Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MCK/2NiVp2uuF34fPO4JvmhK41vs_DQ.roa
File: 2NiVp2uuF34fPO4JvmhK41vs_DQ.roa (raw, json)
Hash identifier: htXMsfT5IGNJX96GMnMhcwnXmVC2fRscRk9rn9un1cs=
Subject key identifier: D8:D8:95:A7:6B:AE:17:7E:1F:3C:EE:09:BE:68:4A:E3:5B:EC:FC:34
Certificate issuer: /CN=83CF8C19843BACDE6445D4BD4A1E66441B23F3E3
Certificate serial: 027A
Authority key identifier: 83:CF:8C:19:84:3B:AC:DE:64:45:D4:BD:4A:1E:66:44:1B:23:F3:E3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/2NiVp2uuF34fPO4JvmhK41vs_DQ.roa
Signing time: Thu 13 Aug 2020 05:08:29 +0000
ROA not before: Thu 13 Aug 2020 05:08:29 +0000
ROA not after: Tue 06 Apr 2021 07:42:02 +0000
asID: 131618
IP address blocks: 103.148.68.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 634 (0x27a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83CF8C19843BACDE6445D4BD4A1E66441B23F3E3
Validity
Not Before: Aug 13 05:08:29 2020 GMT
Not After : Apr 6 07:42:02 2021 GMT
Subject: CN=D8D895A76BAE177E1F3CEE09BE684AE35BECFC34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f5:d3:ee:ee:48:37:6f:60:de:d5:dc:ae:5c:
a0:02:f9:37:7b:a1:ad:e9:2d:68:a7:c7:c1:53:07:
2a:2f:bd:e7:e2:16:91:af:25:66:09:18:e2:73:d5:
73:c2:c1:dc:0e:f1:9a:ea:94:64:76:86:80:c0:79:
a4:0f:29:ca:2f:67:0c:82:22:89:7e:23:12:1b:cf:
9a:ac:5d:59:d7:c0:e9:5d:cc:58:78:aa:9e:36:58:
00:99:31:17:15:6b:b3:bc:df:c5:7a:41:3e:ee:d9:
af:03:d0:3a:12:1d:87:f0:0f:d3:de:ff:03:f9:81:
dd:09:74:6c:3a:82:f1:c5:7f:f2:ea:70:b2:bc:32:
c0:49:f5:99:e5:03:f7:23:22:55:f7:16:ef:53:c3:
03:5c:69:64:56:14:c5:17:8d:a5:a3:d8:30:1f:9a:
e8:da:ca:23:05:66:39:05:ee:c0:34:ad:1f:96:9b:
28:61:98:32:08:0b:be:39:64:8e:f4:81:d9:51:0c:
62:d7:d0:44:93:0a:52:bf:86:fc:6b:94:70:55:8e:
2e:80:4e:29:d5:50:53:b6:44:ed:8b:04:82:53:bc:
7b:f0:8e:33:f9:28:c1:7c:57:51:6b:cd:57:dc:cd:
d9:78:ee:ae:66:fb:f9:2d:41:2a:1a:31:be:80:67:
36:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D8:95:A7:6B:AE:17:7E:1F:3C:EE:09:BE:68:4A:E3:5B:EC:FC:34
X509v3 Authority Key Identifier:
keyid:83:CF:8C:19:84:3B:AC:DE:64:45:D4:BD:4A:1E:66:44:1B:23:F3:E3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/2NiVp2uuF34fPO4JvmhK41vs_DQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.148.68.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:29:38:2f:37:20:bb:99:3a:25:25:ea:12:0a:e7:17:82:84:
