Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/pR0kP-64rvalwwFmiOI6c9devS0.roa
File: pR0kP-64rvalwwFmiOI6c9devS0.roa (raw, json)
Hash identifier: Ss3FW4HKxUrfOpn64HtF6tMuTlOCzryixoVfEO2IRZ8=
Subject key identifier: A5:1D:24:3F:EE:B8:AE:F6:A5:C3:01:66:88:E2:3A:73:D7:5E:BD:2D
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 5581
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/pR0kP-64rvalwwFmiOI6c9devS0.roa
Signing time: Sun 07 Feb 2021 13:15:53 +0000
ROA not before: Sun 07 Feb 2021 13:15:53 +0000
ROA not after: Tue 23 Nov 2021 09:15:57 +0000
asID: 38851
IP address blocks: 103.46.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21889 (0x5581)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Feb 7 13:15:53 2021 GMT
Not After : Nov 23 09:15:57 2021 GMT
Subject: CN=A51D243FEEB8AEF6A5C3016688E23A73D75EBD2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2f:87:50:81:2e:1f:d8:42:54:29:58:60:bf:
90:f6:d4:62:33:ef:a6:20:80:01:7b:13:cf:0c:75:
b3:06:89:de:7a:a8:5f:72:52:60:b9:43:7a:48:7d:
5c:c3:4f:89:55:d1:9b:03:67:24:1a:54:41:bb:22:
d1:1e:b5:c1:a0:de:43:7b:fb:1c:c3:5e:07:d9:52:
cb:f1:e9:da:95:5d:ff:a3:ca:5e:52:00:aa:c9:d7:
95:c2:d5:63:a3:4c:00:3e:bf:d7:df:63:06:85:4d:
07:32:13:9b:72:ef:22:99:b4:2c:b2:7e:32:67:81:
b4:1b:ad:bb:6f:81:25:3b:2d:f9:41:be:48:ae:e5:
1e:ab:29:a7:c3:f0:60:f1:f3:40:aa:ef:b4:06:1a:
d0:0a:9e:93:e4:d1:a3:45:79:c9:b7:f3:3d:85:9c:
87:0e:da:93:21:88:fa:fe:90:43:89:71:fb:01:e0:
82:40:d9:99:26:08:a2:a2:f2:29:2c:70:34:88:46:
95:03:12:1f:60:05:90:a5:a6:f0:18:8a:22:ed:02:
24:a2:8b:e6:1a:86:90:78:00:15:72:17:5b:92:5e:
45:d5:69:e9:42:bb:17:b7:e0:a2:8d:7e:7e:80:be:
ff:08:70:88:31:f9:02:7e:32:3a:db:d8:26:d2:60:
8f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:1D:24:3F:EE:B8:AE:F6:A5:C3:01:66:88:E2:3A:73:D7:5E:BD:2D
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/pR0kP-64rvalwwFmiOI6c9devS0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.46.188.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:df:ed:f3:9f:3c:00:af:c6:37:ac:9c:0d:f9:bd:74:2a:b9:
46:36:8d:36:2c:b2:b9:78:54:c7:27:6d:a5:30:42:63:d1:e6:
14:64:11:dc:b5:b4:ea:c0:2b:11:0a:15:97:a3:59:06:ca:6d:
7b:b4:fc:b3:54:c0:be:f7:bf:d2:a8:7a:d7:81:f4:d3:d2:95:
bc:74:54:6f:85:15:3d:19:a1:d8:07:9e:28:f6:0b:a3:e1:85:
6d:15:fd:e4:73:67:f6:3b:93:02:ce:9d:08:95:0f:b5:04:41:
05:dd:c2:e8:40:7e:e2:94:92:09:81:c4:1d:c3:8c:70:67:9c:
8a:66:5a:27:4b:06:f7:9e:14:20:f7:e1:b2:e6:27:b6:fc:8c:
2f:79:9a:52:df:0b:cf:3e:e6:29:12:a7:08:11:25:25:00:47:
bd:20:67:64:8d:26:13:98:be:37:05:81:d2:c2:14:ec:99:f6:
9d:3e:8b:61:10:72:1d:37:36:c6:02:b5:d4:aa:a9:dd:d5:2e:
7a:d8:5c:49:91:20:25:d8:0f:cb:52:ac:70:f4:ad:ef:d2:9f:
1c:94:8a:fb:fc:db:7e:38:74:fc:90:e4:d3:a5:c3:33:bf:cc:
05:07:7e:ca:5e:51:89:c3:1d:fc:c1:4f:a2:5d:0b:7b:8e:26:
19:31:65:b9
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICVYEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjQz
MjBGRDc4REZCNkE0RDFDOTIzMjJGNzk0OTY2Qjg1MjVERkREMjAeFw0yMTAyMDcx
MzE1NTNaFw0yMTExMjMwOTE1NTdaMDMxMTAvBgNVBAMTKEE1MUQyNDNGRUVCOEFF
RjZBNUMzMDE2Njg4RTIzQTczRDc1RUJEMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVL4dQgS4f2EJUKVhgv5D21GIz76YggAF7E88MdbMGid56qF9y
UmC5Q3pIfVzDT4lV0ZsDZyQaVEG7ItEetcGg3kN7+xzDXgfZUsvx6dqVXf+jyl5S
AKrJ15XC1WOjTAA+v9ffYwaFTQcyE5ty7yKZtCyyfjJngbQbrbtvgSU7LflBvkiu
5R6rKafD8GDx80Cq77QGGtAKnpPk0aNFecm38z2FnIcO2pMhiPr+kEOJcfsB4IJA
2ZkmCKKi8ikscDSIRpUDEh9gBZClpvAYiiLtAiSii+YahpB4ABVyF1uSXkXVaelC
uxe34KKNfn6Avv8IcIgx+QJ+Mjrb2CbSYI+pAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUpR0kP+64rvalwwFmiOI6c9devS0wHwYDVR0jBBgwFoAUtDIP1437ak0ckjIv
eUlmuFJd/dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlRDQ0FU
Vi90RElQMTQzN2FrMGNrakl2ZVVsbXVGSmRfZEkuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3RESVAxNDM3YWswY2tqSXZlVWxtdUZKZF9kSS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05UQ0NBVFYvcFIwa1AtNjRydmFsd3dG
bWlPSTZjOWRldlMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AmcuvDANBgkqhkiG9w0BAQsFAAOCAQEAPd/t8588AK/GN6ycDfm9dCq5RjaNNiyy
uXhUxydtpTBCY9HmFGQR3LW06sArEQoVl6NZBspte7T8s1TAvve/0qh614H009KV
vHRUb4UVPRmh2AeeKPYLo+GFbRX95HNn9juTAs6dCJUPtQRBBd3C6EB+4pSSCYHE
HcOMcGecimZaJ0sG954UIPfhsuYntvyML3maUt8Lzz7mKRKnCBElJQBHvSBnZI0m
E5i+NwWB0sIU7Jn2nT6LYRByHTc2xgK11Kqp3dUuethcSZEgJdgPy1KscPSt79Kf
HJSK+/zbfjh0/JDk06XDM7/MBQd+yl5RicMd/MFPol0Le44mGTFluQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org