Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XXSXMnbELi3k77CAR4auMYKH_ZQ.roa
File: XXSXMnbELi3k77CAR4auMYKH_ZQ.roa (raw, json)
Hash identifier: DxhGs1PQ4PhYdrizbcSyhjAcDvZ3PcPdaceGUmMHAlI=
Subject key identifier: 5D:74:97:32:76:C4:2E:2D:E4:EF:B0:80:47:86:AE:31:82:87:FD:94
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08B3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XXSXMnbELi3k77CAR4auMYKH_ZQ.roa
Signing time: Tue 29 Sep 2020 09:52:20 +0000
ROA not before: Tue 29 Sep 2020 09:52:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 103.234.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2227 (0x8b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5D74973276C42E2DE4EFB0804786AE318287FD94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f3:af:44:de:d5:81:21:a5:d5:0a:b7:02:70:
95:88:ca:69:b8:ee:81:10:d6:56:d6:5c:67:be:00:
94:0f:1a:59:e3:6a:e0:02:8b:e2:ec:09:ed:5a:31:
c0:d9:a3:87:9d:f2:db:54:84:16:03:9f:9d:b3:fc:
f3:9e:a4:b8:e8:56:60:6d:04:b7:f8:38:d0:2a:6c:
df:68:76:c4:6b:0c:b0:33:c8:b8:5e:94:6b:60:dd:
14:0e:2c:5d:22:6c:08:f9:7b:02:c2:7a:37:03:80:
82:15:56:2f:ac:8d:30:85:b9:bb:8f:38:26:d8:21:
e4:c5:ba:42:b0:63:82:d3:c4:71:f3:c9:46:67:ea:
af:7b:1c:29:5a:ee:b9:c8:02:8c:0f:16:78:71:d8:
ab:20:3e:19:c7:23:f9:b6:85:d2:44:0f:30:f7:1e:
ab:ae:94:94:d8:e0:55:af:06:b7:d6:f6:cc:16:94:
96:c2:6c:d2:7f:07:ee:c3:9e:3c:c3:ee:c4:2a:fb:
11:c8:19:b2:06:b6:79:a1:8d:61:37:d6:f3:3d:57:
21:11:fd:45:88:9f:b5:ea:56:72:83:27:c0:9a:e8:
e3:4a:33:5e:12:13:8e:f5:5b:fe:32:5c:22:37:c7:
b2:f7:89:f4:db:b2:76:f1:5c:b7:26:cd:9f:0a:d1:
25:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:74:97:32:76:C4:2E:2D:E4:EF:B0:80:47:86:AE:31:82:87:FD:94
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XXSXMnbELi3k77CAR4auMYKH_ZQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.40.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:63:5e:1b:7b:04:26:97:e1:14:37:9b:0e:94:0b:c9:0d:f6:
74:4a:c4:e0:59:0d:a9:50:12:75:81:34:3b:a8:ec:45:02:8a:
3a:d9:1f:22:0c:34:be:ad:70:48:46:e2:9c:23:05:12:6c:1d:
b2:75:9a:9b:d6:70:b6:4e:3d:a5:ca:8c:8e:95:c4:fb:44:32:
c1:8c:22:96:6a:2f:ee:15:c1:c1:45:b7:86:94:98:79:6f:39:
d5:0c:7c:28:39:43:ce:79:34:90:6a:51:77:dc:1e:9a:73:0a:
a5:79:b5:b4:81:da:b5:77:b6:46:27:4e:cc:a4:56:9f:d0:0e:
bf:4f:b4:7c:a4:2a:fe:c6:b1:11:3b:e9:eb:55:b8:b1:13:4c:
80:fe:de:03:b2:02:52:62:39:e1:0e:53:17:78:73:aa:38:cd:
99:31:c7:d5:f8:05:2b:5d:91:26:41:00:f7:0b:6c:48:6e:72:
fb:2e:8c:df:82:ff:fb:e6:ba:bd:d7:0a:5c:9e:44:2f:19:59:
c7:18:a5:a2:a9:0f:43:b4:e6:92:e8:27:15:67:b2:93:d2:03:
f1:1c:5d:8f:6e:2e:0e:14:09:a1:65:f6:5b:ec:c2:00:df:f2:
24:9d:ac:fc:e5:65:53:ae:48:0c:51:e8:dc:73:18:c6:00:b7:
50:73:85:ae
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCLMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMjBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDVENzQ5NzMyNzZDNDJF
MkRFNEVGQjA4MDQ3ODZBRTMxODI4N0ZEOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9869E3tWBIaXVCrcCcJWIymm47oEQ1lbWXGe+AJQPGlnjauAC
i+LsCe1aMcDZo4ed8ttUhBYDn52z/POepLjoVmBtBLf4ONAqbN9odsRrDLAzyLhe
lGtg3RQOLF0ibAj5ewLCejcDgIIVVi+sjTCFubuPOCbYIeTFukKwY4LTxHHzyUZn
6q97HCla7rnIAowPFnhx2KsgPhnHI/m2hdJEDzD3HquulJTY4FWvBrfW9swWlJbC
bNJ/B+7DnjzD7sQq+xHIGbIGtnmhjWE31vM9VyER/UWIn7XqVnKDJ8Ca6ONKM14S
E471W/4yXCI3x7L3ifTbsnbxXLcmzZ8K0SVRAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUXXSXMnbELi3k77CAR4auMYKH/ZQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWFhTWE1uYkVMaTNrNzdDQVI0YXVN
WUtIX1pRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmfqKDAN
BgkqhkiG9w0BAQsFAAOCAQEAW2NeG3sEJpfhFDebDpQLyQ32dErE4FkNqVASdYE0
O6jsRQKKOtkfIgw0vq1wSEbinCMFEmwdsnWam9Zwtk49pcqMjpXE+0QywYwilmov
7hXBwUW3hpSYeW851Qx8KDlDznk0kGpRd9wemnMKpXm1tIHatXe2RidOzKRWn9AO
v0+0fKQq/saxETvp61W4sRNMgP7eA7ICUmI54Q5TF3hzqjjNmTHH1fgFK12RJkEA
9wtsSG5y+y6M34L/++a6vdcKXJ5ELxlZxxiloqkPQ7TmkugnFWeyk9ID8Rxdj24u
DhQJoWX2W+zCAN/yJJ2s/OVlU65IDFHo3HMYxgC3UHOFrg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org