Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/nJXhsOi0d0I3nXPIrk4OkLrUOMA.roa
File: nJXhsOi0d0I3nXPIrk4OkLrUOMA.roa (raw, json)
Hash identifier: VXBeoQeAHZQ5abOXMSdblcUjXUEYc6vpaQE3yLm3mgU=
Subject key identifier: 9C:95:E1:B0:E8:B4:77:42:37:9D:73:C8:AE:4E:0E:90:BA:D4:38:C0
Certificate issuer: /CN=A615237B28D4CEF8AFF942181704A1870B0F3F70
Certificate serial: 0E80
Authority key identifier: A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/nJXhsOi0d0I3nXPIrk4OkLrUOMA.roa
Signing time: Wed 29 Sep 2021 02:37:11 +0000
ROA not before: Wed 29 Sep 2021 02:37:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18046
IP address blocks: 103.126.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3712 (0xe80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A615237B28D4CEF8AFF942181704A1870B0F3F70
Validity
Not Before: Sep 29 02:37:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9C95E1B0E8B47742379D73C8AE4E0E90BAD438C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c5:d6:0a:7f:b7:6d:51:49:c4:2f:9f:65:1d:
34:2a:34:b3:38:29:eb:e2:7f:e8:7c:11:47:7c:38:
e4:78:6c:23:35:dd:68:8e:a6:c0:30:f0:46:49:2e:
ac:a2:79:11:bb:2a:e9:5c:d1:e5:e9:1b:f9:77:3b:
a3:14:c1:04:2a:3e:b0:14:aa:0d:19:db:1c:ee:b2:
05:ac:b7:91:9d:17:c4:bf:30:d0:94:ae:6d:98:8f:
b7:69:5f:16:30:95:64:86:c0:5d:ce:07:65:1a:d7:
ac:d9:2d:f5:f9:f1:d8:86:20:a3:33:79:d6:a7:b3:
96:69:dc:5a:09:80:6d:87:39:f3:58:bb:ee:ed:5c:
84:6a:5e:eb:4b:19:1b:f9:ee:9d:ae:d1:ca:fe:3f:
e5:8f:aa:17:db:3d:87:2a:b2:8b:ef:16:14:66:cb:
26:e5:c2:34:87:14:d6:05:e6:e1:17:21:68:46:00:
0c:8b:8a:0e:c0:a4:64:03:dc:ad:de:f3:8d:c9:02:
3c:63:79:4b:f2:66:fb:11:90:5a:82:88:9f:0d:2b:
4d:9f:ec:7e:f9:cd:55:b2:8f:9d:d3:87:00:bb:0b:
df:da:bc:29:8a:d3:38:5b:5c:0d:f2:28:f9:60:52:
84:41:6e:e4:d4:18:20:3e:09:56:0f:ec:04:dc:5b:
9c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:95:E1:B0:E8:B4:77:42:37:9D:73:C8:AE:4E:0E:90:BA:D4:38:C0
X509v3 Authority Key Identifier:
keyid:A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/nJXhsOi0d0I3nXPIrk4OkLrUOMA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.252.0/22
Signature Algorithm: sha256WithRSAEncryption
58:d9:c3:19:74:bd:93:58:71:4f:0f:af:4c:f7:ae:5a:08:7c:
4a:1b:50:4a:bc:ec:ce:ec:ab:c2:ac:40:df:5e:f8:0e:9f:21:
53:7a:3e:5c:f1:b1:c7:e9:c3:ca:f6:93:fa:a3:1f:7e:77:16:
29:7a:ab:7f:85:c1:ae:51:64:4f:93:68:b9:1f:25:0f:91:05:
43:04:d5:15:ef:9f:1d:da:35:91:7a:de:61:74:15:b3:8f:c4:
03:35:d2:b4:5d:60:62:45:97:74:93:15:b0:40:bd:72:31:c9:
a9:af:aa:d6:ce:0f:cf:f8:62:29:e9:5c:d7:48:2e:a4:26:e8:
8f:12:d8:05:dd:dd:a1:63:ac:92:5f:89:0b:64:de:2b:eb:ea:
f5:d2:99:b0:ee:13:03:ea:2c:7a:9c:71:a7:60:7d:9c:94:16:
73:f4:16:97:ba:74:4e:bc:37:00:46:b7:c9:4d:92:0c:5f:ad:
45:ba:34:64:a0:a7:20:18:ae:aa:62:cb:61:5a:b9:bb:b4:0b:
38:ac:3e:81:36:6c:20:e8:1b:92:65:08:e1:09:57:9b:12:e4:
59:82:da:f7:95:62:42:5d:aa:2f:0b:ca:1a:54:12:00:a9:3e:
3e:b6:71:dd:e3:c9:36:eb:7d:76:01:6c:35:01:a9:28:80:4e:
90:3d:8e:23
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICDoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTYx
NTIzN0IyOEQ0Q0VGOEFGRjk0MjE4MTcwNEExODcwQjBGM0Y3MDAeFw0yMTA5Mjkw
MjM3MTFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDlDOTVFMUIwRThCNDc3
NDIzNzlENzNDOEFFNEUwRTkwQkFENDM4QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCdxdYKf7dtUUnEL59lHTQqNLM4Kevif+h8EUd8OOR4bCM13WiO
psAw8EZJLqyieRG7Kulc0eXpG/l3O6MUwQQqPrAUqg0Z2xzusgWst5GdF8S/MNCU
rm2Yj7dpXxYwlWSGwF3OB2Ua16zZLfX58diGIKMzedans5Zp3FoJgG2HOfNYu+7t
XIRqXutLGRv57p2u0cr+P+WPqhfbPYcqsovvFhRmyyblwjSHFNYF5uEXIWhGAAyL
ig7ApGQD3K3e843JAjxjeUvyZvsRkFqCiJ8NK02f7H75zVWyj53ThwC7C9/avCmK
0zhbXA3yKPlgUoRBbuTUGCA+CVYP7ATcW5ybAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUnJXhsOi0d0I3nXPIrk4OkLrUOMAwHwYDVR0jBBgwFoAUphUjeyjUzviv+UIY
FwShhwsPP3AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTldDQVRW
SVNQL3BoVWpleWpVenZpdi1VSVlGd1NoaHdzUFAzQS5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvcGhVamV5alV6dml2LVVJWUZ3U2hod3NQUDNBLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTldDQVRWSVNQL25KWGhzT2kwZDBJ
M25YUElyazRPa0xyVU9NQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAJnfvwwDQYJKoZIhvcNAQELBQADggEBAFjZwxl0vZNYcU8Pr0z3rloIfEob
UEq87M7sq8KsQN9e+A6fIVN6Plzxscfpw8r2k/qjH353Fil6q3+Fwa5RZE+TaLkf
JQ+RBUME1RXvnx3aNZF63mF0FbOPxAM10rRdYGJFl3STFbBAvXIxyamvqtbOD8/4
YinpXNdILqQm6I8S2AXd3aFjrJJfiQtk3ivr6vXSmbDuEwPqLHqccadgfZyUFnP0
Fpe6dE68NwBGt8lNkgxfrUW6NGSgpyAYrqpiy2Faubu0CzisPoE2bCDoG5JlCOEJ
V5sS5FmC2veVYkJdqi8LyhpUEgCpPj62cd3jyTbrfXYBbDUBqSiATpA9jiM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org