Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MOBATW/2X0ijQy1FwlYepAXtF8m8hq94D4.roa
File: 2X0ijQy1FwlYepAXtF8m8hq94D4.roa (raw, json)
Hash identifier: IVXw8xop85QZJvk892g3N57oUX8GPLNAprZKe+ODWjY=
Subject key identifier: D9:7D:22:8D:0C:B5:17:09:58:7A:90:17:B4:5F:26:F2:1A:BD:E0:3E
Certificate issuer: /CN=A05E66CFA6F8C0DAABFB1AF6FA3218426044F158
Certificate serial: 0F61
Authority key identifier: A0:5E:66:CF:A6:F8:C0:DA:AB:FB:1A:F6:FA:32:18:42:60:44:F1:58
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/2X0ijQy1FwlYepAXtF8m8hq94D4.roa
Signing time: Thu 15 Sep 2022 02:40:45 +0000
ROA not before: Thu 15 Sep 2022 02:40:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131634
IP address blocks: 103.127.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3937 (0xf61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A05E66CFA6F8C0DAABFB1AF6FA3218426044F158
Validity
Not Before: Sep 15 02:40:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D97D228D0CB51709587A9017B45F26F21ABDE03E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f0:17:58:17:95:33:f5:c1:db:92:f9:32:57:
e2:de:b6:68:0d:93:88:37:45:33:35:4a:69:b5:ab:
56:25:92:e7:36:30:c5:36:c1:d0:3f:66:08:38:38:
77:28:40:2e:50:bb:5f:b3:67:b3:d4:7f:a7:77:96:
b1:f5:b7:ee:80:cf:12:90:09:f7:86:f7:c9:85:58:
e9:61:e1:8e:aa:a7:ee:71:9b:85:83:6a:83:75:d2:
54:7e:90:a8:84:b3:7f:8e:95:1a:97:dd:20:60:63:
09:13:8a:86:06:dd:4c:60:eb:61:c3:61:f1:3c:a0:
ca:ea:11:9b:20:bb:24:47:b7:0c:23:fb:d8:77:51:
17:55:1c:86:6b:2e:5f:b2:b5:65:6b:81:a2:dd:08:
53:55:76:2b:14:5d:56:8e:d1:69:fc:c4:3f:a7:31:
a1:20:56:74:d2:02:36:79:4c:51:ed:6c:ec:a1:ef:
90:93:ad:54:ae:c2:af:5a:bd:bb:7b:cf:db:cb:ea:
98:1f:21:c2:62:34:41:13:e5:c5:6b:42:af:72:89:
76:4f:5b:93:61:48:84:29:10:04:da:1b:fa:58:ed:
83:15:25:06:d6:19:ab:0f:f2:82:80:57:24:a0:10:
27:b9:c9:6c:d5:52:f1:58:d6:bc:37:ce:9f:06:fd:
fc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:7D:22:8D:0C:B5:17:09:58:7A:90:17:B4:5F:26:F2:1A:BD:E0:3E
X509v3 Authority Key Identifier:
keyid:A0:5E:66:CF:A6:F8:C0:DA:AB:FB:1A:F6:FA:32:18:42:60:44:F1:58
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/2X0ijQy1FwlYepAXtF8m8hq94D4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.228.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:b2:51:1b:1d:70:b0:05:ac:b7:af:40:de:23:43:4d:dc:3d:
74:12:01:86:91:5a:c0:13:da:40:83:e1:7f:e5:d8:a5:a4:d6:
00:5c:09:36:96:22:59:a7:e8:8e:37:9a:3b:47:9c:77:fd:ee:
be:db:63:fe:1a:20:10:82:b4:67:0f:f8:95:34:2f:99:f8:5e:
25:fd:74:42:6d:68:0f:ff:54:45:e1:b0:8c:e5:34:bf:3e:d6:
1c:84:72:59:58:ef:e0:c3:1b:a7:b1:95:10:a2:d3:d2:9c:e2:
b4:b4:50:f7:f0:44:9a:80:48:fd:a6:2d:b0:42:a3:0c:99:6e:
23:71:fc:20:9c:cf:ea:5c:28:30:0d:60:87:ad:76:c1:85:84:
b5:57:18:32:76:a5:ac:f6:9a:b8:7a:e0:bc:a7:aa:1f:5b:c6:
86:3b:cd:63:b4:aa:43:1b:40:e6:a9:13:32:28:b8:56:fc:65:
56:17:8a:b8:8b:5b:d6:0c:72:d7:77:83:f7:64:40:2b:b8:4b:
db:5b:9d:61:92:9a:d4:97:4c:77:23:b6:55:1e:6e:1b:5f:75:
3f:7c:50:97:53:c2:6c:6b:ac:8a:19:67:eb:54:4c:06:29:07:
97:95:b3:ed:1b:99:d3:fa:ff:62:73:98:1d:86:16:27:93:1f:
c2:03:81:53
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICD2EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTA1
RTY2Q0ZBNkY4QzBEQUFCRkIxQUY2RkEzMjE4NDI2MDQ0RjE1ODAeFw0yMjA5MTUw
MjQwNDVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQ5N0QyMjhEMENCNTE3
MDk1ODdBOTAxN0I0NUYyNkYyMUFCREUwM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCo8BdYF5Uz9cHbkvkyV+LetmgNk4g3RTM1Smm1q1Ylkuc2MMU2
wdA/Zgg4OHcoQC5Qu1+zZ7PUf6d3lrH1t+6AzxKQCfeG98mFWOlh4Y6qp+5xm4WD
aoN10lR+kKiEs3+OlRqX3SBgYwkTioYG3Uxg62HDYfE8oMrqEZsguyRHtwwj+9h3
URdVHIZrLl+ytWVrgaLdCFNVdisUXVaO0Wn8xD+nMaEgVnTSAjZ5TFHtbOyh75CT
rVSuwq9avbt7z9vL6pgfIcJiNEET5cVrQq9yiXZPW5NhSIQpEATaG/pY7YMVJQbW
GasP8oKAVySgECe5yWzVUvFY1rw3zp8G/fzfAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU2X0ijQy1FwlYepAXtF8m8hq94D4wHwYDVR0jBBgwFoAUoF5mz6b4wNqr+xr2
+jIYQmBE8VgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9CQVRX
L29GNW16NmI0d05xci14cjItaklZUW1CRThWZy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0Evb0Y1bXo2YjR3TnFyLXhyMi1qSVlRbUJFOFZnLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9CQVRXLzJYMGlqUXkxRndsWWVwQVh0
RjhtOGhxOTRENC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn
f+QwDQYJKoZIhvcNAQELBQADggEBAI+yURsdcLAFrLevQN4jQ03cPXQSAYaRWsAT
2kCD4X/l2KWk1gBcCTaWIlmn6I43mjtHnHf97r7bY/4aIBCCtGcP+JU0L5n4XiX9
dEJtaA//VEXhsIzlNL8+1hyEcllY7+DDG6exlRCi09Kc4rS0UPfwRJqASP2mLbBC
owyZbiNx/CCcz+pcKDANYIetdsGFhLVXGDJ2paz2mrh64Lynqh9bxoY7zWO0qkMb
QOapEzIouFb8ZVYXiriLW9YMctd3g/dkQCu4S9tbnWGSmtSXTHcjtlUebhtfdT98
UJdTwmxrrIoZZ+tUTAYpB5eVs+0bmdP6/2JzmB2GFieTH8IDgVM=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:29 2025 by rpki-client