Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARADISE/ZDzpp4bmHqEwForeEN0CUxQg_Ws.roa
File: ZDzpp4bmHqEwForeEN0CUxQg_Ws.roa (raw, json)
Hash identifier: XjJE9U4n+BVzHynECyLdXSPOQeWkkmZqHcWHZb089Tw=
Subject key identifier: 64:3C:E9:A7:86:E6:1E:A1:30:16:8A:DE:10:DD:02:53:14:20:FD:6B
Certificate issuer: /CN=E27749EAA557BCA5645A275E3DE0A3AF5347F7C3
Certificate serial: 9A
Authority key identifier: E2:77:49:EA:A5:57:BC:A5:64:5A:27:5E:3D:E0:A3:AF:53:47:F7:C3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4ndJ6qVXvKVkWidePeCjr1NH98M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/ZDzpp4bmHqEwForeEN0CUxQg_Ws.roa
Signing time: Tue 07 Jun 2022 08:28:21 +0000
ROA not before: Tue 07 Jun 2022 08:28:21 +0000
ROA not after: Thu 03 Nov 2022 05:41:53 +0000
asID: 20473
IP address blocks: 103.175.152.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154 (0x9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E27749EAA557BCA5645A275E3DE0A3AF5347F7C3
Validity
Not Before: Jun 7 08:28:21 2022 GMT
Not After : Nov 3 05:41:53 2022 GMT
Subject: CN=643CE9A786E61EA130168ADE10DD02531420FD6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:08:ba:80:ab:b6:a8:86:b1:a6:5d:05:c5:8c:
d6:01:9d:72:28:4b:09:23:8a:f1:63:a4:dc:54:f3:
d7:39:f8:bc:6d:6a:05:44:52:48:17:a4:b3:e7:ec:
3c:2e:be:b3:6f:0a:a3:ea:92:8b:25:81:9b:5c:0f:
c2:34:63:89:d7:b9:be:fb:d1:7c:db:95:d0:02:f8:
5b:5a:9e:2a:b2:9c:44:9c:0a:e7:56:36:1b:b5:61:
a3:8d:b2:1e:73:bc:be:66:7a:6e:72:59:3d:9d:7e:
88:54:e8:e0:5b:de:51:c4:9d:8b:35:18:62:b9:7f:
9d:e8:62:d8:3e:f3:25:eb:51:5d:da:47:8d:77:ab:
29:8e:aa:36:fb:0c:56:8c:0c:15:2f:5f:6c:a0:57:
bf:c1:16:4a:ea:6c:e5:4e:d9:e1:06:20:0d:49:e7:
22:18:cc:6b:54:2d:82:93:d1:80:77:c9:32:eb:07:
d0:b8:db:7f:04:37:00:7d:87:11:48:52:b0:f0:02:
17:71:4a:30:e1:ab:3a:c3:15:3d:97:b5:6a:59:67:
57:d9:01:45:1e:91:95:4a:37:2e:97:88:67:3f:4b:
4c:5a:86:a1:c6:49:90:dd:84:c6:6c:67:31:2d:52:
5a:b9:ba:b8:86:d0:29:37:82:00:cb:79:52:d1:55:
dc:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:3C:E9:A7:86:E6:1E:A1:30:16:8A:DE:10:DD:02:53:14:20:FD:6B
X509v3 Authority Key Identifier:
keyid:E2:77:49:EA:A5:57:BC:A5:64:5A:27:5E:3D:E0:A3:AF:53:47:F7:C3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/4ndJ6qVXvKVkWidePeCjr1NH98M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4ndJ6qVXvKVkWidePeCjr1NH98M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/ZDzpp4bmHqEwForeEN0CUxQg_Ws.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.152.0/23
