Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/VWQFJQ-mnJ07qpog_WXDfsBjBpI.roa
File: VWQFJQ-mnJ07qpog_WXDfsBjBpI.roa (raw, json)
Hash identifier: yVw/D2nE/iTxr1UDnTe8G8dqq2bc7pzvEwoR0E0bnek=
Subject key identifier: 55:64:05:25:0F:A6:9C:9D:3B:AA:9A:20:FD:65:C3:7E:C0:63:06:92
Certificate issuer: /CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F
Certificate serial: 1B
Authority key identifier: 52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/VWQFJQ-mnJ07qpog_WXDfsBjBpI.roa
Signing time: Fri 01 Jul 2022 08:52:34 +0000
ROA not before: Fri 01 Jul 2022 08:52:34 +0000
ROA not after: Tue 30 May 2023 08:32:07 +0000
asID: 45102
IP address blocks: 103.188.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27 (0x1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F
Validity
Not Before: Jul 1 08:52:34 2022 GMT
Not After : May 30 08:32:07 2023 GMT
Subject: CN=556405250FA69C9D3BAA9A20FD65C37EC0630692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d8:b9:be:c0:4f:15:2a:0f:61:f2:b6:ec:81:
39:95:d4:77:b6:be:1a:dc:e3:51:4a:a4:de:11:35:
f3:59:3a:d2:65:6f:fc:dd:c7:05:79:86:23:16:68:
c8:9a:fc:1a:c5:a3:2a:56:5f:c1:c9:5d:ce:f5:14:
d3:61:65:0c:cf:60:46:20:ce:7f:eb:9f:de:b9:7f:
12:cc:b0:3d:9c:a5:2b:6c:3f:70:93:5e:ea:2f:05:
e7:5b:d6:49:04:1b:66:c9:ca:94:c5:20:a1:0a:fd:
06:d5:8b:74:4d:0c:ae:54:41:70:33:a2:b9:31:f7:
91:3f:eb:e3:78:21:4e:af:4a:9c:43:7c:4a:da:e6:
43:a7:e3:65:21:a3:03:10:d6:a9:63:97:7a:ac:97:
07:b4:96:99:b2:25:94:a3:5e:d0:56:b2:48:22:8c:
d2:38:51:57:cd:13:0a:a9:95:6d:4b:21:18:77:1a:
51:ba:c2:8e:03:9f:62:d8:ea:ba:21:04:1f:de:1e:
58:18:a8:b5:6d:57:9b:de:81:f1:a7:69:3a:ea:95:
ba:ea:01:19:82:64:5c:6e:d1:9a:ba:cb:62:c3:b6:
7b:d6:c2:05:5e:ec:af:a0:b0:d9:5a:09:18:34:2f:
6c:9c:41:f8:59:ea:b1:c3:d6:08:03:1f:69:64:e1:
35:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:64:05:25:0F:A6:9C:9D:3B:AA:9A:20:FD:65:C3:7E:C0:63:06:92
X509v3 Authority Key Identifier:
keyid:52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/VWQFJQ-mnJ07qpog_WXDfsBjBpI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.188.120.0/23
Signature Algorithm: sha256WithRSAEncryption
24:8c:9a:d6:0d:9a:6c:23:5c:5b:08:8b:4c:f4:ff:c9:da:e5:
3f:90:0d:75:f3:4c:52:d4:80:57:0b:58:16:da:bc:be:90:b3:
b8:c8:77:e3:a3:bb:37:a1:8e:3f:b7:1c:27:0a:a4:79:51:b8:
92:23:9c:42:0d:66:e5:ec:01:55:82:d1:9c:9f:f3:0c:b0:e4:
6e:0b:9c:1c:95:67:56:17:f8:49:d8:aa:1d:78:c4:bf:5f:50:
6f:91:e2:b4:10:38:14:79:50:79:36:09:9a:79:5b:74:76:3b:
40:51:b6:9b:0e:c7:52:f8:f8:ce:9f:6d:5c:f5:fc:6a:de:72:
63:26:84:ee:64:1f:38:8e:e3:ef:68:84:f8:dc:14:98:4c:03:
58:1f:c4:8a:c1:ff:4c:e2:82:a7:d0:2a:d1:c8:98:54:5d:fc:
16:02:22:62:be:fb:f5:32:15:15:eb:b9:b9:25:f9:ed:ca:32:
ff:b3:6c:1e:30:aa:c3:eb:21:74:fb:75:8e:30:c7:24:10:22:
8b:b7:33:7a:9d:a5:84:0c:ca:1c:7d:e9:66:e4:8f:b4:31:b0:
52:25:96:98:4b:b2:9d:de:51:33:8f:58:c6:fe:5d:98:6d:43:
d4:fc:dd:cd:0f:4d:35:f1:54:ce:92:b5:e8:39:3a:b6:68:ab:
3c:a8:e8:7e
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIBGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1MkY5
QTcyNzMxN0E3NjhERDg5NDAzQjBEOTlDQUFGQTBCRjcyOTFGMB4XDTIyMDcwMTA4
NTIzNFoXDTIzMDUzMDA4MzIwN1owMzExMC8GA1UEAxMoNTU2NDA1MjUwRkE2OUM5
RDNCQUE5QTIwRkQ2NUMzN0VDMDYzMDY5MjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMHYub7ATxUqD2HytuyBOZXUd7a+GtzjUUqk3hE181k60mVv/N3H
BXmGIxZoyJr8GsWjKlZfwcldzvUU02FlDM9gRiDOf+uf3rl/EsywPZylK2w/cJNe
6i8F51vWSQQbZsnKlMUgoQr9BtWLdE0MrlRBcDOiuTH3kT/r43ghTq9KnEN8Strm
Q6fjZSGjAxDWqWOXeqyXB7SWmbIllKNe0FaySCKM0jhRV80TCqmVbUshGHcaUbrC
jgOfYtjquiEEH94eWBiotW1Xm96B8adpOuqVuuoBGYJkXG7RmrrLYsO2e9bCBV7s
r6Cw2VoJGDQvbJxB+FnqscPWCAMfaWThNb8CAwEAAaOCAfAwggHsMB0GA1UdDgQW
BBRVZAUlD6acnTuqmiD9ZcN+wGMGkjAfBgNVHSMEGDAWgBRS+acnMXp2jdiUA7DZ
nKr6C/cpHzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ
oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NQUlGRU5H
L1V2bW5KekY2ZG8zWWxBT3cyWnlxLWd2M0tSOC5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvVXZtbkp6RjZkbzNZbEFPdzJaeXEtZ3YzS1I4LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFJRkVORy9WV1FGSlEtbW5KMDdxcG9n
X1dYRGZzQmpCcEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu
dHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
Z7x4MA0GCSqGSIb3DQEBCwUAA4IBAQAkjJrWDZpsI1xbCItM9P/J2uU/kA1180xS
1IBXC1gW2ry+kLO4yHfjo7s3oY4/txwnCqR5UbiSI5xCDWbl7AFVgtGcn/MMsORu
C5wclWdWF/hJ2KodeMS/X1BvkeK0EDgUeVB5NgmaeVt0djtAUbabDsdS+PjOn21c
9fxq3nJjJoTuZB84juPvaIT43BSYTANYH8SKwf9M4oKn0CrRyJhUXfwWAiJivvv1
MhUV67m5JfntyjL/s2weMKrD6yF0+3WOMMckECKLtzN6naWEDMocfelm5I+0MbBS
JZaYS7Kd3lEzj1jG/l2YbUPU/N3ND0018VTOkrXoOTq2aKs8qOh+
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org