Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/s6Vj-yLd8ZPeL9kF6In1FHw8EmA.roa
File: s6Vj-yLd8ZPeL9kF6In1FHw8EmA.roa (raw, json)
Hash identifier: 4OXhem8W0fzfa8Kz6l0+xUOdyTEoR4ZA7pRygGpZQCw=
Subject key identifier: B3:A5:63:FB:22:DD:F1:93:DE:2F:D9:05:E8:89:F5:14:7C:3C:12:60
Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Certificate serial: 0583
Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/s6Vj-yLd8ZPeL9kF6In1FHw8EmA.roa
Signing time: Wed 29 Sep 2021 02:37:31 +0000
ROA not before: Wed 29 Sep 2021 02:37:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 64271
IP address blocks: 103.148.72.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1411 (0x583)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Validity
Not Before: Sep 29 02:37:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B3A563FB22DDF193DE2FD905E889F5147C3C1260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d8:cb:0e:b5:7a:4f:ad:13:25:43:e3:a9:5b:
6c:3f:f2:fa:07:c7:31:41:25:62:37:1c:fc:06:44:
72:72:98:69:c5:0c:72:0a:d6:cb:a8:75:83:19:0d:
be:a1:72:92:a0:9d:28:e8:07:5f:31:7c:78:fa:94:
eb:09:f8:ae:f0:75:f5:9b:61:6c:a2:ea:96:4e:6e:
d3:9b:ae:9e:27:35:8a:5f:50:96:da:41:36:02:19:
da:76:73:65:4a:c7:73:c8:11:f1:22:ab:20:32:ce:
27:37:f2:f0:be:1c:6e:c7:6f:72:fd:3c:08:0f:91:
c7:38:f1:8c:eb:b4:6d:aa:cc:0a:7b:71:a4:99:94:
ca:c4:2c:a5:a3:4f:06:e9:9c:d5:64:69:09:79:31:
ec:38:e8:4d:bd:0a:ac:cb:d6:fe:67:84:11:c1:9d:
59:31:62:a2:31:df:30:8d:dc:86:7a:1e:5b:c6:3b:
21:17:c9:2b:a6:9c:8f:5a:47:b6:78:4c:5f:1b:e5:
9c:9a:61:5a:98:6e:a3:7c:25:61:b0:89:a0:6e:ac:
de:01:60:e0:7e:9c:e0:04:be:51:d5:a3:0a:21:00:
6e:88:86:fc:06:e7:ff:36:21:c0:09:16:65:1b:fe:
35:fa:4b:09:aa:6f:65:b4:be:de:99:a3:c2:fc:e4:
e9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:A5:63:FB:22:DD:F1:93:DE:2F:D9:05:E8:89:F5:14:7C:3C:12:60
X509v3 Authority Key Identifier:
keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/s6Vj-yLd8ZPeL9kF6In1FHw8EmA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.148.72.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:a2:a3:86:a4:36:75:2e:1f:66:e2:fd:e1:69:7c:d8:14:60:
68:be:0c:55:42:e0:f4:43:d1:89:5f:a4:7f:e8:7f:96:1a:5d:
ed:0d:8e:03:3e:f5:98:09:e5:e6:c5:ee:78:ef:72:64:fc:f4:
15:67:3d:78:f9:c4:aa:7f:41:fc:c6:66:ff:51:8a:88:30:fc:
3b:a9:b2:e5:d4:bb:ef:c5:39:82:b5:20:df:8b:5b:4f:c6:74:
16:19:a0:6e:32:4d:ff:fb:67:c1:35:6e:85:fd:c8:08:9e:a1:
6d:7e:6c:03:41:b0:13:52:f4:b9:6e:d2:67:d5:5c:15:dc:88:
88:9b:63:ba:7f:6c:15:07:d6:55:b1:15:33:af:fe:a8:70:3e:
38:ee:64:5f:15:4a:2e:0e:da:3b:55:e9:c7:26:f2:c2:3c:2d:
44:76:c0:54:06:2d:25:a1:31:69:53:b0:47:c4:1f:3f:18:f1:
a0:bd:48:ba:d9:d8:ba:8c:06:25:b0:67:27:dd:4a:f9:7f:59:
57:c7:68:54:b9:33:3c:bc:81:c9:5f:83:73:f3:b5:52:74:c7:
61:b3:8e:74:7c:7b:87:72:ee:88:53:30:49:04:8e:33:69:75:
5e:34:2b:da:dc:f0:25:b2:18:8c:77:86:f8:b7:92:17:f7:da:
03:cc:eb:fe
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICBYMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEx
OEMzMzREQTU4RDdDMDAyMURDQUFDQTg4MURGQjlEQzgzNjVGRjAeFw0yMTA5Mjkw
MjM3MzFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEIzQTU2M0ZCMjJEREYx
OTNERTJGRDkwNUU4ODlGNTE0N0MzQzEyNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDT2MsOtXpPrRMlQ+OpW2w/8voHxzFBJWI3HPwGRHJymGnFDHIK
1suodYMZDb6hcpKgnSjoB18xfHj6lOsJ+K7wdfWbYWyi6pZObtObrp4nNYpfUJba
QTYCGdp2c2VKx3PIEfEiqyAyzic38vC+HG7Hb3L9PAgPkcc48YzrtG2qzAp7caSZ
lMrELKWjTwbpnNVkaQl5Mew46E29CqzL1v5nhBHBnVkxYqIx3zCN3IZ6HlvGOyEX
ySumnI9aR7Z4TF8b5ZyaYVqYbqN8JWGwiaBurN4BYOB+nOAEvlHVowohAG6IhvwG
5/82IcAJFmUb/jX6Swmqb2W0vt6Zo8L85Ok1AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUs6Vj+yLd8ZPeL9kF6In1FHw8EmAwHwYDVR0jBBgwFoAUMRjDNNpY18ACHcqs
qIHfudyDZf8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL01S
akROTnBZMThBQ0hjcXNxSUhmdWR5RFpmOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TVJqRE5OcFkxOEFDSGNxc3FJSGZ1ZHlEWmY4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL3M2VmoteUxkOFpQZUw5a0Y2SW4xRkh3
OEVtQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlEgwDQYJ
KoZIhvcNAQELBQADggEBAIqio4akNnUuH2bi/eFpfNgUYGi+DFVC4PRD0YlfpH/o
f5YaXe0NjgM+9ZgJ5ebF7njvcmT89BVnPXj5xKp/QfzGZv9Riogw/DupsuXUu+/F
OYK1IN+LW0/GdBYZoG4yTf/7Z8E1boX9yAieoW1+bANBsBNS9Llu0mfVXBXciIib
Y7p/bBUH1lWxFTOv/qhwPjjuZF8VSi4O2jtV6ccm8sI8LUR2wFQGLSWhMWlTsEfE
Hz8Y8aC9SLrZ2LqMBiWwZyfdSvl/WVfHaFS5Mzy8gclfg3PztVJ0x2GzjnR8e4dy
7ohTMEkEjjNpdV40K9rc8CWyGIx3hvi3khf32gPM6/4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org