Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/TMe1kET0hs3InfWikTlkDX5HgyY.roa
File: TMe1kET0hs3InfWikTlkDX5HgyY.roa (raw, json)
Hash identifier: tUJbEsmHxgz2a6eXs8lQzMWjWWthxwLH1iKpE8qzIpw=
Subject key identifier: 4C:C7:B5:90:44:F4:86:CD:C8:9D:F5:A2:91:39:64:0D:7E:47:83:26
Certificate issuer: /CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB
Certificate serial: 0557
Authority key identifier: 2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/TMe1kET0hs3InfWikTlkDX5HgyY.roa
Signing time: Wed 29 Sep 2021 02:50:35 +0000
ROA not before: Wed 29 Sep 2021 02:50:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131674
IP address blocks: 103.149.64.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1367 (0x557)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB
Validity
Not Before: Sep 29 02:50:35 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4CC7B59044F486CDC89DF5A29139640D7E478326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4d:15:4a:8d:40:57:f3:1e:50:d3:ce:5f:df:
69:54:87:02:3e:bb:ec:eb:8d:a6:05:7f:63:78:ca:
29:cd:b1:f2:bf:f7:64:61:5c:e9:65:45:f3:3b:bd:
33:68:b1:69:40:e9:ff:4b:cc:4e:a2:2d:01:cb:52:
a2:9e:38:e4:df:ee:67:97:e1:c7:78:fb:66:9e:9c:
cf:e9:48:97:7f:d2:37:31:4a:56:8e:e8:9e:35:8e:
5a:68:e3:b3:92:4d:91:e9:34:fc:78:fb:3a:11:ba:
7f:a9:79:fc:b4:e7:7f:29:38:e2:c8:a5:7c:26:01:
ea:b5:79:a3:cf:d0:64:e4:1d:c5:b1:5f:1e:18:a7:
db:e5:6a:53:4a:97:ab:06:ed:e0:81:46:80:28:5c:
83:65:fd:7c:7d:91:8e:24:d5:30:0a:7a:8e:6f:03:
78:ac:a4:dd:65:a0:81:f2:6b:0e:87:ea:3d:60:bb:
96:8c:65:6b:13:ea:88:16:ff:55:72:2a:81:7d:d2:
94:61:24:65:a5:82:39:4b:ae:e6:9b:e2:ec:e7:c5:
ef:6f:71:f2:a7:11:30:b4:7b:9a:a9:cd:11:2b:75:
a6:bc:96:34:fe:e4:61:3d:fc:e3:43:84:fa:a2:51:
31:5d:15:f5:b0:9d:c8:c9:22:53:85:e9:88:e7:95:
99:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C7:B5:90:44:F4:86:CD:C8:9D:F5:A2:91:39:64:0D:7E:47:83:26
X509v3 Authority Key Identifier:
keyid:2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/TMe1kET0hs3InfWikTlkDX5HgyY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.149.64.0/23
Signature Algorithm: sha256WithRSAEncryption
12:0b:e5:67:28:b5:f9:ec:44:25:e4:c9:7d:2b:fd:ec:24:f7:
49:7e:ac:49:80:c5:e2:00:d4:47:94:d0:5f:64:e2:2f:ed:da:
37:5a:82:4a:b1:a4:b5:fa:d3:e8:3d:f9:72:f2:d3:b7:e4:c7:
0e:cb:a8:e4:33:35:fa:ac:db:06:67:38:62:5d:74:a8:d9:9e:
16:30:23:8a:b6:cb:5c:3b:d9:87:4c:1e:df:26:fc:c2:62:fd:
67:98:2b:0c:11:5e:78:0c:c4:38:70:6f:65:0b:2a:0e:11:7c:
c6:e5:a7:64:09:35:96:cc:a3:d0:50:7a:68:ed:ac:6d:57:97:
43:3e:6e:7c:3f:2b:ec:a8:a8:a9:78:2a:34:b8:ac:de:26:06:
93:3a:35:9c:5c:e4:f8:2f:ef:04:ea:97:8b:72:06:f9:33:cc:
ee:ef:9f:90:75:4e:77:e7:de:a5:ec:ad:d2:ae:64:45:a2:b9:
2f:c8:48:67:81:e5:4a:2e:1c:57:8e:73:3b:ea:c8:b4:c1:02:
5d:46:ce:07:5d:8c:5e:80:31:0c:1a:cc:36:5b:7e:dd:28:4a:
f9:61:60:f9:a0:a4:88:0f:95:08:cf:27:ca:9f:53:11:aa:41:
09:21:60:e5:ed:44:b3:30:2d:12:82:b4:4e:0c:e4:bf:1e:33:
f1:f0:73:f5
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICBVcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRF
RjJCM0MzQTlBMUI1M0MxNkMxQzcwRTU1MTFBRDU5MDMyODRGQjAeFw0yMTA5Mjkw
MjUwMzVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDRDQzdCNTkwNDRGNDg2
Q0RDODlERjVBMjkxMzk2NDBEN0U0NzgzMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6TRVKjUBX8x5Q085f32lUhwI+u+zrjaYFf2N4yinNsfK/92Rh
XOllRfM7vTNosWlA6f9LzE6iLQHLUqKeOOTf7meX4cd4+2aenM/pSJd/0jcxSlaO
6J41jlpo47OSTZHpNPx4+zoRun+pefy0538pOOLIpXwmAeq1eaPP0GTkHcWxXx4Y
p9vlalNKl6sG7eCBRoAoXINl/Xx9kY4k1TAKeo5vA3ispN1loIHyaw6H6j1gu5aM
ZWsT6ogW/1VyKoF90pRhJGWlgjlLruab4uznxe9vcfKnETC0e5qpzRErdaa8ljT+
5GE9/ONDhPqiUTFdFfWwncjJIlOF6YjnlZlhAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUTMe1kET0hs3InfWikTlkDX5HgyYwHwYDVR0jBBgwFoAULe8rPDqaG1PBbBxw
5VEa1ZAyhPswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT1BFTkZP
Ui9MZThyUERxYUcxUEJiQnh3NVZFYTFaQXloUHMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0xlOHJQRHFhRzFQQmJCeHc1VkVhMVpBeWhQcy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL09QRU5GT1IvVE1lMWtFVDBoczNJbmZX
aWtUbGtEWDVIZ3lZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AWeVQDANBgkqhkiG9w0BAQsFAAOCAQEAEgvlZyi1+exEJeTJfSv97CT3SX6sSYDF
4gDUR5TQX2TiL+3aN1qCSrGktfrT6D35cvLTt+THDsuo5DM1+qzbBmc4Yl10qNme
FjAjirbLXDvZh0we3yb8wmL9Z5grDBFeeAzEOHBvZQsqDhF8xuWnZAk1lsyj0FB6
aO2sbVeXQz5ufD8r7KioqXgqNLis3iYGkzo1nFzk+C/vBOqXi3IG+TPM7u+fkHVO
d+fepeyt0q5kRaK5L8hIZ4HlSi4cV45zO+rItMECXUbOB12MXoAxDBrMNlt+3ShK
+WFg+aCkiA+VCM8nyp9TEapBCSFg5e1EszAtEoK0Tgzkvx4z8fBz9Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org