Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/RCRHED_W4pigOsxQafhY0yd0vQw.roa
File: RCRHED_W4pigOsxQafhY0yd0vQw.roa (raw, json)
Hash identifier: w1u2S3pINZTw33CTY6Deh0+xpusBT0Pr1D6aIIXvqOA=
Subject key identifier: 44:24:47:10:3F:D6:E2:98:A0:3A:CC:50:69:F8:58:D3:27:74:BD:0C
Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Certificate serial: 04E1
Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/RCRHED_W4pigOsxQafhY0yd0vQw.roa
Signing time: Sun 07 Feb 2021 12:48:14 +0000
ROA not before: Sun 07 Feb 2021 12:48:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 64271
IP address blocks: 103.148.72.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1249 (0x4e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Validity
Not Before: Feb 7 12:48:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=442447103FD6E298A03ACC5069F858D32774BD0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cf:4e:40:5b:07:b1:63:ad:ea:e4:ab:7e:37:
cc:ac:54:96:99:7b:23:d1:f1:b8:90:9a:20:98:01:
ca:11:71:69:53:73:26:15:21:4c:a1:ac:5c:ba:7d:
76:90:f1:ca:6c:c3:0f:18:84:9b:74:e3:bf:e1:34:
70:c2:ed:ca:06:fb:17:ea:c8:b5:4a:b8:9c:b5:3d:
a2:e4:e1:ed:24:a5:ac:c0:e3:90:36:4b:a6:02:ad:
c8:93:d5:6e:01:8c:55:41:66:8f:b8:4d:c5:f9:73:
5a:a6:2c:27:03:78:0e:9d:f0:10:b3:fb:69:68:5b:
f0:14:5a:08:14:59:32:cb:c0:a7:13:7f:44:42:06:
3d:1e:8f:b7:a0:1b:f3:c2:ad:a2:86:ff:7c:ee:a5:
a9:49:f3:4c:d6:2e:b2:57:92:02:c1:72:15:98:bc:
17:75:52:49:50:c5:eb:17:29:04:bf:ea:60:f4:76:
2b:47:5a:cc:0c:2b:db:0a:27:3b:89:5e:75:26:4a:
12:cd:af:f3:89:3c:b6:29:4b:41:8c:94:92:e8:32:
ef:d3:0e:f9:12:6e:96:18:fd:6c:5f:a2:ee:9b:77:
d2:a3:db:b3:21:71:97:7f:00:3b:71:5d:36:df:a9:
75:33:e8:30:c5:bf:54:f0:2a:4f:33:8d:12:d4:c0:
f0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:24:47:10:3F:D6:E2:98:A0:3A:CC:50:69:F8:58:D3:27:74:BD:0C
X509v3 Authority Key Identifier:
keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/RCRHED_W4pigOsxQafhY0yd0vQw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.148.72.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:cd:8b:f0:d1:37:07:35:ed:d3:05:35:6d:d4:60:c6:29:82:
09:0e:3e:c9:b4:52:fd:db:58:43:3a:31:52:83:9d:10:4f:c3:
6e:58:13:d0:d8:ad:c3:70:da:ca:6f:47:64:28:8a:d3:34:c7:
67:47:d4:0d:c7:7b:7e:9f:51:21:65:9f:58:3f:3d:b6:af:d5:
4c:24:c6:5d:44:10:ea:4a:a4:79:bf:d8:6b:30:22:f1:16:2d:
53:a2:f2:9a:f0:df:9d:fd:81:08:5d:8d:df:c4:6a:89:2a:d3:
6f:66:23:d1:42:10:9b:3f:01:4f:0a:dd:90:c2:42:1f:27:9a:
d8:61:da:b5:38:f6:60:09:f3:2f:83:b9:fe:8d:3b:9c:1c:cf:
d3:08:a4:7c:66:fb:0f:31:87:14:4a:6f:22:c9:69:c9:33:ff:
2d:69:b6:96:57:ab:97:bd:1f:34:5f:34:31:fa:99:54:3d:f6:
aa:59:7d:0f:0f:a1:96:e0:f5:a6:a5:70:2b:d3:e4:65:4b:5d:
e9:38:12:c2:b2:be:9a:8d:5b:74:27:41:58:f4:50:3c:4e:70:
48:7f:4e:d4:61:73:00:5f:cc:3a:91:45:12:4d:d3:96:99:d3:
ee:78:54:2b:53:67:56:ec:c9:e7:b7:9e:29:d2:ae:e2:42:a3:
5d:5e:46:0e
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICBOEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEx
OEMzMzREQTU4RDdDMDAyMURDQUFDQTg4MURGQjlEQzgzNjVGRjAeFw0yMTAyMDcx
MjQ4MTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQ0MjQ0NzEwM0ZENkUy
OThBMDNBQ0M1MDY5Rjg1OEQzMjc3NEJEMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsz05AWwexY63q5Kt+N8ysVJaZeyPR8biQmiCYAcoRcWlTcyYV
IUyhrFy6fXaQ8cpsww8YhJt047/hNHDC7coG+xfqyLVKuJy1PaLk4e0kpazA45A2
S6YCrciT1W4BjFVBZo+4TcX5c1qmLCcDeA6d8BCz+2loW/AUWggUWTLLwKcTf0RC
Bj0ej7egG/PCraKG/3zupalJ80zWLrJXkgLBchWYvBd1UklQxesXKQS/6mD0ditH
WswMK9sKJzuJXnUmShLNr/OJPLYpS0GMlJLoMu/TDvkSbpYY/Wxfou6bd9Kj27Mh
cZd/ADtxXTbfqXUz6DDFv1TwKk8zjRLUwPAxAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQURCRHED/W4pigOsxQafhY0yd0vQwwHwYDVR0jBBgwFoAUMRjDNNpY18ACHcqs
qIHfudyDZf8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL01S
akROTnBZMThBQ0hjcXNxSUhmdWR5RFpmOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TVJqRE5OcFkxOEFDSGNxc3FJSGZ1ZHlEWmY4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL1JDUkhFRF9XNHBpZ09zeFFhZmhZMHlk
MHZRdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlEgwDQYJ
KoZIhvcNAQELBQADggEBAI/Ni/DRNwc17dMFNW3UYMYpggkOPsm0Uv3bWEM6MVKD
nRBPw25YE9DYrcNw2spvR2QoitM0x2dH1A3He36fUSFln1g/Pbav1Uwkxl1EEOpK
pHm/2GswIvEWLVOi8prw3539gQhdjd/Eaokq029mI9FCEJs/AU8K3ZDCQh8nmthh
2rU49mAJ8y+Duf6NO5wcz9MIpHxm+w8xhxRKbyLJackz/y1ptpZXq5e9HzRfNDH6
mVQ99qpZfQ8PoZbg9aalcCvT5GVLXek4EsKyvpqNW3QnQVj0UDxOcEh/TtRhcwBf
zDqRRRJN05aZ0+54VCtTZ1bsyee3ninSruJCo11eRg4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org