Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MOMOKA/bei83oLlgo7HwcROL3CkO4Y3TNk.roa
File: bei83oLlgo7HwcROL3CkO4Y3TNk.roa (raw, json)
Hash identifier: mQsJMmQnuL+nYjV96FA2hnw+jSVsi3rjT4OHlDwXIbs=
Subject key identifier: 6D:E8:BC:DE:82:E5:82:8E:C7:C1:C4:4E:2F:70:A4:3B:86:37:4C:D9
Certificate issuer: /CN=32D2C54082FCCEBB5BA954EDA20608AA4C633B6E
Certificate serial: D0
Authority key identifier: 32:D2:C5:40:82:FC:CE:BB:5B:A9:54:ED:A2:06:08:AA:4C:63:3B:6E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MtLFQIL8zrtbqVTtogYIqkxjO24.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MOMOKA/bei83oLlgo7HwcROL3CkO4Y3TNk.roa
Signing time: Wed 21 Dec 2022 13:13:15 +0000
ROA not before: Wed 21 Dec 2022 13:13:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 208137
IP address blocks: 103.179.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 208 (0xd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32D2C54082FCCEBB5BA954EDA20608AA4C633B6E
Validity
Not Before: Dec 21 13:13:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6DE8BCDE82E5828EC7C1C44E2F70A43B86374CD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d3:80:4d:aa:4f:72:1a:77:77:38:95:4a:88:
da:b5:40:a9:aa:29:2c:1f:f1:29:d1:be:2f:34:20:
65:7a:1f:d2:40:45:0d:d8:95:b4:3c:c9:7e:88:27:
9d:37:66:ad:59:02:f5:1e:8a:e7:42:7b:18:a3:9d:
3d:3c:3c:3d:c7:45:0d:94:15:0d:d6:eb:70:c9:1c:
65:83:48:b7:87:c4:e4:e1:80:4c:1b:87:f2:9f:2b:
99:93:43:6e:5b:67:78:02:9d:52:75:7e:b4:77:36:
10:51:5b:42:a2:c3:20:e4:4a:12:0f:3b:05:f4:02:
ee:a6:f1:62:42:b4:45:4e:64:87:48:14:c7:60:be:
d2:1f:8e:83:dd:af:fb:ad:9a:8a:d1:5e:c5:c3:96:
c8:29:53:0c:e7:a3:ff:dd:1f:de:e1:8b:cb:94:89:
5a:03:3e:ed:a3:ed:fe:1f:90:52:c0:07:32:21:97:
fa:8b:97:83:81:68:ae:d5:14:a7:87:08:03:5b:35:
4b:f7:53:97:3a:cd:e8:be:64:9c:9c:d1:fb:99:4c:
8c:8a:f8:68:6a:a6:75:5d:b9:bd:86:29:96:b3:d4:
9b:6e:36:2c:6f:cd:9a:5b:00:4e:a7:72:c2:61:65:
8d:12:1e:51:b3:4e:54:4d:c1:5b:f7:e2:45:28:85:
66:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E8:BC:DE:82:E5:82:8E:C7:C1:C4:4E:2F:70:A4:3B:86:37:4C:D9
X509v3 Authority Key Identifier:
keyid:32:D2:C5:40:82:FC:CE:BB:5B:A9:54:ED:A2:06:08:AA:4C:63:3B:6E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOMOKA/MtLFQIL8zrtbqVTtogYIqkxjO24.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MtLFQIL8zrtbqVTtogYIqkxjO24.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOMOKA/bei83oLlgo7HwcROL3CkO4Y3TNk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.179.29.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:79:5d:83:59:6d:9c:24:af:21:37:59:fd:c8:08:9e:b6:b7:
42:24:c2:a0:bb:0c:a1:f7:b8:ad:4a:14:6f:4d:c1:94:c4:cb:
18:8c:10:54:0e:06:62:07:e8:7d:b6:5f:82:18:ff:ae:80:ea:
b6:25:d9:fb:b8:64:12:ba:01:63:14:ac:9d:1d:8c:f1:73:f9:
06:bb:7d:ff:4d:1d:97:c5:5e:b7:c0:ed:e5:fc:af:49:5f:a0:
6c:3f:7f:1c:22:85:c8:5b:78:a0:ee:07:98:d3:8e:af:b7:11:
8b:3b:82:7d:61:37:72:31:b5:2b:e0:85:45:24:1a:d9:97:8b:
20:47:b1:0d:d0:48:d1:3c:48:94:5e:70:8b:28:69:d5:73:0e:
98:5a:0a:d7:48:a4:a6:9d:d6:14:aa:3c:61:d7:27:42:85:1c:
fd:7a:ad:57:c2:60:b5:e5:b5:1d:3c:14:61:b2:94:1b:80:8b:
d8:1a:bc:78:f2:21:17:c5:96:aa:bd:d3:ef:26:8a:24:fa:10:
39:26:38:04:af:c3:38:09:2e:e7:74:bc:55:2f:62:0c:1b:80:
fb:cf:14:57:a8:ec:bd:64:a9:19:c6:75:f8:e7:d4:59:51:5f:
77:d2:1a:f3:33:a3:8a:46:c4:73:02:4c:30:11:32:de:1e:5a:
6e:b6:0b:0d
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzJE
MkM1NDA4MkZDQ0VCQjVCQTk1NEVEQTIwNjA4QUE0QzYzM0I2RTAeFw0yMjEyMjEx
MzEzMTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDZERThCQ0RFODJFNTgy
OEVDN0MxQzQ0RTJGNzBBNDNCODYzNzRDRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDY04BNqk9yGnd3OJVKiNq1QKmqKSwf8SnRvi80IGV6H9JARQ3Y
lbQ8yX6IJ503Zq1ZAvUeiudCexijnT08PD3HRQ2UFQ3W63DJHGWDSLeHxOThgEwb
h/KfK5mTQ25bZ3gCnVJ1frR3NhBRW0KiwyDkShIPOwX0Au6m8WJCtEVOZIdIFMdg
vtIfjoPdr/utmorRXsXDlsgpUwzno//dH97hi8uUiVoDPu2j7f4fkFLABzIhl/qL
l4OBaK7VFKeHCANbNUv3U5c6zei+ZJyc0fuZTIyK+GhqpnVdub2GKZaz1JtuNixv
zZpbAE6ncsJhZY0SHlGzTlRNwVv34kUohWZlAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUbei83oLlgo7HwcROL3CkO4Y3TNkwHwYDVR0jBBgwFoAUMtLFQIL8zrtbqVTt
ogYIqkxjO24wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9NT0tB
L010TEZRSUw4enJ0YnFWVHRvZ1lJcWt4ak8yNC5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvTXRMRlFJTDh6cnRicVZUdG9nWUlxa3hqTzI0LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9NT0tBL2JlaTgzb0xsZ283SHdjUk9M
M0NrTzRZM1ROay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
sx0wDQYJKoZIhvcNAQELBQADggEBABt5XYNZbZwkryE3Wf3ICJ62t0IkwqC7DKH3
uK1KFG9NwZTEyxiMEFQOBmIH6H22X4IY/66A6rYl2fu4ZBK6AWMUrJ0djPFz+Qa7
ff9NHZfFXrfA7eX8r0lfoGw/fxwihchbeKDuB5jTjq+3EYs7gn1hN3IxtSvghUUk
GtmXiyBHsQ3QSNE8SJRecIsoadVzDphaCtdIpKad1hSqPGHXJ0KFHP16rVfCYLXl
tR08FGGylBuAi9gavHjyIRfFlqq90+8miiT6EDkmOASvwzgJLud0vFUvYgwbgPvP
FFeo7L1kqRnGdfjn1FlRX3fSGvMzo4pGxHMCTDARMt4eWm62Cw0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org