Signature Algorithm: sha256WithRSAEncryption
48:14:b1:a2:da:d6:18:ff:5f:c2:c0:ae:0c:2c:e3:56:04:bb:
16:66:78:65:78:d9:90:b0:bf:72:7b:e6:dd:30:04:7e:f8:6a:
d1:0c:f6:d7:d2:87:4b:6d:f3:29:7e:96:46:4c:cd:f5:04:40:
ad:47:c1:2d:33:e0:bb:e0:94:34:c3:27:2c:78:bd:a2:f0:fd:
41:d2:5c:d2:4a:3f:6c:a7:d8:e8:14:f6:c4:f4:d5:33:4f:b2:
4a:57:b2:7a:28:30:80:08:ac:58:30:b4:89:b9:7f:f6:11:22:
6f:06:db:fe:32:a6:1a:ef:2e:4c:25:8e:2f:0d:46:64:e4:59:
f0:56:02:04:92:7f:5a:15:7d:73:a5:ca:a8:7d:5d:17:80:a4:
1f:53:7e:62:23:4a:9f:86:c0:9d:f5:17:29:15:56:9d:be:38:
a8:be:cc:10:cf:51:20:98:9c:c1:d4:e3:d2:3e:d8:2d:e9:99:
15:77:28:e0:ff:f2:34:10:8b:aa:81:b8:bd:3d:5b:9f:e2:e6:
72:db:34:37:b7:a2:5a:e1:1a:4a:e3:54:6e:33:e4:9c:fe:43:
ef:ed:d2:f6:aa:1b:76:4a:c0:74:9b:8b:47:0f:83:9b:39:fa:
01:33:d6:99:70:ae:6f:3a:df:10:12:b1:20:47:d3:ad:8c:af:
77:27:61:13
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICAJowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTI3
NzQ5RUFBNTU3QkNBNTY0NUEyNzVFM0RFMEEzQUY1MzQ3RjdDMzAeFw0yMjA2MDcw
ODI4MjFaFw0yMjExMDMwNTQxNTNaMDMxMTAvBgNVBAMTKDY0M0NFOUE3ODZFNjFF
QTEzMDE2OEFERTEwREQwMjUzMTQyMEZENkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtCLqAq7aohrGmXQXFjNYBnXIoSwkjivFjpNxU89c5+LxtagVE
UkgXpLPn7DwuvrNvCqPqkoslgZtcD8I0Y4nXub770XzbldAC+FtaniqynEScCudW
Nhu1YaONsh5zvL5mem5yWT2dfohU6OBb3lHEnYs1GGK5f53oYtg+8yXrUV3aR413
qymOqjb7DFaMDBUvX2ygV7/BFkrqbOVO2eEGIA1J5yIYzGtULYKT0YB3yTLrB9C4
238ENwB9hxFIUrDwAhdxSjDhqzrDFT2XtWpZZ1fZAUUekZVKNy6XiGc/S0xahqHG
SZDdhMZsZzEtUlq5uriG0Ck3ggDLeVLRVdzTAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUZDzpp4bmHqEwForeEN0CUxQg/WswHwYDVR0jBBgwFoAU4ndJ6qVXvKVkWide
PeCjr1NH98MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFSQURJ
U0UvNG5kSjZxVlh2S1ZrV2lkZVBlQ2pyMU5IOThNLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS80bmRKNnFWWHZLVmtXaWRlUGVDanIxTkg5OE0uY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQVJBRElTRS9aRHpwcDRibUhxRXdG
b3JlRU4wQ1V4UWdfV3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQBZ6+YMA0GCSqGSIb3DQEBCwUAA4IBAQBIFLGi2tYY/1/CwK4MLONWBLsWZnhl
eNmQsL9ye+bdMAR++GrRDPbX0odLbfMpfpZGTM31BECtR8EtM+C74JQ0wycseL2i
8P1B0lzSSj9sp9joFPbE9NUzT7JKV7J6KDCACKxYMLSJuX/2ESJvBtv+MqYa7y5M
JY4vDUZk5FnwVgIEkn9aFX1zpcqofV0XgKQfU35iI0qfhsCd9RcpFVadvjiovswQ
z1EgmJzB1OPSPtgt6ZkVdyjg//I0EIuqgbi9PVuf4uZy2zQ3t6Ja4RpK41RuM+Sc
/kPv7dL2qht2SsB0m4tHD4ObOfoBM9aZcK5vOt8QErEgR9OtjK93J2ET
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:02 2023 by rpki-client on console-ams.rpki-client.org