c5:ae:53:b1:5a:a5:6a:ab:16:49:e6:44:b8:c4:1c:11:38:aa:
f0:24:78:69:1c:f3:4f:77:94:14:6d:b5:f1:37:5b:5e:f1:f4:
8d:93:90:00:ae:07:8a:55:88:2c:0b:98:5c:d8:1a:e2:84:46:
5e:29:23:30:9d:27:71:ad:74:06:49:be:ae:20:55:01:a9:fa:
6d:9d:11:41:38:d3:21:0e:c4:75:8f:c9:a6:14:7c:8e:c2:f0:
af:33:fd:37:11:01:47:b8:76:7a:16:6a:1a:10:3a:22:37:99:
d9:70:6f:ef:dd:84:51:b1:43:90:5f:0b:11:57:d1:92:a5:f2:
00:c7:01:b9:c4:d5:25:32:87:45:b4:c9:91:49:ad:b7:b0:5e:
c0:30:19:7b:f2:ee:1e:4c:e8:b2:34:11:25:6b:82:c3:e2:8d:
20:cf:91:37:fe:00:c6:2b:db:96:23:13:97:f7:b5:6d:3f:32:
f5:2c:87:92:56:36:b2:e5:96:89:5a:8b:d5:34:f6:98:31:bf:
95:eb:5e:16:ff:4b:98:3f:84:c9:8f:61:31:d9:65:30:e2:1b:
7a:31:03:01:9b:15:d8:b3:53:e0:35:2c:ea:da:9e:c0:0b:6d:
01:b4:2c:ab
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICAnowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODND
RjhDMTk4NDNCQUNERTY0NDVENEJENEExRTY2NDQxQjIzRjNFMzAeFw0yMDA4MTMw
NTA4MjlaFw0yMTA0MDYwNzQyMDJaMDMxMTAvBgNVBAMTKEQ4RDg5NUE3NkJBRTE3
N0UxRjNDRUUwOUJFNjg0QUUzNUJFQ0ZDMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDD9dPu7kg3b2De1dyuXKAC+Td7oa3pLWinx8FTByovvefiFpGv
JWYJGOJz1XPCwdwO8ZrqlGR2hoDAeaQPKcovZwyCIol+IxIbz5qsXVnXwOldzFh4
qp42WACZMRcVa7O838V6QT7u2a8D0DoSHYfwD9Pe/wP5gd0JdGw6gvHFf/LqcLK8
MsBJ9ZnlA/cjIlX3Fu9TwwNcaWRWFMUXjaWj2DAfmujayiMFZjkF7sA0rR+Wmyhh
mDIIC745ZI70gdlRDGLX0ESTClK/hvxrlHBVji6ATinVUFO2RO2LBIJTvHvwjjP5
KMF8V1FrzVfczdl47q5m+/ktQSoaMb6AZzYdAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU2NiVp2uuF34fPO4JvmhK41vs/DQwHwYDVR0jBBgwFoAUg8+MGYQ7rN5kRdS9
Sh5mRBsj8+MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUNLL2c4
LU1HWVE3ck41a1JkUzlTaDVtUkJzajgtTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZzgtTUdZUTdyTjVrUmRTOVNoNW1SQnNqOC1NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvTUNLLzJOaVZwMnV1RjM0ZlBPNEp2bWhLNDF2
c19EUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlEQwDQYJ
KoZIhvcNAQELBQADggEBAF8pOC83ILuZOiUl6hIK5xeChMWuU7FapWqrFknmRLjE
HBE4qvAkeGkc8093lBRttfE3W17x9I2TkACuB4pViCwLmFzYGuKERl4pIzCdJ3Gt
dAZJvq4gVQGp+m2dEUE40yEOxHWPyaYUfI7C8K8z/TcRAUe4dnoWahoQOiI3mdlw
b+/dhFGxQ5BfCxFX0ZKl8gDHAbnE1SUyh0W0yZFJrbewXsAwGXvy7h5M6LI0ESVr
gsPijSDPkTf+AMYr25YjE5f3tW0/MvUsh5JWNrLllolai9U09pgxv5XrXhb/S5g/
hMmPYTHZZTDiG3oxAwGbFdizU+A1LOransALbQG0LKs=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org