Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ROUNDROAD/J8uk-A1IOma6KO28PZo1dOF7OXs.roa
File: J8uk-A1IOma6KO28PZo1dOF7OXs.roa (raw, json)
Hash identifier: 0oYwqlcNQ2peGn+xnrRyE3CtWMsalis2iRnO3ika1Pc=
Subject key identifier: 27:CB:A4:F8:0D:48:3A:66:BA:28:ED:BC:3D:9A:35:74:E1:7B:39:7B
Certificate issuer: /CN=10F0AFEDD16DF216580B4F8ED75AFCA328694F19
Certificate serial: 08A4
Authority key identifier: 10:F0:AF:ED:D1:6D:F2:16:58:0B:4F:8E:D7:5A:FC:A3:28:69:4F:19
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EPCv7dFt8hZYC0-O11r8oyhpTxk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ROUNDROAD/J8uk-A1IOma6KO28PZo1dOF7OXs.roa
Signing time: Sun 07 Feb 2021 12:48:15 +0000
ROA not before: Sun 07 Feb 2021 12:48:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131149
IP address blocks: 103.123.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2212 (0x8a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10F0AFEDD16DF216580B4F8ED75AFCA328694F19
Validity
Not Before: Feb 7 12:48:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=27CBA4F80D483A66BA28EDBC3D9A3574E17B397B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:dc:60:b1:ce:2b:3c:e7:61:cf:50:3a:ce:b3:
5c:4f:84:90:2e:f7:37:e7:a3:2a:21:eb:d5:ec:f3:
82:e1:02:db:87:69:e9:a7:45:b5:13:d7:0a:61:fd:
56:38:01:15:3e:a4:1e:6c:5a:ea:f2:22:e6:3d:df:
ae:a1:00:a2:a6:a4:15:78:d9:ba:be:8a:a7:3f:82:
57:c6:66:18:39:cb:ad:45:33:1a:6c:8a:81:08:35:
c0:99:55:8c:9d:fd:67:66:80:ee:43:2c:c7:6e:e2:
28:85:66:8d:47:d9:c7:b0:c6:7b:cf:a1:e7:e0:ef:
b4:22:82:bc:18:f8:19:e4:a8:56:cb:06:0e:4e:c3:
fb:f4:af:93:7b:2c:e5:65:33:22:c5:c7:bd:5b:84:
fd:bd:72:f7:60:a2:56:d4:d5:4a:8e:96:92:ae:40:
b9:e4:08:d9:91:66:7e:1a:63:50:57:2c:90:4c:46:
9a:22:4a:e8:1c:fd:9b:b6:f8:23:e5:41:7d:2b:86:
c3:ad:5e:5b:c4:b9:1a:fd:53:b7:c3:62:54:c1:8d:
2b:1a:c2:9a:3a:5b:77:cf:cd:5a:04:6f:99:15:62:
4b:86:d7:65:2d:79:47:51:db:33:fa:8d:b1:19:0f:
7c:79:77:f0:ac:b7:c6:08:ee:c8:22:04:95:74:1c:
7b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:CB:A4:F8:0D:48:3A:66:BA:28:ED:BC:3D:9A:35:74:E1:7B:39:7B
X509v3 Authority Key Identifier:
keyid:10:F0:AF:ED:D1:6D:F2:16:58:0B:4F:8E:D7:5A:FC:A3:28:69:4F:19
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ROUNDROAD/EPCv7dFt8hZYC0-O11r8oyhpTxk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EPCv7dFt8hZYC0-O11r8oyhpTxk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ROUNDROAD/J8uk-A1IOma6KO28PZo1dOF7OXs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.192.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:49:55:99:f2:e0:75:2b:7e:31:02:aa:20:f1:d3:79:0b:b2:
