Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0Pu3Mz-nSG_7W_CIH8uMEiWYd9Y.roa
File: 0Pu3Mz-nSG_7W_CIH8uMEiWYd9Y.roa (raw, json)
Hash identifier: bsomyO54dpKt1VQVlD1TDm7lrHIJ47C8POfx/lma/MI=
Subject key identifier: D0:FB:B7:33:3F:A7:48:6F:FB:5B:F0:88:1F:CB:8C:12:25:98:77:D6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0ED9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0Pu3Mz-nSG_7W_CIH8uMEiWYd9Y.roa
Signing time: Thu 30 Sep 2021 12:42:15 +0000
ROA not before: Thu 30 Sep 2021 12:42:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 103.234.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3801 (0xed9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 30 12:42:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D0FBB7333FA7486FFB5BF0881FCB8C12259877D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4d:f9:bc:cb:a0:6c:51:8a:13:d9:3c:a8:8b:
fa:5a:b9:71:45:1f:15:4a:81:21:04:22:f2:a3:c2:
92:e2:df:22:6b:41:8f:ee:38:de:29:89:2d:b0:72:
be:a8:9d:b8:11:13:70:88:6f:74:9e:33:4a:b5:d9:
ce:b7:fc:35:5b:49:15:d2:b3:8f:0a:ef:d8:db:63:
0b:5f:02:b0:23:80:f1:a5:e6:04:dc:a1:72:47:c6:
6b:16:40:0c:3b:a7:ff:ff:dc:75:37:8c:d5:cc:14:
4c:f6:de:3a:6f:14:6b:1c:45:33:ac:f7:b3:8c:36:
43:e3:e5:56:e5:7e:54:df:1e:1f:cc:4f:b9:2e:3f:
fd:66:d4:16:01:47:9f:01:de:dd:bf:c2:b6:16:9f:
e2:d2:0f:cf:6e:cd:69:47:81:b8:86:cd:3d:ad:43:
13:c7:5c:9e:22:4c:f2:69:77:ca:84:2c:36:24:9c:
f5:e2:1e:cc:8a:77:7a:96:49:c8:c4:37:64:c4:c5:
47:df:03:1e:65:9e:63:dc:70:28:ea:76:b3:b9:5d:
06:ee:9d:74:0e:b3:20:5d:82:fe:50:6c:db:c9:0d:
9b:6e:82:3c:2a:cf:92:be:0d:21:88:73:2f:0f:5b:
61:21:b2:74:f4:38:c1:ba:1f:b0:9d:f7:b1:d7:68:
8d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:FB:B7:33:3F:A7:48:6F:FB:5B:F0:88:1F:CB:8C:12:25:98:77:D6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0Pu3Mz-nSG_7W_CIH8uMEiWYd9Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.40.0/22
Signature Algorithm: sha256WithRSAEncryption
90:fc:20:f6:99:a7:a9:55:f5:6f:46:95:75:6b:40:e3:6f:85:
a8:c0:4a:19:36:94:26:3f:5a:ef:67:16:a6:ff:1a:cb:e6:84:
c1:eb:27:2b:9f:de:ce:ce:0a:0a:01:73:91:0a:0a:11:ea:36:
36:54:28:0f:c2:91:54:49:ba:72:60:79:98:a6:82:66:1a:ae:
51:1b:35:78:43:5e:ad:76:76:e5:35:23:0e:0e:fe:aa:a4:31:
63:49:55:5a:c5:28:a4:4d:43:e9:f9:5e:3e:b9:fc:ca:00:7c:
1e:5d:1b:51:a2:fc:9b:60:ee:83:d9:58:8f:b0:39:48:0f:30:
35:16:b0:42:5c:ff:66:e1:f5:54:2b:8d:93:11:3e:ae:66:50:
38:c4:8e:29:c8:88:5a:f3:1c:92:52:be:83:fe:df:2c:3c:5c:
a8:ba:c2:f3:b0:98:b9:c0:82:a2:20:d6:33:2d:a0:16:dc:b5:
25:27:05:73:59:89:87:c4:3a:d2:54:93:01:b0:43:8d:45:45:
7a:19:17:ed:fe:8f:6f:37:64:71:44:4a:27:75:b7:40:d3:d0:
97:a4:8c:e3:25:36:02:7e:75:ed:2e:85:d8:03:3b:6f:a0:a8:
63:5a:00:d6:81:4c:cb:40:2b:b2:48:6c:7c:ee:e2:42:17:98:
15:5e:17:02
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDtkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5MzAx
MjQyMTVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQwRkJCNzMzM0ZBNzQ4
NkZGQjVCRjA4ODFGQ0I4QzEyMjU5ODc3RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTTfm8y6BsUYoT2Tyoi/pauXFFHxVKgSEEIvKjwpLi3yJrQY/u
ON4piS2wcr6onbgRE3CIb3SeM0q12c63/DVbSRXSs48K79jbYwtfArAjgPGl5gTc
oXJHxmsWQAw7p///3HU3jNXMFEz23jpvFGscRTOs97OMNkPj5VblflTfHh/MT7ku
P/1m1BYBR58B3t2/wrYWn+LSD89uzWlHgbiGzT2tQxPHXJ4iTPJpd8qELDYknPXi
HsyKd3qWScjEN2TExUffAx5lnmPccCjqdrO5XQbunXQOsyBdgv5QbNvJDZtugjwq
z5K+DSGIcy8PW2EhsnT0OMG6H7Cd97HXaI2DAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU0Pu3Mz+nSG/7W/CIH8uMEiWYd9YwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMFB1M016LW5TR183V19DSUg4dU1F
aVdZZDlZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmfqKDAN
BgkqhkiG9w0BAQsFAAOCAQEAkPwg9pmnqVX1b0aVdWtA42+FqMBKGTaUJj9a72cW
pv8ay+aEwesnK5/ezs4KCgFzkQoKEeo2NlQoD8KRVEm6cmB5mKaCZhquURs1eENe
rXZ25TUjDg7+qqQxY0lVWsUopE1D6flePrn8ygB8Hl0bUaL8m2Dug9lYj7A5SA8w
NRawQlz/ZuH1VCuNkxE+rmZQOMSOKciIWvMcklK+g/7fLDxcqLrC87CYucCCoiDW
My2gFty1JScFc1mJh8Q60lSTAbBDjUVFehkX7f6PbzdkcURKJ3W3QNPQl6SM4yU2
An517S6F2AM7b6CoY1oA1oFMy0ArskhsfO7iQheYFV4XAg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org