Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/ZalU_IOgMq_jmfmTU3EXRlqv2dw.roa
File: ZalU_IOgMq_jmfmTU3EXRlqv2dw.roa (raw, json)
Hash identifier: AWhZ2qZH808xJwhrrusNuBdBBCZ8USkzdoQTu1yqy1E=
Subject key identifier: 65:A9:54:FC:83:A0:32:AF:E3:99:F9:93:53:71:17:46:5A:AF:D9:DC
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0A7D
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/ZalU_IOgMq_jmfmTU3EXRlqv2dw.roa
Signing time: Thu 30 Sep 2021 13:55:14 +0000
ROA not before: Thu 30 Sep 2021 13:55:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38843
IP address blocks: 103.20.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2685 (0xa7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 30 13:55:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=65A954FC83A032AFE399F993537117465AAFD9DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d3:96:25:1c:37:f0:1a:35:21:01:03:fe:c4:
a4:ff:8b:36:97:e7:04:96:60:11:0f:a8:bf:5d:8b:
fd:70:94:e0:fc:fb:3f:ba:fd:8f:2a:2f:e7:ae:46:
e0:59:54:7d:38:a3:c5:72:f0:72:14:f9:9d:d6:97:
74:54:99:12:3e:ef:bf:ad:ed:ac:cf:15:dc:7f:12:
51:ff:bc:7f:0d:b6:58:66:97:03:78:a4:50:4f:61:
36:f1:b4:63:66:09:e8:7b:d4:46:ca:6d:2f:e3:ea:
36:fa:59:51:45:b7:b5:66:16:fc:3e:bb:39:1b:da:
54:c1:db:00:a1:e5:cb:3f:9a:df:49:90:9a:90:69:
6f:fd:c9:cc:c2:76:1b:d4:43:1a:2b:cd:45:17:54:
24:c0:1b:9b:65:54:f8:2c:0f:b1:89:51:f9:3a:76:
2e:69:8e:31:e3:30:19:12:07:37:c2:c6:e6:b6:2d:
4f:9f:fb:ef:5d:d2:2c:a6:d2:89:5d:0a:66:54:6e:
51:30:c6:1e:5f:fd:2c:f7:cc:99:3e:b9:fd:17:c9:
19:8a:74:02:e6:5e:01:4e:ae:d1:d5:9d:1f:c4:59:
c1:f0:0e:49:7a:be:fa:a5:6f:9b:fe:ed:58:cb:d4:
48:c5:d1:f3:90:0e:2d:8f:91:08:fd:43:73:bc:43:
96:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A9:54:FC:83:A0:32:AF:E3:99:F9:93:53:71:17:46:5A:AF:D9:DC
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/ZalU_IOgMq_jmfmTU3EXRlqv2dw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.20.40.0/22
Signature Algorithm: sha256WithRSAEncryption
40:0c:c4:04:3d:23:98:2e:a0:0c:16:b6:09:5b:ec:3b:99:d4:
d4:a7:2d:d5:9c:3a:f2:04:86:1d:d1:ba:c7:02:a2:ea:6a:13:
08:f7:16:c3:6c:fc:5b:77:46:0d:c9:03:4f:5e:26:4d:09:72:
85:76:f4:58:8f:65:ec:db:66:22:26:b7:bb:14:65:33:a8:8f:
3c:ae:16:31:ed:46:55:12:ae:93:ee:bf:01:20:d7:58:3e:38:
1a:d3:dc:7c:ad:f5:2e:0d:e7:d4:3c:c8:3e:ed:09:02:ac:0c:
cf:a5:fd:78:52:01:32:46:b1:18:6e:dc:19:b5:24:4c:56:90:
3f:ba:4e:9c:06:1c:30:1a:88:98:03:6d:f7:cd:16:4f:96:20:
e9:a4:7d:40:ac:13:c4:fc:2b:aa:9f:1f:de:1c:7d:64:32:33:
92:9a:f1:dc:33:c4:98:e1:62:45:2d:74:f2:d5:7b:c6:52:63:
2d:91:60:88:03:c4:28:ec:1e:de:8e:62:f9:2c:dc:6e:e8:af:
bb:e3:34:1f:75:1b:d2:8b:53:8f:fd:a1:29:15:16:52:b8:ab:
2d:a7:f5:bc:80:09:74:b8:2b:e6:03:2c:d2:87:a9:4a:88:97:
a1:be:83:42:7c:ce:19:01:cc:1f:da:a4:f0:70:d8:21:38:04:
6e:96:3f:36
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCn0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMTA5MzAx
MzU1MTRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDY1QTk1NEZDODNBMDMy
QUZFMzk5Rjk5MzUzNzExNzQ2NUFBRkQ5REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC205YlHDfwGjUhAQP+xKT/izaX5wSWYBEPqL9di/1wlOD8+z+6
/Y8qL+euRuBZVH04o8Vy8HIU+Z3Wl3RUmRI+77+t7azPFdx/ElH/vH8NtlhmlwN4
pFBPYTbxtGNmCeh71EbKbS/j6jb6WVFFt7VmFvw+uzkb2lTB2wCh5cs/mt9JkJqQ
aW/9yczCdhvUQxorzUUXVCTAG5tlVPgsD7GJUfk6di5pjjHjMBkSBzfCxua2LU+f
++9d0iym0oldCmZUblEwxh5f/Sz3zJk+uf0XyRmKdALmXgFOrtHVnR/EWcHwDkl6
vvqlb5v+7VjL1EjF0fOQDi2PkQj9Q3O8Q5Y/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUZalU/IOgMq/jmfmTU3EXRlqv2dwwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vWmFsVV9JT2dNcV9qbWZtVFUzRVhS
bHF2MmR3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcUKDAN
BgkqhkiG9w0BAQsFAAOCAQEAQAzEBD0jmC6gDBa2CVvsO5nU1Kct1Zw68gSGHdG6
xwKi6moTCPcWw2z8W3dGDckDT14mTQlyhXb0WI9l7NtmIia3uxRlM6iPPK4WMe1G
VRKuk+6/ASDXWD44GtPcfK31Lg3n1DzIPu0JAqwMz6X9eFIBMkaxGG7cGbUkTFaQ
P7pOnAYcMBqImANt980WT5Yg6aR9QKwTxPwrqp8f3hx9ZDIzkprx3DPEmOFiRS10
8tV7xlJjLZFgiAPEKOwe3o5i+Szcbuivu+M0H3Ub0otTj/2hKRUWUrirLaf1vIAJ
dLgr5gMs0oepSoiXob6DQnzOGQHMH9qk8HDYITgEbpY/Ng==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org