Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/w1jWHrQwGmUlWSXWiqdnFH4d670.roa
File: w1jWHrQwGmUlWSXWiqdnFH4d670.roa (raw, json)
Hash identifier: ivCRQjmn5ilgbEcaN2EBDadCtHfn+1koKR4VvVBVM/Q=
Subject key identifier: C3:58:D6:1E:B4:30:1A:65:25:59:25:D6:8A:A7:67:14:7E:1D:EB:BD
Certificate issuer: /CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Certificate serial: 0953
Authority key identifier: 6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/w1jWHrQwGmUlWSXWiqdnFH4d670.roa
Signing time: Wed 29 Sep 2021 02:53:14 +0000
ROA not before: Wed 29 Sep 2021 02:53:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18179
IP address blocks: 103.20.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2387 (0x953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Validity
Not Before: Sep 29 02:53:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C358D61EB4301A65255925D68AA767147E1DEBBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e1:f1:33:d6:ed:86:ba:e3:ec:c6:73:d3:12:
07:94:0f:ed:be:ec:be:bc:f4:1b:45:41:e9:7e:ed:
bd:6d:a2:87:f0:02:0f:3c:6a:47:10:90:09:e8:6a:
b8:49:61:18:34:30:1b:96:3c:a7:9c:c9:f1:03:c1:
3c:a4:cd:4d:3f:92:7c:71:90:c8:48:f5:12:16:03:
e2:de:08:e2:7a:2b:6b:c7:ef:27:31:bd:92:33:ae:
e8:1a:db:0c:cc:85:a0:51:24:b4:40:77:ad:10:51:
05:2b:7e:bd:49:f7:85:a1:f3:80:55:19:f1:11:b5:
21:b1:f6:ab:7c:3a:2e:90:9e:a2:6f:6f:75:5e:c6:
ef:31:c6:e4:df:86:17:e1:1e:b3:db:a3:39:7b:78:
87:01:3e:17:dd:51:a3:d3:34:5c:0b:4a:1b:ef:d1:
70:19:76:dc:3d:6f:86:82:1c:6f:b9:35:c7:a2:02:
99:4a:db:b6:82:38:05:f1:75:6e:80:d7:4e:fd:02:
16:a1:83:95:b3:82:00:1f:da:ea:6c:13:ed:9c:20:
f5:d4:74:d4:d4:e3:72:65:57:18:ee:d4:cd:4e:41:
f9:70:97:20:ec:a4:5d:63:38:e2:6e:73:f6:14:0c:
be:90:99:3a:7e:aa:7c:55:43:e5:f1:fd:09:10:bb:
61:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:58:D6:1E:B4:30:1A:65:25:59:25:D6:8A:A7:67:14:7E:1D:EB:BD
X509v3 Authority Key Identifier:
keyid:6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/bWxcv87Lp5h5UREtqhh__LYgTiY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/w1jWHrQwGmUlWSXWiqdnFH4d670.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.20.176.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:d4:17:d4:84:ac:40:99:de:ab:53:32:4d:aa:95:4d:89:f4:
fd:40:d4:77:b7:36:8b:71:9c:84:2a:80:3d:1f:fc:46:0e:3b:
c5:d6:03:9e:f7:ac:ce:eb:5b:09:3b:87:70:ca:2b:59:fd:ad:
a8:87:0c:a9:d2:02:1a:f0:7d:5d:7d:f1:cd:ed:f3:34:64:b2:
5e:54:e7:d6:d1:dc:b2:41:f3:4f:74:af:63:05:fd:ec:80:e4:
70:0f:4a:cf:46:40:9a:76:08:46:7a:20:64:12:fe:7c:94:89:
f1:ec:8e:73:80:06:3c:2b:e2:55:61:55:81:70:e9:36:07:62:
16:d8:d6:f1:0a:fe:1a:0d:1a:8a:73:fd:fb:a6:6c:47:a6:b7:
59:a8:83:03:86:d1:83:31:10:a6:6c:ba:58:5c:bc:22:77:c4:
a9:bd:ca:a5:8d:17:ff:d6:37:02:d2:35:8c:f6:d0:1c:2a:27:
cd:07:e6:8f:74:b8:5b:44:98:4a:f3:c2:7b:df:b3:1d:ba:11:
90:b9:77:72:f8:b7:4f:58:6d:36:2d:ba:19:6d:00:59:c7:9a:
99:48:e2:f7:c2:dd:44:80:28:20:94:81:dc:d7:9c:cf:f0:5e:
01:80:ec:74:c9:ee:91:26:5c:47:e6:f7:45:ec:0a:fe:26:eb:
bf:11:31:a2
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCVMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkQ2
QzVDQkZDRUNCQTc5ODc5NTExMTJEQUExODdGRkNCNjIwNEUyNjAeFw0yMTA5Mjkw
MjUzMTRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEMzNThENjFFQjQzMDFB
NjUyNTU5MjVENjhBQTc2NzE0N0UxREVCQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDM4fEz1u2GuuPsxnPTEgeUD+2+7L689BtFQel+7b1toofwAg88
akcQkAnoarhJYRg0MBuWPKecyfEDwTykzU0/knxxkMhI9RIWA+LeCOJ6K2vH7ycx
vZIzruga2wzMhaBRJLRAd60QUQUrfr1J94Wh84BVGfERtSGx9qt8Oi6QnqJvb3Ve
xu8xxuTfhhfhHrPbozl7eIcBPhfdUaPTNFwLShvv0XAZdtw9b4aCHG+5NceiAplK
27aCOAXxdW6A1079Ahahg5WzggAf2upsE+2cIPXUdNTU43JlVxju1M1OQflwlyDs
pF1jOOJuc/YUDL6QmTp+qnxVQ+Xx/QkQu2HxAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUw1jWHrQwGmUlWSXWiqdnFH4d670wHwYDVR0jBBgwFoAUbWxcv87Lp5h5UREt
qhh//LYgTiYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlUQUNN
REMvYld4Y3Y4N0xwNWg1VVJFdHFoaF9fTFlnVGlZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9iV3hjdjg3THA1aDVVUkV0cWhoX19MWWdUaVkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSVRBQ01EQy93MWpXSHJRd0dtVWxX
U1hXaXFkbkZINGQ2NzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZxSwMA0GCSqGSIb3DQEBCwUAA4IBAQAN1BfUhKxAmd6rUzJNqpVNifT9QNR3
tzaLcZyEKoA9H/xGDjvF1gOe96zO61sJO4dwyitZ/a2ohwyp0gIa8H1dffHN7fM0
ZLJeVOfW0dyyQfNPdK9jBf3sgORwD0rPRkCadghGeiBkEv58lInx7I5zgAY8K+JV
YVWBcOk2B2IW2NbxCv4aDRqKc/37pmxHprdZqIMDhtGDMRCmbLpYXLwid8Spvcql
jRf/1jcC0jWM9tAcKifNB+aPdLhbRJhK88J737MduhGQuXdy+LdPWG02LboZbQBZ
x5qZSOL3wt1EgCgglIHc15zP8F4BgOx0ye6RJlxH5vdF7Ar+Juu/ETGi
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:28 2025 by rpki-client