Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3ABLA9ogAmPZlA3mHHGDZaAmTlQ.roa
File: 3ABLA9ogAmPZlA3mHHGDZaAmTlQ.roa (raw, json)
Hash identifier: 8DWmqFBIvAbq7R3W+qWqFr7hwU1enWBGnd0IKtuV9uI=
Subject key identifier: DC:00:4B:03:DA:20:02:63:D9:94:0D:E6:1C:71:83:65:A0:26:4E:54
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B94
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3ABLA9ogAmPZlA3mHHGDZaAmTlQ.roa
Signing time: Sun 07 Feb 2021 06:26:07 +0000
ROA not before: Sun 07 Feb 2021 06:26:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 103.234.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2964 (0xb94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:26:07 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DC004B03DA200263D9940DE61C718365A0264E54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2e:b2:bd:67:42:7a:53:da:60:0a:1c:3d:2b:
86:93:fd:e8:ae:12:e3:51:da:bf:12:d5:12:63:9b:
68:1b:07:b2:a4:43:df:05:90:61:9b:c8:e7:43:91:
7c:ab:75:1d:b9:f2:e6:6d:73:20:eb:16:1a:08:0d:
4e:49:c4:22:4e:1d:07:82:90:62:2f:30:61:fe:01:
25:0d:81:ef:b8:03:75:8e:76:41:38:d5:c7:6d:11:
9b:37:fb:7d:46:99:f9:b0:6e:4d:fc:4c:fd:24:92:
9a:91:36:e8:9e:96:a6:3f:4d:07:70:3a:8d:0d:a5:
c8:a2:0e:1f:d9:73:d6:9f:01:b4:72:04:25:a6:cb:
5c:ba:f7:4c:5f:d4:30:c6:2b:3d:67:14:f4:b1:53:
92:47:0d:ab:ff:ac:cf:4a:8a:e3:7c:f4:df:10:8b:
c5:79:ca:03:dd:0b:d7:be:31:29:65:e9:24:df:ea:
d0:fd:e4:08:d3:4c:ae:e4:b5:d6:73:c2:80:4b:96:
8c:41:24:0f:56:1e:1f:cf:89:a8:2d:5d:e3:b3:dd:
c7:0b:2f:0f:ff:4d:0e:13:94:90:7d:d0:ea:13:42:
be:bf:b1:b2:61:45:4b:88:53:74:2d:16:ae:51:62:
50:70:bd:22:a5:0e:66:ca:a7:0c:4b:d8:3d:08:2f:
e2:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:00:4B:03:DA:20:02:63:D9:94:0D:E6:1C:71:83:65:A0:26:4E:54
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3ABLA9ogAmPZlA3mHHGDZaAmTlQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.40.0/22
Signature Algorithm: sha256WithRSAEncryption
61:3c:ae:67:ab:14:d7:e7:e1:e8:ff:a5:57:94:66:3e:3b:7d:
40:f6:24:95:e2:a1:cd:de:df:65:41:35:60:35:94:6c:b2:a8:
e0:ed:a2:a1:94:40:5a:01:51:95:66:bb:e4:c7:41:a3:cd:03:
b3:3e:2d:7a:94:a4:00:a1:bb:58:1e:bd:a1:9d:2a:f8:b6:b0:
47:ba:1f:e2:73:76:06:df:6d:b0:0e:e1:45:11:c3:60:28:36:
be:7c:3d:ce:25:5e:0d:f2:19:e9:1b:58:b6:d6:99:3b:9e:4e:
1d:9e:00:b8:2c:92:eb:95:a8:c5:b1:fe:e8:4c:03:30:04:c2:
4b:e9:97:ae:68:6f:b8:7f:c3:19:ac:e1:b8:06:ab:f9:96:58:
6a:aa:77:a9:9e:20:41:20:da:04:43:20:42:63:40:07:65:95:
82:f7:8d:7a:24:04:80:25:85:a6:d2:8d:6e:64:ab:95:c8:c7:
51:98:96:cb:c1:61:f6:14:1d:d6:37:fc:59:7c:b9:fa:5b:e7:
5c:72:47:f5:89:0b:0e:18:78:1e:94:b7:6f:76:6c:87:3d:c4:
1c:41:dc:ad:fa:12:7b:01:cb:77:65:ea:c4:a0:86:2c:4d:ce:
0d:24:21:89:53:4a:3e:16:1a:0a:33:97:be:66:33:e6:3d:7d:
d9:00:11:5d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC5QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NjI2MDdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKERDMDA0QjAzREEyMDAy
NjNEOTk0MERFNjFDNzE4MzY1QTAyNjRFNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPLrK9Z0J6U9pgChw9K4aT/eiuEuNR2r8S1RJjm2gbB7KkQ98F
kGGbyOdDkXyrdR258uZtcyDrFhoIDU5JxCJOHQeCkGIvMGH+ASUNge+4A3WOdkE4
1cdtEZs3+31Gmfmwbk38TP0kkpqRNuielqY/TQdwOo0NpciiDh/Zc9afAbRyBCWm
y1y690xf1DDGKz1nFPSxU5JHDav/rM9KiuN89N8Qi8V5ygPdC9e+MSll6STf6tD9
5AjTTK7ktdZzwoBLloxBJA9WHh/PiagtXeOz3ccLLw//TQ4TlJB90OoTQr6/sbJh
RUuIU3QtFq5RYlBwvSKlDmbKpwxL2D0IL+KJAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU3ABLA9ogAmPZlA3mHHGDZaAmTlQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvM0FCTEE5b2dBbVBabEEzbUhIR0Ra
YUFtVGxRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmfqKDAN
BgkqhkiG9w0BAQsFAAOCAQEAYTyuZ6sU1+fh6P+lV5RmPjt9QPYkleKhzd7fZUE1
YDWUbLKo4O2ioZRAWgFRlWa75MdBo80Dsz4tepSkAKG7WB69oZ0q+LawR7of4nN2
Bt9tsA7hRRHDYCg2vnw9ziVeDfIZ6RtYttaZO55OHZ4AuCyS65WoxbH+6EwDMATC
S+mXrmhvuH/DGazhuAar+ZZYaqp3qZ4gQSDaBEMgQmNAB2WVgveNeiQEgCWFptKN
bmSrlcjHUZiWy8Fh9hQd1jf8WXy5+lvnXHJH9YkLDhh4HpS3b3Zshz3EHEHcrfoS
ewHLd2XqxKCGLE3ODSQhiVNKPhYaCjOXvmYz5j192QARXQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org