Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/HQDaIX68DOGS5KbPopFGm5AmCBQ.roa
File: HQDaIX68DOGS5KbPopFGm5AmCBQ.roa (raw, json)
Hash identifier: /3m4619yZ4bqZjnzHhp+ngiZ4WiNsh+OS3YtnI8viF8=
Subject key identifier: 1D:00:DA:21:7E:BC:0C:E1:92:E4:A6:CF:A2:91:46:9B:90:26:08:14
Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Certificate serial: 0582
Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/HQDaIX68DOGS5KbPopFGm5AmCBQ.roa
Signing time: Wed 29 Sep 2021 02:37:31 +0000
ROA not before: Wed 29 Sep 2021 02:37:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38042
IP address blocks: 103.148.72.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1410 (0x582)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Validity
Not Before: Sep 29 02:37:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1D00DA217EBC0CE192E4A6CFA291469B90260814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:78:96:66:18:80:bd:11:30:79:29:b8:de:e9:
a4:77:13:de:6a:b0:06:ec:13:c3:3f:94:7b:ab:a7:
ad:24:e5:8a:d1:ab:dc:84:1c:7a:49:c1:f2:d1:41:
fe:68:de:cf:f3:bd:09:23:73:90:df:46:6e:9f:b4:
79:58:3b:e0:54:f9:84:b1:b9:a3:90:c7:3c:c4:e3:
d5:e8:7e:27:38:70:91:6b:35:a6:2d:c4:e4:f6:b8:
75:c6:ff:d1:5c:6b:30:f9:63:3c:f4:f9:cb:43:7a:
4f:e7:c8:0d:de:65:b9:6c:13:b8:5f:7c:01:6a:2b:
63:40:4a:f0:a1:44:2e:8e:18:8d:09:cd:f4:2e:ca:
2f:a7:40:74:65:a7:f2:1a:6e:79:10:3e:4f:c2:02:
5b:c1:bf:5e:e9:49:75:06:2d:c9:3b:7e:d0:82:21:
f9:eb:7f:62:62:82:57:66:37:6a:4e:67:94:3f:10:
16:5e:cd:d6:19:0e:30:1e:76:73:44:88:78:3a:69:
ee:8b:22:e1:7a:6c:65:0a:9d:c9:7b:8b:5c:8d:8f:
6f:92:25:43:83:96:b6:09:9a:ec:2c:e2:bb:61:0c:
79:2e:aa:76:45:e3:b4:5f:75:39:94:94:b9:ac:09:
12:24:c4:04:94:4d:61:71:62:b2:71:bc:e2:db:76:
27:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:00:DA:21:7E:BC:0C:E1:92:E4:A6:CF:A2:91:46:9B:90:26:08:14
X509v3 Authority Key Identifier:
keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/HQDaIX68DOGS5KbPopFGm5AmCBQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.148.72.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:94:c3:93:84:4e:d1:fc:22:46:27:61:93:a8:b1:ee:80:2c:
72:62:5d:df:34:fd:0c:bd:ac:b7:1e:75:9c:9c:55:c9:fa:59:
d3:7a:fe:42:d8:79:00:db:9f:98:37:7a:53:3a:52:13:50:76:
3f:bd:9e:1c:2d:ef:c2:ca:d6:00:bb:c9:7f:f7:14:db:b4:7b:
59:c2:a5:dc:ea:91:7a:86:34:0c:5d:81:fe:9c:41:49:ef:27:
f4:15:5b:09:78:25:ab:0f:73:d0:a1:31:a3:4d:6e:13:ed:c8:
7d:ab:77:96:a2:b8:2d:e3:f2:00:08:c9:ba:e5:62:d9:0e:20:
f5:7f:03:e9:a8:c3:3f:51:ab:a5:09:fd:69:92:57:75:27:74:
e7:0f:36:a9:ed:52:cb:8e:90:7e:67:2d:81:eb:73:29:39:dd:
04:41:75:af:88:4e:62:0b:c5:c5:c7:82:f6:88:cc:86:e7:1c:
38:62:74:1f:2e:25:78:14:07:71:9f:48:97:d0:4d:05:4d:22:
09:15:70:17:1a:12:a1:bc:82:e4:6b:57:e8:43:94:dd:aa:d5:
0c:f4:92:6c:2b:6f:d5:3e:07:f4:b2:2a:ad:ac:f1:df:41:fc:
1c:89:25:c9:89:5a:5b:f0:b5:85:b4:a8:af:f6:eb:52:ed:aa:
17:8c:c4:ed
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICBYIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEx
OEMzMzREQTU4RDdDMDAyMURDQUFDQTg4MURGQjlEQzgzNjVGRjAeFw0yMTA5Mjkw
MjM3MzFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDFEMDBEQTIxN0VCQzBD
RTE5MkU0QTZDRkEyOTE0NjlCOTAyNjA4MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDaeJZmGIC9ETB5Kbje6aR3E95qsAbsE8M/lHurp60k5YrRq9yE
HHpJwfLRQf5o3s/zvQkjc5DfRm6ftHlYO+BU+YSxuaOQxzzE49Xofic4cJFrNaYt
xOT2uHXG/9FcazD5Yzz0+ctDek/nyA3eZblsE7hffAFqK2NASvChRC6OGI0JzfQu
yi+nQHRlp/IabnkQPk/CAlvBv17pSXUGLck7ftCCIfnrf2JigldmN2pOZ5Q/EBZe
zdYZDjAednNEiHg6ae6LIuF6bGUKncl7i1yNj2+SJUODlrYJmuws4rthDHkuqnZF
47RfdTmUlLmsCRIkxASUTWFxYrJxvOLbdicbAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUHQDaIX68DOGS5KbPopFGm5AmCBQwHwYDVR0jBBgwFoAUMRjDNNpY18ACHcqs
qIHfudyDZf8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL01S
akROTnBZMThBQ0hjcXNxSUhmdWR5RFpmOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TVJqRE5OcFkxOEFDSGNxc3FJSGZ1ZHlEWmY4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL0hRRGFJWDY4RE9HUzVLYlBvcEZHbTVB
bUNCUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlEgwDQYJ
KoZIhvcNAQELBQADggEBAB6Uw5OETtH8IkYnYZOose6ALHJiXd80/Qy9rLcedZyc
Vcn6WdN6/kLYeQDbn5g3elM6UhNQdj+9nhwt78LK1gC7yX/3FNu0e1nCpdzqkXqG
NAxdgf6cQUnvJ/QVWwl4JasPc9ChMaNNbhPtyH2rd5aiuC3j8gAIybrlYtkOIPV/
A+mowz9Rq6UJ/WmSV3UndOcPNqntUsuOkH5nLYHrcyk53QRBda+ITmILxcXHgvaI
zIbnHDhidB8uJXgUB3GfSJfQTQVNIgkVcBcaEqG8guRrV+hDlN2q1Qz0kmwrb9U+
B/SyKq2s8d9B/ByJJcmJWlvwtYW0qK/261LtqheMxO0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org