Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/Od53hBz8fupp0Nd8eL2ORkowFmo.roa
File: Od53hBz8fupp0Nd8eL2ORkowFmo.roa (raw, json)
Hash identifier: 5e6JbOIBZpNAqdcdNdlHU50mc6zBGCbi4Ww0kcB0QNk=
Subject key identifier: 39:DE:77:84:1C:FC:7E:EA:69:D0:D7:7C:78:BD:8E:46:4A:30:16:6A
Certificate issuer: /CN=53AB025E558614A6AC89DCA0302DD23BD596A256
Certificate serial: 03
Authority key identifier: 53:AB:02:5E:55:86:14:A6:AC:89:DC:A0:30:2D:D2:3B:D5:96:A2:56
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/Od53hBz8fupp0Nd8eL2ORkowFmo.roa
Signing time: Wed 20 Sep 2023 18:50:55 +0000
ROA not before: Wed 20 Sep 2023 18:50:55 +0000
ROA not after: Wed 18 Sep 2024 09:08:42 +0000
asID: 131642
IP address blocks: 103.99.140.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53AB025E558614A6AC89DCA0302DD23BD596A256
Validity
Not Before: Sep 20 18:50:55 2023 GMT
Not After : Sep 18 09:08:42 2024 GMT
Subject: CN=39DE77841CFC7EEA69D0D77C78BD8E464A30166A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:f7:e9:96:15:1d:56:fc:24:f8:59:7a:55:6f:
2f:dc:a4:d2:54:db:a2:36:81:93:f4:a4:58:ca:a1:
22:55:0f:5a:5f:25:81:8f:8d:ed:43:1f:0c:e5:f1:
d9:72:b7:3f:7e:68:6c:8b:95:f5:08:70:61:4f:f8:
5a:28:d5:50:7a:de:4e:33:27:fd:56:bf:9b:85:b3:
7b:7a:e4:d7:90:df:e5:2a:dc:01:36:9b:14:80:45:
c7:b1:22:59:18:8b:03:f0:89:b8:06:5e:4d:e2:d4:
ed:18:5f:05:4c:3e:15:16:46:9f:48:c4:d9:db:36:
d9:c1:7a:de:7d:d7:99:d8:45:69:58:f4:40:e3:f3:
c0:52:9d:db:44:c6:23:15:59:df:00:21:10:a7:af:
6f:0e:e2:23:5e:ec:c6:90:c0:f9:12:2d:a9:5a:c2:
34:ed:f9:8c:31:6a:83:01:2e:93:ba:f7:be:30:19:
67:ef:a2:e5:06:f3:2d:ca:44:71:91:b6:e1:90:23:
ca:8f:c9:1d:f9:e7:8c:f9:f0:6f:22:6b:52:2f:d0:
47:c1:ee:14:0f:cd:96:a6:dc:8f:a8:74:ae:04:3e:
c6:5c:43:a0:44:d8:90:5d:81:fe:41:ec:cb:67:4e:
58:f4:08:4a:b7:ae:43:15:64:f3:ca:f0:35:f6:12:
ff:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:DE:77:84:1C:FC:7E:EA:69:D0:D7:7C:78:BD:8E:46:4A:30:16:6A
X509v3 Authority Key Identifier:
keyid:53:AB:02:5E:55:86:14:A6:AC:89:DC:A0:30:2D:D2:3B:D5:96:A2:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/U6sCXlWGFKasidygMC3SO9WWolY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/Od53hBz8fupp0Nd8eL2ORkowFmo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.140.0/23
Signature Algorithm: sha256WithRSAEncryption
00:31:24:d5:91:a2:c0:8e:d1:b5:17:e5:c8:f8:0a:af:2c:41:
18:c2:3a:0e:32:a9:98:59:f9:49:31:39:e2:74:af:84:7e:68:
ca:4c:39:d2:15:af:8a:35:48:55:d0:05:1d:33:d8:d9:73:20:
e0:19:4d:0f:b8:a6:6b:6b:50:29:ee:b0:e2:92:55:4a:09:8e:
68:50:ba:03:c2:b6:5e:9c:3f:97:de:55:36:22:93:61:84:ef:
2f:da:f8:2a:a2:18:4b:32:78:d4:10:dd:99:8d:01:3b:b5:d8:
ac:1b:5c:1d:e1:b0:2a:5f:4c:2b:ec:93:00:61:33:8b:e9:7e:
81:8a:23:53:a3:17:d8:91:a0:5f:78:36:8a:e8:20:e0:47:b5:
6d:a9:3c:9d:a3:21:d3:e6:2a:a2:c6:ed:6e:f5:a1:87:bd:74:
c5:1b:43:f8:4a:8f:a2:15:0c:bb:cb:b8:4c:2a:a5:54:e4:a2:
cc:fc:35:91:21:c8:6c:13:fb:c5:7a:b9:1c:24:17:88:94:75:
f8:2d:bb:e3:19:77:e1:2d:c4:cd:61:67:92:eb:90:de:d2:cd:
35:40:cb:8e:4b:fe:8e:97:46:0d:f4:ac:f3:1d:ae:bc:8e:6b:
9a:33:66:09:5e:51:ab:25:30:ae:83:6a:cf:fa:22:f8:dd:68:
c8:6c:bd:4a
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1M0FC
MDI1RTU1ODYxNEE2QUM4OURDQTAzMDJERDIzQkQ1OTZBMjU2MB4XDTIzMDkyMDE4
NTA1NVoXDTI0MDkxODA5MDg0MlowMzExMC8GA1UEAxMoMzlERTc3ODQxQ0ZDN0VF
QTY5RDBENzdDNzhCRDhFNDY0QTMwMTY2QTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAPf36ZYVHVb8JPhZelVvL9yk0lTbojaBk/SkWMqhIlUPWl8lgY+N
7UMfDOXx2XK3P35obIuV9QhwYU/4WijVUHreTjMn/Va/m4Wze3rk15Df5SrcATab
FIBFx7EiWRiLA/CJuAZeTeLU7RhfBUw+FRZGn0jE2ds22cF63n3XmdhFaVj0QOPz
wFKd20TGIxVZ3wAhEKevbw7iI17sxpDA+RItqVrCNO35jDFqgwEuk7r3vjAZZ++i
5QbzLcpEcZG24ZAjyo/JHfnnjPnwbyJrUi/QR8HuFA/Nlqbcj6h0rgQ+xlxDoETY
kF2B/kHsy2dOWPQISreuQxVk88rwNfYS/wkCAwEAAaOCAfIwggHuMB0GA1UdDgQW
BBQ53neEHPx+6mnQ13x4vY5GSjAWajAfBgNVHSMEGDAWgBRTqwJeVYYUpqyJ3KAw
LdI71ZaiVjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GA1UdHwRXMFUwU6BR
oE+GTXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUlDSEFO
Ry9VNnNDWGxXR0ZLYXNpZHlnTUMzU085V1dvbFkuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL1U2c0NYbFdHRkthc2lkeWdNQzNTTzlXV29sWS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGeBggrBgEFBQcBCwSBkTCBjjBZBggrBgEFBQcwC4ZNcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BFSUNIQU5HL09kNTNoQno4ZnVwcDBO
ZDhlTDJPUmtvd0Ztby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25p
Yy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAFnY4wwDQYJKoZIhvcNAQELBQADggEBAAAxJNWRosCO0bUX5cj4Cq8sQRjCOg4y
qZhZ+UkxOeJ0r4R+aMpMOdIVr4o1SFXQBR0z2NlzIOAZTQ+4pmtrUCnusOKSVUoJ
jmhQugPCtl6cP5feVTYik2GE7y/a+CqiGEsyeNQQ3ZmNATu12KwbXB3hsCpfTCvs
kwBhM4vpfoGKI1OjF9iRoF94NoroIOBHtW2pPJ2jIdPmKqLG7W71oYe9dMUbQ/hK
j6IVDLvLuEwqpVTkosz8NZEhyGwT+8V6uRwkF4iUdfgtu+MZd+EtxM1hZ5LrkN7S
zTVAy45L/o6XRg30rPMdrryOa5ozZgleUaslMK6Das/6IvjdaMhsvUo=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:54 2025 by rpki-client