Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/89ImyKph4LIw3_lvf0GKvi4CrY8.roa
File: 89ImyKph4LIw3_lvf0GKvi4CrY8.roa (raw, json)
Hash identifier: ubEbhdvk+hrKBRFcv+NcgCV5hNTmWjK4qQKa7XMLCYQ=
Subject key identifier: F3:D2:26:C8:AA:61:E0:B2:30:DF:F9:6F:7F:41:8A:BE:2E:02:AD:8F
Certificate issuer: /CN=98A5C390143149481DE79BC17BB62DBA2271F61F
Certificate serial: 03
Authority key identifier: 98:A5:C3:90:14:31:49:48:1D:E7:9B:C1:7B:B6:2D:BA:22:71:F6:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/89ImyKph4LIw3_lvf0GKvi4CrY8.roa
Signing time: Tue 05 Jan 2021 07:15:18 +0000
ROA not before: Tue 05 Jan 2021 07:15:18 +0000
ROA not after: Thu 02 Dec 2021 03:52:36 +0000
asID: 131618
IP address blocks: 103.159.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98A5C390143149481DE79BC17BB62DBA2271F61F
Validity
Not Before: Jan 5 07:15:18 2021 GMT
Not After : Dec 2 03:52:36 2021 GMT
Subject: CN=F3D226C8AA61E0B230DFF96F7F418ABE2E02AD8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c6:0f:5c:c2:66:13:14:7b:d2:7b:17:f9:e6:
cb:20:a0:d4:d5:1d:b5:2c:f1:41:19:f5:10:11:e9:
96:97:3e:05:8c:75:f9:e6:a6:76:2c:b5:1a:44:86:
56:3d:21:cc:ba:b3:8d:05:11:60:e4:cd:b3:f7:e8:
fd:f4:10:69:c0:fd:5d:e1:3d:04:3f:cb:42:56:00:
e9:83:d5:69:ed:97:cb:b4:28:1c:22:56:80:4a:45:
5e:b7:ba:4e:42:2c:ca:bc:ac:4f:7a:ee:44:76:52:
8b:27:15:26:86:88:c4:1c:ed:c3:22:00:00:0f:86:
c1:56:90:ed:00:d9:ad:59:5d:c8:cc:6a:48:79:ed:
92:0f:7a:42:f5:78:f4:54:6a:f6:86:de:48:ee:65:
34:7f:be:f6:02:8b:0e:26:94:3d:0b:9d:8a:60:66:
e3:d9:16:10:eb:fe:2c:25:6d:c0:4d:a2:9f:6a:b9:
d9:95:fa:95:19:e8:18:cf:9f:f7:e3:55:46:39:23:
3f:7b:b0:94:d1:81:dc:81:1c:5a:35:a9:23:fc:d8:
16:57:16:34:12:10:21:40:bb:dc:2b:f9:a2:9e:34:
30:ea:98:dc:ac:60:40:cb:ef:8a:17:7d:77:2a:a6:
4a:e1:97:c3:2a:31:cf:58:c6:38:0f:6a:14:36:fe:
55:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D2:26:C8:AA:61:E0:B2:30:DF:F9:6F:7F:41:8A:BE:2E:02:AD:8F
X509v3 Authority Key Identifier:
keyid:98:A5:C3:90:14:31:49:48:1D:E7:9B:C1:7B:B6:2D:BA:22:71:F6:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/mKXDkBQxSUgd55vBe7YtuiJx9h8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/89ImyKph4LIw3_lvf0GKvi4CrY8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.120.0/23
Signature Algorithm: sha256WithRSAEncryption
92:ee:5a:6e:86:7a:34:88:a5:0a:d8:76:03:ee:3f:35:ba:14:
a8:61:2e:67:d9:ed:5f:bf:5a:f4:ba:62:68:97:5b:87:39:ad:
a9:df:15:ee:8f:32:bc:a7:63:db:33:c8:56:2e:1f:dd:d8:47:
c3:02:ef:d3:66:a0:ba:cf:5a:e6:b9:ce:c8:4a:82:c8:c5:38:
a4:5b:ce:95:d6:03:f7:ac:ad:a0:cc:02:d1:ea:7d:1e:bf:53:
6b:88:6c:53:e1:8f:8c:aa:f4:8c:5e:f0:6e:e0:7b:db:05:d4:
0f:fe:a7:ac:ac:dd:b3:76:12:f7:ec:93:ef:ac:cc:da:8c:f8:
be:08:72:e6:e0:00:fb:bf:92:4b:16:5f:5e:56:3d:7a:1d:59:
74:56:4a:ac:39:a1:73:e4:d6:17:1c:a3:94:19:b9:3c:74:3d:
d0:78:c1:cf:fd:60:e9:6a:85:7d:3f:50:ea:cc:c9:1f:64:d8:
db:b9:7e:df:10:cd:39:94:7c:d6:ad:44:9a:d0:74:d4:6d:08:
42:51:79:14:7f:14:6b:40:8c:32:be:35:fc:9e:c0:4f:0c:05:
f4:32:bb:e8:14:0b:24:7c:92:da:46:51:da:19:8a:a1:c6:d5:
ab:bc:50:d5:a6:15:c6:31:9a:34:28:2c:81:b3:bb:84:cc:b5:
f7:18:97:9f
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5OEE1
QzM5MDE0MzE0OTQ4MURFNzlCQzE3QkI2MkRCQTIyNzFGNjFGMB4XDTIxMDEwNTA3
MTUxOFoXDTIxMTIwMjAzNTIzNlowMzExMC8GA1UEAxMoRjNEMjI2QzhBQTYxRTBC
MjMwREZGOTZGN0Y0MThBQkUyRTAyQUQ4RjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANHGD1zCZhMUe9J7F/nmyyCg1NUdtSzxQRn1EBHplpc+BYx1+eam
diy1GkSGVj0hzLqzjQURYOTNs/fo/fQQacD9XeE9BD/LQlYA6YPVae2Xy7QoHCJW
gEpFXre6TkIsyrysT3ruRHZSiycVJoaIxBztwyIAAA+GwVaQ7QDZrVldyMxqSHnt
kg96QvV49FRq9obeSO5lNH++9gKLDiaUPQudimBm49kWEOv+LCVtwE2in2q52ZX6
lRnoGM+f9+NVRjkjP3uwlNGB3IEcWjWpI/zYFlcWNBIQIUC73Cv5op40MOqY3Kxg
QMvvihd9dyqmSuGXwyoxz1jGOA9qFDb+Va8CAwEAAaOCAfAwggHsMB0GA1UdDgQW
BBTz0ibIqmHgsjDf+W9/QYq+LgKtjzAfBgNVHSMEGDAWgBSYpcOQFDFJSB3nm8F7
ti26InH2HzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ
oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NWVNFTlNF
L21LWERrQlF4U1VnZDU1dkJlN1l0dWlKeDloOC5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbUtYRGtCUXhTVWdkNTV2QmU3WXR1aUp4OWg4LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTVlTRU5TRS84OUlteUtwaDRMSXczX2x2
ZjBHS3ZpNENyWTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu
dHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
Z594MA0GCSqGSIb3DQEBCwUAA4IBAQCS7lpuhno0iKUK2HYD7j81uhSoYS5n2e1f
v1r0umJol1uHOa2p3xXujzK8p2PbM8hWLh/d2EfDAu/TZqC6z1rmuc7ISoLIxTik
W86V1gP3rK2gzALR6n0ev1NriGxT4Y+MqvSMXvBu4HvbBdQP/qesrN2zdhL37JPv
rMzajPi+CHLm4AD7v5JLFl9eVj16HVl0VkqsOaFz5NYXHKOUGbk8dD3QeMHP/WDp
aoV9P1DqzMkfZNjbuX7fEM05lHzWrUSa0HTUbQhCUXkUfxRrQIwyvjX8nsBPDAX0
MrvoFAskfJLaRlHaGYqhxtWrvFDVphXGMZo0KCyBs7uEzLX3GJef
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org