Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/VIrDtWjhQIn_jVA39a7r_nyK6pU.roa
File: VIrDtWjhQIn_jVA39a7r_nyK6pU.roa (raw, json)
Hash identifier: qSqnvFLJIJlpQd/GpMU7umcNFNqnytmKutqrj8uhJ8E=
Subject key identifier: 54:8A:C3:B5:68:E1:40:89:FF:8D:50:37:F5:AE:EB:FE:7C:8A:EA:95
Certificate issuer: /CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Certificate serial: FB
Authority key identifier: 31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/VIrDtWjhQIn_jVA39a7r_nyK6pU.roa
Signing time: Wed 22 Dec 2021 03:20:07 +0000
ROA not before: Wed 22 Dec 2021 03:20:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 31972
IP address blocks: 103.159.88.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 251 (0xfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Validity
Not Before: Dec 22 03:20:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=548AC3B568E14089FF8D5037F5AEEBFE7C8AEA95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f7:a9:17:d6:ff:e7:c6:4e:9d:76:f2:14:6b:
e9:ee:09:ab:66:e5:24:28:8f:6c:39:b3:56:d0:b4:
ad:c2:06:6c:20:49:13:4d:69:dc:32:8c:17:c8:fb:
a7:54:40:16:6c:e6:9a:31:86:fd:fe:cc:63:ca:38:
50:62:be:2b:8e:5f:73:88:bf:cc:e1:02:6b:f8:a4:
b5:af:53:b7:7b:bf:75:cc:7d:50:b6:0f:88:8f:f8:
05:a8:d5:d5:18:ce:87:bc:74:26:fc:5e:5e:be:32:
e6:f6:8a:3e:aa:6d:b0:fe:64:f3:c5:72:77:d2:8a:
f8:e8:79:cd:61:ca:0a:28:81:04:92:dc:fb:db:d7:
bf:c1:3d:92:e1:0b:01:b6:3d:11:c7:4b:ff:3f:83:
63:be:6f:d3:2b:da:6c:43:5b:6a:a9:a0:da:97:5f:
01:c9:11:88:31:86:c7:56:cd:c1:2e:5f:ff:78:6e:
8c:ba:80:dd:67:a0:e5:5c:3e:d2:d1:9c:df:f1:c7:
b3:9f:0f:c8:9b:2a:03:0f:02:cd:ac:a0:e3:06:cc:
ae:f2:53:73:c1:44:4c:d7:64:c3:d6:96:b6:43:77:
fc:ba:d7:7b:9c:35:d8:ac:e3:b7:a4:97:f1:b9:1a:
dc:90:bb:b0:bf:ea:11:d8:45:cb:4e:91:61:c0:3f:
9a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:8A:C3:B5:68:E1:40:89:FF:8D:50:37:F5:AE:EB:FE:7C:8A:EA:95
X509v3 Authority Key Identifier:
keyid:31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/VIrDtWjhQIn_jVA39a7r_nyK6pU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.88.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:a3:1e:28:80:de:5e:51:8c:5a:0a:ab:5d:ef:68:bc:3a:39:
6a:c9:4c:71:94:bc:ac:01:f5:46:3a:19:fc:a3:2c:51:92:b2:
a0:57:55:ea:eb:95:70:aa:4d:9c:95:96:51:a0:f3:a2:42:cd:
a6:a1:eb:3c:0c:be:9d:59:a5:77:5d:53:a2:ca:9b:a2:7c:2d:
84:12:01:46:77:59:1f:37:12:92:82:3b:e0:03:e0:4b:13:b3:
47:bf:e7:1f:82:ae:17:36:0b:c2:29:04:43:b9:5f:75:8f:3b:
55:76:b1:57:86:58:71:e8:55:76:93:72:d0:90:63:1f:5a:1b:
71:2b:f8:e3:4c:33:4e:c0:69:5c:e4:97:4d:bc:34:f6:9f:7c:
79:8e:cb:0d:fd:5a:cb:37:7c:78:83:66:20:40:c5:78:3b:f8:
ce:3a:75:1c:56:c3:b9:00:97:40:69:e5:82:a2:b0:75:38:29:
86:f6:5d:8a:70:f4:80:0e:75:c9:3c:2b:47:1a:1b:ae:90:18:
c6:75:0a:44:03:40:c8:b7:2e:94:a0:8c:14:10:85:08:51:70:
14:1e:8c:20:04:67:0c:07:d9:a4:c4:f5:29:45:0c:dc:4b:c6:
e0:e6:9e:8f:24:2b:54:47:9f:79:54:87:07:b5:06:ab:4e:59:
a5:99:c6:1f
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICAPswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEy
MkE5MjkyQ0M5MzAxNTJBREU1QTI1ODQ4QzFCREM0MDQ0QzkwMjAeFw0yMTEyMjIw
MzIwMDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDU0OEFDM0I1NjhFMTQw
ODlGRjhENTAzN0Y1QUVFQkZFN0M4QUVBOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCl96kX1v/nxk6ddvIUa+nuCatm5SQoj2w5s1bQtK3CBmwgSRNN
adwyjBfI+6dUQBZs5poxhv3+zGPKOFBiviuOX3OIv8zhAmv4pLWvU7d7v3XMfVC2
D4iP+AWo1dUYzoe8dCb8Xl6+Mub2ij6qbbD+ZPPFcnfSivjoec1hygoogQSS3Pvb
17/BPZLhCwG2PRHHS/8/g2O+b9Mr2mxDW2qpoNqXXwHJEYgxhsdWzcEuX/94boy6
gN1noOVcPtLRnN/xx7OfD8ibKgMPAs2soOMGzK7yU3PBREzXZMPWlrZDd/y613uc
Ndis47ekl/G5GtyQu7C/6hHYRctOkWHAP5rhAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUVIrDtWjhQIn/jVA39a7r/nyK6pUwHwYDVR0jBBgwFoAUMSKpKSzJMBUq3lol
hIwb3EBEyQIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTklNQlVT
Q09NL01TS3BLU3pKTUJVcTNsb2xoSXdiM0VCRXlRSS5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvTVNLcEtTekpNQlVxM2xvbGhJd2IzRUJFeVFJLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTklNQlVTQ09NL1ZJckR0V2poUUlu
X2pWQTM5YTdyX255SzZwVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAFnn1gwDQYJKoZIhvcNAQELBQADggEBAC+jHiiA3l5RjFoKq13vaLw6OWrJ
THGUvKwB9UY6GfyjLFGSsqBXVerrlXCqTZyVllGg86JCzaah6zwMvp1ZpXddU6LK
m6J8LYQSAUZ3WR83EpKCO+AD4EsTs0e/5x+Crhc2C8IpBEO5X3WPO1V2sVeGWHHo
VXaTctCQYx9aG3Er+ONMM07AaVzkl028NPaffHmOyw39Wss3fHiDZiBAxXg7+M46
dRxWw7kAl0Bp5YKisHU4KYb2XYpw9IAOdck8K0caG66QGMZ1CkQDQMi3LpSgjBQQ
hQhRcBQejCAEZwwH2aTE9SlFDNxLxuDmno8kK1RHn3lUhwe1BqtOWaWZxh8=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:58 2025 by rpki-client