Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/XCN75CTmxWDODwrIwGhg1_EpPXw.roa
File: XCN75CTmxWDODwrIwGhg1_EpPXw.roa (raw, json)
Hash identifier: bod1rFpcRQ4Lw8Xqxyn7yWE3fZn3RgqnYBa/kO4BJeg=
Subject key identifier: 5C:23:7B:E4:24:E6:C5:60:CE:0F:0A:C8:C0:68:60:D7:F1:29:3D:7C
Certificate issuer: /CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Certificate serial: 09A9
Authority key identifier: ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/XCN75CTmxWDODwrIwGhg1_EpPXw.roa
Signing time: Tue 05 Jul 2022 02:31:46 +0000
ROA not before: Tue 05 Jul 2022 02:31:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 103.123.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2473 (0x9a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Validity
Not Before: Jul 5 02:31:46 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5C237BE424E6C560CE0F0AC8C06860D7F1293D7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:93:54:51:fc:19:73:76:e8:67:d9:26:79:5c:
ff:b0:18:c2:29:e6:bc:74:5a:7a:92:cb:f7:7a:89:
a1:cc:81:4d:e0:89:d4:26:32:4c:1d:89:21:d9:8c:
f8:18:d3:1b:6d:4f:79:46:da:9e:85:f2:fb:82:1e:
4b:f8:82:a0:e0:0f:32:24:57:b4:f6:1a:b4:63:b7:
02:0f:7e:da:6f:83:e3:45:5f:50:fd:45:60:59:02:
d5:cf:87:ba:a9:43:28:9c:d3:8d:a4:03:70:9d:f6:
54:75:cd:ed:25:3e:b8:89:f1:99:21:76:86:68:52:
3d:c0:1d:95:67:df:91:47:f9:6e:cc:0a:76:73:06:
ea:43:c1:bd:f5:6b:a5:8b:4f:09:b9:75:97:4c:76:
fa:a6:95:39:4a:aa:88:3d:01:7c:61:b8:ca:7f:73:
9a:83:88:2a:a3:ee:c9:d6:ce:b0:43:57:bc:93:c7:
1d:29:da:2e:0b:8d:80:27:ed:12:83:fb:49:a3:41:
7d:dc:f1:ed:c0:5d:1e:29:f6:f6:1a:f7:ca:da:cb:
1a:ef:69:7c:56:5c:ea:40:31:e0:3d:81:75:44:8d:
cd:03:d7:84:4e:2e:11:95:f0:35:e2:6f:71:1c:ed:
8d:84:6b:ea:99:aa:7f:4a:9b:78:00:6a:cd:73:22:
28:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:23:7B:E4:24:E6:C5:60:CE:0F:0A:C8:C0:68:60:D7:F1:29:3D:7C
X509v3 Authority Key Identifier:
keyid:ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/7cBFehQLLUNs5_rmfYSRz_xufz4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/XCN75CTmxWDODwrIwGhg1_EpPXw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.0.0/24
Signature Algorithm: sha256WithRSAEncryption
86:29:b9:54:6f:d3:ed:a9:83:d5:e9:31:bd:a6:cf:36:03:22:
6d:31:59:86:5e:56:9f:ba:72:15:86:66:a9:5a:b0:7f:ec:ee:
64:56:31:f6:ba:a3:fd:a9:9b:4b:e1:d1:da:12:ce:cc:9b:1e:
ed:66:5f:59:d9:ce:93:89:7e:5c:f8:ff:18:6e:38:78:49:38:
73:cc:07:b2:0d:1a:bd:b4:86:b4:93:04:b1:e3:4e:06:0b:29:
8c:d8:36:ba:13:04:ed:9b:b2:60:83:b0:34:b9:b2:cc:18:a6:
ee:dd:86:92:d6:2f:94:85:6c:e2:47:e3:8b:00:62:76:c1:44:
f4:88:82:53:02:2e:79:75:b4:c9:96:e7:86:39:21:cd:0a:8b:
d5:e7:c3:83:fe:37:2c:b9:1e:4c:ed:73:2b:f4:b7:b4:4b:de:
1d:a3:e6:74:ac:e5:29:8c:3c:b1:b1:4b:f1:6c:f2:27:74:02:
21:9b:92:54:f3:00:96:6d:ff:85:d4:d3:07:18:c0:d0:af:0a:
c9:5e:72:4b:89:cf:d5:57:b2:54:ab:7f:c0:88:e0:3c:77:57:
64:bd:6e:71:16:71:4e:e5:4e:d9:bd:79:9d:aa:da:f3:50:61:
03:bd:6c:06:5c:91:1c:12:2b:4d:26:48:7f:e6:94:63:dc:9d:
69:bb:dc:76
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCakwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRURD
MDQ1N0ExNDBCMkQ0MzZDRTdGQUU2N0Q4NDkxQ0ZGQzZFN0YzRTAeFw0yMjA3MDUw
MjMxNDZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDVDMjM3QkU0MjRFNkM1
NjBDRTBGMEFDOEMwNjg2MEQ3RjEyOTNEN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDak1RR/Blzduhn2SZ5XP+wGMIp5rx0WnqSy/d6iaHMgU3gidQm
MkwdiSHZjPgY0xttT3lG2p6F8vuCHkv4gqDgDzIkV7T2GrRjtwIPftpvg+NFX1D9
RWBZAtXPh7qpQyic042kA3Cd9lR1ze0lPriJ8ZkhdoZoUj3AHZVn35FH+W7MCnZz
BupDwb31a6WLTwm5dZdMdvqmlTlKqog9AXxhuMp/c5qDiCqj7snWzrBDV7yTxx0p
2i4LjYAn7RKD+0mjQX3c8e3AXR4p9vYa98rayxrvaXxWXOpAMeA9gXVEjc0D14RO
LhGV8DXib3Ec7Y2Ea+qZqn9Km3gAas1zIihbAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUXCN75CTmxWDODwrIwGhg1/EpPXwwHwYDVR0jBBgwFoAU7cBFehQLLUNs5/rm
fYSRz/xufz4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVUU1dJ
Ti83Y0JGZWhRTExVTnM1X3JtZllTUnpfeHVmejQuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBLzdjQkZlaFFMTFVOczVfcm1mWVNSel94dWZ6NC5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0xFVFNXSU4vWENONzVDVG14V0RPRHdy
SXdHaGcxX0VwUFh3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGd7ADANBgkqhkiG9w0BAQsFAAOCAQEAhim5VG/T7amD1ekxvabPNgMibTFZhl5W
n7pyFYZmqVqwf+zuZFYx9rqj/ambS+HR2hLOzJse7WZfWdnOk4l+XPj/GG44eEk4
c8wHsg0avbSGtJMEseNOBgspjNg2uhME7ZuyYIOwNLmyzBim7t2GktYvlIVs4kfj
iwBidsFE9IiCUwIueXW0yZbnhjkhzQqL1efDg/43LLkeTO1zK/S3tEveHaPmdKzl
KYw8sbFL8WzyJ3QCIZuSVPMAlm3/hdTTBxjA0K8KyV5yS4nP1VeyVKt/wIjgPHdX
ZL1ucRZxTuVO2b15nara81BhA71sBlyRHBIrTSZIf+aUY9ydabvcdg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org