Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/L6OFRzbwvRQfSZpIlbqJ46mbuHw.roa
File: L6OFRzbwvRQfSZpIlbqJ46mbuHw.roa (raw, json)
Hash identifier: 8m0y3OEM0AbDsEST9+iqAw1Zg9dkCYCCG1G8V2xUc04=
Subject key identifier: 2F:A3:85:47:36:F0:BD:14:1F:49:9A:48:95:BA:89:E3:A9:9B:B8:7C
Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Certificate serial: 0A0E
Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/L6OFRzbwvRQfSZpIlbqJ46mbuHw.roa
Signing time: Thu 15 Sep 2022 02:47:44 +0000
ROA not before: Thu 15 Sep 2022 02:47:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 48024
IP address blocks: 103.122.20.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2574 (0xa0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Validity
Not Before: Sep 15 02:47:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2FA3854736F0BD141F499A4895BA89E3A99BB87C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:da:8b:5f:18:48:33:c9:c8:16:3b:d9:7f:10:
13:bb:15:f9:37:1c:7b:c9:31:3d:57:e9:a8:05:db:
7d:81:65:c6:ee:eb:e6:b6:69:74:25:d7:a1:79:4e:
24:3c:a1:12:4d:d0:17:47:01:e7:df:10:22:6c:10:
6d:d9:bd:f9:76:67:98:4a:ff:26:8f:77:a5:15:f2:
28:1a:e1:4c:ed:7a:de:bf:83:69:a3:ba:18:47:eb:
22:86:16:a8:6c:28:f2:42:a4:df:f0:ff:e6:5c:5f:
4a:6b:f6:99:ac:be:07:98:e8:22:6e:30:44:18:0a:
ce:c3:cf:31:48:fc:92:b6:7c:fe:63:3c:18:53:27:
7b:f9:98:80:09:0b:77:ee:a6:48:54:44:c5:7f:5f:
56:5d:a3:f2:97:81:b0:28:d8:ae:11:94:0f:08:40:
5a:ba:aa:fb:97:31:1a:26:b4:60:e2:70:39:36:80:
d4:2d:97:84:93:0e:38:46:f9:9e:ea:c0:e9:83:16:
f6:ee:6a:b3:5c:32:c9:8d:05:18:4c:79:24:62:16:
73:4d:66:72:4c:31:19:1f:12:f7:0f:ef:2f:6c:10:
b9:e6:4f:d5:fb:87:97:80:05:6a:51:7a:1c:14:4b:
90:f9:c0:60:e8:cc:ef:64:0c:86:99:d5:91:69:ff:
95:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:A3:85:47:36:F0:BD:14:1F:49:9A:48:95:BA:89:E3:A9:9B:B8:7C
X509v3 Authority Key Identifier:
keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/L6OFRzbwvRQfSZpIlbqJ46mbuHw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.20.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:c9:f8:23:08:44:25:e6:8e:70:44:fa:45:37:e8:c6:a9:e2:
d2:60:11:d8:05:93:79:bd:95:bf:7e:da:b6:25:f0:26:8a:c1:
44:e0:51:d3:de:30:9b:cc:3c:cd:05:a9:73:09:5e:93:2a:61:
46:3a:94:1a:93:4c:92:dd:ac:f8:9d:18:1c:c8:a7:0b:06:0a:
3c:1f:07:25:5e:dd:18:8e:e5:ee:f7:ec:f4:d4:c7:2d:db:54:
6f:e1:40:4e:85:21:60:9d:4b:f7:3e:20:fc:54:63:9c:35:5b:
73:2f:4a:83:6e:f4:1e:cf:f1:f4:5f:35:0d:52:e2:6b:fa:f0:
96:9a:18:94:53:e4:43:b9:2c:33:30:01:db:93:be:11:e3:4a:
5c:97:23:d2:21:9a:fc:6d:d2:62:08:15:f4:8c:ac:46:70:01:
f1:97:68:d5:d9:9f:38:24:6d:ce:56:17:b0:ab:06:50:95:49:
95:6f:70:16:45:ed:6e:9a:39:4a:7f:06:c4:bd:3d:c4:c5:fb:
5a:3c:4d:31:76:16:2c:41:50:22:29:6a:ca:26:af:5d:f7:22:
3f:c5:d8:32:87:af:a4:85:ad:aa:45:95:20:4d:89:6b:79:a2:
1d:78:95:c7:81:46:18:48:e5:81:55:8f:85:a2:fa:15:74:72:
fc:0d:70:21
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICCg4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz
RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yMjA5MTUw
MjQ3NDRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDJGQTM4NTQ3MzZGMEJE
MTQxRjQ5OUE0ODk1QkE4OUUzQTk5QkI4N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCt2otfGEgzycgWO9l/EBO7Ffk3HHvJMT1X6agF232BZcbu6+a2
aXQl16F5TiQ8oRJN0BdHAeffECJsEG3Zvfl2Z5hK/yaPd6UV8iga4Uztet6/g2mj
uhhH6yKGFqhsKPJCpN/w/+ZcX0pr9pmsvgeY6CJuMEQYCs7DzzFI/JK2fP5jPBhT
J3v5mIAJC3fupkhURMV/X1Zdo/KXgbAo2K4RlA8IQFq6qvuXMRomtGDicDk2gNQt
l4STDjhG+Z7qwOmDFvbuarNcMsmNBRhMeSRiFnNNZnJMMRkfEvcP7y9sELnmT9X7
h5eABWpRehwUS5D5wGDozO9kDIaZ1ZFp/5VvAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUL6OFRzbwvRQfSZpIlbqJ46mbuHwwHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt
+2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB
SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1QvTDZPRlJ6Ynd2
UlFmU1pwSWxicUo0Nm1idUh3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAmd6FDANBgkqhkiG9w0BAQsFAAOCAQEAHcn4IwhEJeaOcET6RTfoxqni
0mAR2AWTeb2Vv37atiXwJorBROBR094wm8w8zQWpcwlekyphRjqUGpNMkt2s+J0Y
HMinCwYKPB8HJV7dGI7l7vfs9NTHLdtUb+FAToUhYJ1L9z4g/FRjnDVbcy9Kg270
Hs/x9F81DVLia/rwlpoYlFPkQ7ksMzAB25O+EeNKXJcj0iGa/G3SYggV9IysRnAB
8Zdo1dmfOCRtzlYXsKsGUJVJlW9wFkXtbpo5Sn8GxL09xMX7WjxNMXYWLEFQIilq
yiavXfciP8XYMoevpIWtqkWVIE2Ja3miHXiVx4FGGEjlgVWPhaL6FXRy/A1wIQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org