ad:1f:
8a:9f:07:4c:7d:e4:d2:ca:40:98:1a:6f:79:4a:e0:50:e3:4d:
78:37:ed:0f
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCbswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRURD
MDQ1N0ExNDBCMkQ0MzZDRTdGQUU2N0Q4NDkxQ0ZGQzZFN0YzRTAeFw0yMjA3MDYw
NjQ3NThaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDQxRTdERUI1QTVFQURC
QTM3RTcxQ0JBRTkwMEM4QUMzOEFFQUVFQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDonHZNAP4A+Gd47jqhD1vhmWJsEp8lVvWYCWhLLNmFB3zn8IDh
sbKAd1JTKxlNEyYCDX2qL1iMp7T7h3dGuuTkOG8Qc/MzgyafqDZ3APF1BlxIYzaK
yf/2PuFKwPjBoW0ExptFRfAEWV2Scc58GvfdBLpbqXpQRlTKYRLQdwZ45dnGg6XC
KlQZYabb7PWS0p3UqvkbHt6zAtM2kxTFdr2R2ZMPNlR7azWAKStxtfjmdlkgdOEr
JdOcS8Zdkgre4d9Aj6DXpO/QwenOD/zS7Z9J+hrZt0CmeaaJTlAWfW2MJcbmuEvD
AI9uiUSjI8yUWMPw5gZWw6pD0iDysS0/Zz9LAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUQefetaXq26N+ccuukAyKw4rq7rgwHwYDVR0jBBgwFoAU7cBFehQLLUNs5/rm
fYSRz/xufz4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVUU1dJ
Ti83Y0JGZWhRTExVTnM1X3JtZllTUnpfeHVmejQuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBLzdjQkZlaFFMTFVOczVfcm1mWVNSel94dWZ6NC5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0xFVFNXSU4vUWVmZXRhWHEyNk4tY2N1
dWtBeUt3NHJxN3JnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGd7AjANBgkqhkiG9w0BAQsFAAOCAQEAmFCofKGAcP6n6eDbp31V1V/0n2cvG3UQ
itxuLigeHlUsMIAy6V8idHO8hzGCr+oT2zZT6Ohsrtn7d1e2TWVECCfIALtkZ10M
0boNMe/Lkzwh7Tb5ZQM9Qq+xPLZZbo4WBtO+3N0QHXFB+UwHKfRmYUr0U/T6aFit
m+FyyyRawhvI3ZBTYD7L7mBIH8lEWTgb0AkdyLkA/kzqjyPG/VpqX7YGDHt2gD0L
XXU/Qq2oWAgLKBVqA8N5DwBNx2JlCbpP0OrZVpQjQ5GZy37Zw6ELiF64jnGKv3n6
IwizBNWztIZZQQ5CJY5OVK0fip8HTH3k0spAmBpveUrgUONNeDftDw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org