cd:f7:14:53:f1:e3:a4:0f:6d:23:a4:4c:14:69:74:ec:12:e1:
40:42:39:0b:36:02:e6:44:24:e1:34:94:b4:12:52:e1:4a:a8:
13:48:1a:57:72:f1:91:21:f4:9b:03:1e:d5:ad:67:d7:8b:fe:
87:aa:ae:21:4a:14:84:70:3b:98:f2:2b:47:90:9c:a1:7a:94:
30:03:95:7f:75:1a:4b:56:1e:cd:be:17:84:55:d3:dd:70:40:
28:ca:a4:98:a4:31:55:f8:e4:79:3b:b2:af:57:97:09:37:84:
ec:02:2e:30:53:90:09:c5:70:6b:ab:53:87:e7:be:0d:68:22:
b7:c0:ff:3e:a3:5c:7e:f3:b6:f5:21:3f:d2:22:8b:e5:95:5c:
04:cd:bc:4e:3f:5a:41:85:c6:61:d3:71:68:b8:e9:30:fc:02:
ad:54:20:d0:9e:1b:7d:81:5a:d8:43:ce:1b:2a:cd:a4:f2:52:
7c:45:b5:82:01:d4:46:97:05:83:43:64:af:50:18:54:34:d6:
ac:58:80:69:8d:e5:de:44:e7:fc:e6:e1:8e:b8:95:ab:5d:98:
74:94:d3:4e:d0:0d:b5:01:59:64:2b:e0:b0:50:1d:5b:f6:1c:
41:55:82:67
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCKQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTBG
MEFGRUREMTZERjIxNjU4MEI0RjhFRDc1QUZDQTMyODY5NEYxOTAeFw0yMTAyMDcx
MjQ4MTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDI3Q0JBNEY4MEQ0ODNB
NjZCQTI4RURCQzNEOUEzNTc0RTE3QjM5N0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCi3GCxzis852HPUDrOs1xPhJAu9zfnoyoh69Xs84LhAtuHaemn
RbUT1wph/VY4ARU+pB5sWuryIuY9366hAKKmpBV42bq+iqc/glfGZhg5y61FMxps
ioEINcCZVYyd/WdmgO5DLMdu4iiFZo1H2cewxnvPoefg77QigrwY+BnkqFbLBg5O
w/v0r5N7LOVlMyLFx71bhP29cvdgolbU1UqOlpKuQLnkCNmRZn4aY1BXLJBMRpoi
Sugc/Zu2+CPlQX0rhsOtXlvEuRr9U7fDYlTBjSsawpo6W3fPzVoEb5kVYkuG12Ut
eUdR2zP6jbEZD3x5d/Cst8YI7sgiBJV0HHtdAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUJ8uk+A1IOma6KO28PZo1dOF7OXswHwYDVR0jBBgwFoAUEPCv7dFt8hZYC0+O
11r8oyhpTxkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUk9VTkRS
T0FEL0VQQ3Y3ZEZ0OGhaWUMwLU8xMXI4b3locFR4ay5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvRVBDdjdkRnQ4aFpZQzAtTzExcjhveWhwVHhrLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUk9VTkRST0FEL0o4dWstQTFJT21h
NktPMjhQWm8xZE9GN09Ycy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAJne8AwDQYJKoZIhvcNAQELBQADggEBABpJVZny4HUrfjECqiDx03kLss33
FFPx46QPbSOkTBRpdOwS4UBCOQs2AuZEJOE0lLQSUuFKqBNIGldy8ZEh9JsDHtWt
Z9eL/oeqriFKFIRwO5jyK0eQnKF6lDADlX91GktWHs2+F4RV091wQCjKpJikMVX4
5Hk7sq9Xlwk3hOwCLjBTkAnFcGurU4fnvg1oIrfA/z6jXH7ztvUhP9Iii+WVXATN
vE4/WkGFxmHTcWi46TD8Aq1UINCeG32BWthDzhsqzaTyUnxFtYIB1EaXBYNDZK9Q
GFQ01qxYgGmN5d5E5/zm4Y64latdmHSU007QDbUBWWQr4LBQHVv2HEFVgmc=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org