Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/s-iPg9Mv40CaHKM7_xnbXoezV14.roa
File: s-iPg9Mv40CaHKM7_xnbXoezV14.roa (raw, json)
Hash identifier: wvUz5K+CEYq30vsrYP/LXChAVPynSa4or5Aed71sJPo=
Subject key identifier: B3:E8:8F:83:D3:2F:E3:40:9A:1C:A3:3B:FF:19:DB:5E:87:B3:57:5E
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 08BA
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/s-iPg9Mv40CaHKM7_xnbXoezV14.roa
Signing time: Sun 07 Feb 2021 11:54:54 +0000
ROA not before: Sun 07 Feb 2021 11:54:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7539
IP address blocks: 203.145.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2234 (0x8ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Feb 7 11:54:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B3E88F83D32FE3409A1CA33BFF19DB5E87B3575E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e1:c5:02:2c:41:da:47:e6:ec:c0:81:04:51:
ad:94:61:49:da:23:ec:ad:cc:6e:7a:54:d1:59:72:
bc:a3:9c:46:23:19:ad:29:8b:b0:7e:47:bb:1a:9d:
77:e4:2b:98:ba:9a:2b:32:4a:1d:e6:7f:40:a1:fd:
2f:78:8f:20:42:14:14:73:c0:64:9c:c7:e1:27:66:
e5:ba:64:bc:db:08:b7:51:b0:a0:ea:52:79:99:3c:
ea:30:5f:1d:fa:59:ce:44:c0:39:ea:46:0a:6d:79:
72:21:e0:10:ff:e0:80:7e:9e:87:d2:48:d3:8c:57:
c9:2d:ba:c8:df:ae:1c:4f:fe:9d:29:04:56:4e:45:
e5:7b:c1:26:25:2c:d7:01:72:fa:30:fa:30:f5:cd:
63:52:c7:6f:cb:61:9b:0b:c1:a8:63:37:39:c4:8f:
a4:78:13:a4:8d:56:53:88:d9:17:39:e5:75:50:11:
40:05:fd:92:77:02:d8:7a:55:90:b0:6e:cf:6a:e2:
e9:76:0f:1b:b2:84:8a:34:05:e7:db:d9:dd:e4:e6:
48:56:b5:55:91:45:9b:9c:be:53:1d:1e:86:b5:99:
25:04:d1:21:92:98:67:ab:1f:2b:e2:c8:f1:4a:4e:
45:18:88:0d:01:8f:7c:e3:ca:fd:39:74:80:14:65:
57:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:E8:8F:83:D3:2F:E3:40:9A:1C:A3:3B:FF:19:DB:5E:87:B3:57:5E
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/s-iPg9Mv40CaHKM7_xnbXoezV14.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.145.208.0/20
Signature Algorithm: sha256WithRSAEncryption
23:41:fa:f3:c0:7d:4d:a2:cc:57:e2:0e:a9:38:ca:25:18:cc:
5d:3c:87:47:04:9d:67:e6:d3:d7:1e:4e:0e:51:e1:47:97:d5:
9d:dc:b5:2d:6a:20:3b:1e:90:58:93:23:ad:7d:cd:22:90:49:
e3:2f:9f:15:5a:4c:19:86:b9:1b:00:30:1a:5a:5c:aa:51:c7:
c6:9a:b0:f9:00:2e:3f:d2:33:96:1a:94:76:15:88:e9:90:6a:
e7:cf:d1:1f:57:5c:d7:da:44:92:e7:48:ac:2e:dc:07:36:0f:
33:57:fd:8a:f6:71:8b:2d:18:81:aa:10:9f:c0:2e:50:ce:f8:
36:ad:20:07:bb:92:e9:03:21:fa:ae:c5:5c:8f:19:77:f7:c7:
c0:32:ce:75:0c:5b:d4:89:99:10:96:63:4a:bc:4f:9f:58:5d:
c8:9c:37:cb:31:af:16:8c:24:3b:ff:12:d6:e7:94:5a:c9:59:
af:36:e9:ec:5c:55:53:9d:04:a7:c9:ad:bd:89:3e:3e:27:45:
40:a1:8c:df:6a:d6:72:85:74:4c:7a:b2:8e:64:bb:32:7f:6d:
5d:78:84:af:0e:8d:cf:a0:9d:11:09:3e:cf:1b:39:d0:5c:e5:
c0:26:b3:e8:9b:a2:cb:d5:fa:1e:17:e9:14:22:ce:57:58:88:
6b:a7:1a:2e
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCLowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDUx
RUY5MzU5QTk4NEY2QTRDRjkxRkU5MDA0RUFFQjA4OUE5ODRDMDAeFw0yMTAyMDcx
MTU0NTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEIzRTg4RjgzRDMyRkUz
NDA5QTFDQTMzQkZGMTlEQjVFODdCMzU3NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDM4cUCLEHaR+bswIEEUa2UYUnaI+ytzG56VNFZcryjnEYjGa0p
i7B+R7sanXfkK5i6misySh3mf0Ch/S94jyBCFBRzwGScx+EnZuW6ZLzbCLdRsKDq
UnmZPOowXx36Wc5EwDnqRgpteXIh4BD/4IB+nofSSNOMV8ktusjfrhxP/p0pBFZO
ReV7wSYlLNcBcvow+jD1zWNSx2/LYZsLwahjNznEj6R4E6SNVlOI2Rc55XVQEUAF
/ZJ3Ath6VZCwbs9q4ul2DxuyhIo0Befb2d3k5khWtVWRRZucvlMdHoa1mSUE0SGS
mGerHyviyPFKTkUYiA0Bj3zjyv05dIAUZVejAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUs+iPg9Mv40CaHKM7/xnbXoezV14wHwYDVR0jBBgwFoAURR75NZqYT2pM+R/p
AE6usImphMAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkFSTC9S
Ujc1TlpxWVQycE0tUl9wQUU2dXNJbXBoTUEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L1JSNzVOWnFZVDJwTS1SX3BBRTZ1c0ltcGhNQS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05BUkwvcy1pUGc5TXY0MENhSEtNN194bmJY
b2V6VjE0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMuR0DAN
BgkqhkiG9w0BAQsFAAOCAQEAI0H688B9TaLMV+IOqTjKJRjMXTyHRwSdZ+bT1x5O
DlHhR5fVndy1LWogOx6QWJMjrX3NIpBJ4y+fFVpMGYa5GwAwGlpcqlHHxpqw+QAu
P9IzlhqUdhWI6ZBq58/RH1dc19pEkudIrC7cBzYPM1f9ivZxiy0YgaoQn8AuUM74
Nq0gB7uS6QMh+q7FXI8Zd/fHwDLOdQxb1ImZEJZjSrxPn1hdyJw3yzGvFowkO/8S
1ueUWslZrzbp7FxVU50Ep8mtvYk+PidFQKGM32rWcoV0THqyjmS7Mn9tXXiErw6N
z6CdEQk+zxs50FzlwCaz6Juiy9X6HhfpFCLOV1iIa6caLg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org