Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/HdkD_hfoLkxaVzoWAfhdI7gFiTA.roa
File: HdkD_hfoLkxaVzoWAfhdI7gFiTA.roa (raw, json)
Hash identifier: s/QEvtTZCb2FTIXzEIwTpCtMNICDieBu2sYQ0bhOrDI=
Subject key identifier: 1D:D9:03:FE:17:E8:2E:4C:5A:57:3A:16:01:F8:5D:23:B8:05:89:30
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 0F72
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/HdkD_hfoLkxaVzoWAfhdI7gFiTA.roa
Signing time: Sun 07 Feb 2021 11:52:43 +0000
ROA not before: Sun 07 Feb 2021 11:52:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131631
IP address blocks: 103.123.217.0/24 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3954 (0xf72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Feb 7 11:52:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1DD903FE17E82E4C5A573A1601F85D23B8058930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7d:d9:1a:a5:9c:60:e6:8b:36:5b:33:43:c4:
ff:b7:c4:b1:28:75:c2:e5:2e:4e:6d:a4:97:d9:f6:
af:fa:24:c5:fb:b4:ef:aa:3a:d8:07:85:3c:ab:be:
da:ba:25:67:30:91:2a:c2:80:af:8f:ea:84:f1:09:
4f:04:77:c3:21:c2:25:02:2c:d4:e1:9c:1f:eb:9a:
ef:93:68:62:b4:f0:97:1b:ac:c1:1b:52:fc:dd:12:
aa:4e:68:88:cd:d1:15:17:3b:4e:44:90:6f:ef:06:
e9:38:9f:f8:37:c3:23:ea:25:73:ef:75:11:91:7e:
8b:9a:a3:33:78:81:e1:64:3b:21:52:03:38:8f:70:
91:7c:29:94:bd:0f:fc:04:2d:21:de:70:a1:f0:63:
66:3f:c4:0d:da:d5:93:c0:23:91:3e:3f:81:c6:6d:
24:e9:7e:67:68:91:92:9e:30:aa:79:47:51:79:fc:
de:b1:1b:78:c9:a7:f5:77:85:cd:4e:77:2b:cb:74:
b6:38:5d:84:62:ce:f2:0c:57:7a:94:b2:78:42:30:
a9:d2:db:11:54:72:66:26:81:5b:b4:56:ff:e6:86:
14:19:88:7a:1f:12:3c:7f:ed:93:25:e9:85:4c:61:
27:03:c8:60:38:2a:93:5a:57:b1:ba:20:df:5b:1d:
f1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:D9:03:FE:17:E8:2E:4C:5A:57:3A:16:01:F8:5D:23:B8:05:89:30
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/HdkD_hfoLkxaVzoWAfhdI7gFiTA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.217.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:fd:db:c8:fe:4f:af:b8:60:0f:2b:5d:e0:e9:67:17:1d:60:
e3:ca:3d:b8:dc:ca:1c:b3:f4:3f:04:ad:21:80:8d:a7:df:1b:
94:27:bf:79:f8:b8:3a:2c:8d:2c:45:b9:8d:4b:b0:73:0e:ed:
8d:ff:23:e7:30:29:9e:4f:d3:66:d5:6f:d5:e9:eb:36:83:9f:
bb:9b:b3:52:28:b7:73:6d:6d:59:b1:5a:fa:3f:80:8e:b7:d8:
0c:ad:7d:53:fd:9a:83:b5:ba:d4:7a:16:bc:2d:a4:e2:10:cd:
43:de:e4:f0:24:35:34:f8:dd:ed:53:2f:51:bc:6e:94:04:95:
7f:41:0a:de:c7:70:49:7c:62:d6:b2:77:0b:54:75:8e:85:0b:
db:a8:b6:c0:4a:df:3f:ff:d1:93:32:b4:72:86:15:e1:12:97:
19:6b:5c:3f:7b:97:34:cd:c2:d6:08:f4:6a:25:76:1d:b3:85:
89:77:81:6e:17:be:ff:13:cb:d0:cc:17:9b:7c:8f:14:4d:35:
f1:48:fe:64:bd:34:bc:7f:77:17:cf:c2:61:00:bf:bd:2c:ba:
3d:4f:a3:b6:3e:40:c1:8b:e5:42:26:9d:a4:f3:c7:ba:f6:70:
b2:65:3c:8b:e3:19:01:3c:a0:da:98:66:bc:15:56:33:ec:26:
eb:78:2b:0e
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICD3IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5
QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMTAyMDcx
MTUyNDNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFERDkwM0ZFMTdFODJF
NEM1QTU3M0ExNjAxRjg1RDIzQjgwNTg5MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtfdkapZxg5os2WzNDxP+3xLEodcLlLk5tpJfZ9q/6JMX7tO+q
OtgHhTyrvtq6JWcwkSrCgK+P6oTxCU8Ed8MhwiUCLNThnB/rmu+TaGK08JcbrMEb
UvzdEqpOaIjN0RUXO05EkG/vBuk4n/g3wyPqJXPvdRGRfouaozN4geFkOyFSAziP
cJF8KZS9D/wELSHecKHwY2Y/xA3a1ZPAI5E+P4HGbSTpfmdokZKeMKp5R1F5/N6x
G3jJp/V3hc1OdyvLdLY4XYRizvIMV3qUsnhCMKnS2xFUcmYmgVu0Vv/mhhQZiHof
Ejx/7ZMl6YVMYScDyGA4KpNaV7G6IN9bHfHFAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUHdkD/hfoLkxaVzoWAfhdI7gFiTAwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf
9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv
Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9IZGtEX2hmb0xreGFWem9XQWZo
ZEk3Z0ZpVEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vZ
MA0GCSqGSIb3DQEBCwUAA4IBAQDZ/dvI/k+vuGAPK13g6WcXHWDjyj243Mocs/Q/
BK0hgI2n3xuUJ795+Lg6LI0sRbmNS7BzDu2N/yPnMCmeT9Nm1W/V6es2g5+7m7NS
KLdzbW1ZsVr6P4COt9gMrX1T/ZqDtbrUeha8LaTiEM1D3uTwJDU0+N3tUy9RvG6U
BJV/QQrex3BJfGLWsncLVHWOhQvbqLbASt8//9GTMrRyhhXhEpcZa1w/e5c0zcLW
CPRqJXYds4WJd4FuF77/E8vQzBebfI8UTTXxSP5kvTS8f3cXz8JhAL+9LLo9T6O2
PkDBi+VCJp2k88e69nCyZTyL4xkBPKDamGa8FVYz7CbreCsO
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org