Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/ioAXJUa4UwChZJ2Ujqc2kjGjsPs.roa
File: ioAXJUa4UwChZJ2Ujqc2kjGjsPs.roa (raw, json)
Hash identifier: diV0j+9BBn63ZvVqDszcD8DaZa4JMaM1KFf5OV+bxQU=
Subject key identifier: 8A:80:17:25:46:B8:53:00:A1:64:9D:94:8E:A7:36:92:31:A3:B0:FB
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1124
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/ioAXJUa4UwChZJ2Ujqc2kjGjsPs.roa
Signing time: Wed 05 Oct 2022 07:22:43 +0000
ROA not before: Wed 05 Oct 2022 07:22:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 16509
IP address blocks: 103.123.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4388 (0x1124)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Oct 5 07:22:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8A80172546B85300A1649D948EA7369231A3B0FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:04:4a:5f:fa:23:dd:9d:9e:aa:e4:3c:49:80:
23:a2:00:57:07:7d:d7:6d:e7:b6:7b:a4:50:a5:5a:
d4:c1:db:35:58:89:3e:0d:de:ef:a4:e0:a4:47:5d:
be:74:92:19:e1:f9:d5:26:1d:c3:d3:ec:7c:14:e3:
e4:00:c7:20:78:40:35:59:36:22:8e:49:d3:ff:78:
9a:37:07:ba:d0:bb:d6:f7:c9:7f:53:86:43:05:c8:
f0:ec:97:34:d2:68:78:07:1e:b2:30:00:d5:c0:5a:
66:f5:de:e5:5b:fc:dc:c2:dc:94:37:53:29:ab:21:
3d:8e:cd:3a:c5:22:72:70:54:30:1e:45:f6:11:5b:
ef:2c:f5:1a:cc:6b:09:4a:3b:03:f4:50:1b:24:2c:
38:26:8c:e5:53:35:d4:ab:f0:b6:70:bb:32:01:23:
3e:d9:89:75:a0:c8:9d:04:f5:c7:46:ce:02:20:f9:
bc:ab:ca:c9:6b:3d:ef:e3:82:2b:20:b4:ff:f5:d8:
cf:87:73:55:ff:4f:2a:7b:81:c1:f6:cd:8b:d8:50:
f1:ae:cc:97:70:f7:bf:cb:8d:a4:77:54:58:23:7a:
4e:0f:a1:c8:9a:6e:70:bf:b7:51:2a:cc:b1:30:e0:
84:6d:3d:d4:01:07:d0:ff:6c:d8:6c:05:2b:b7:a0:
c5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:80:17:25:46:B8:53:00:A1:64:9D:94:8E:A7:36:92:31:A3:B0:FB
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/ioAXJUa4UwChZJ2Ujqc2kjGjsPs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.219.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:87:dd:33:d5:84:81:4a:f4:a2:bd:75:ea:a5:72:e4:de:05:
66:a5:c2:27:60:63:89:6e:f1:b6:17:ed:2e:e2:bd:ca:8e:fd:
d5:aa:13:ae:40:6e:de:f6:86:3f:6c:39:dd:39:9b:da:d9:ab:
28:80:82:a0:dd:54:fe:62:64:ad:a4:96:2e:72:dc:70:0e:97:
a6:8f:c3:0a:32:33:43:e3:8b:a8:2d:f6:e4:79:42:9f:8c:e9:
42:eb:3a:84:df:03:e9:4c:4b:c3:8b:ce:01:2a:78:67:33:49:
56:10:d9:fd:17:ed:39:76:ba:42:ca:d4:7c:04:fd:8d:2e:bf:
7c:2e:28:ed:db:b5:70:1d:93:d6:fd:50:e4:b0:8c:5a:1f:de:
da:f2:f5:7f:2a:f0:bf:7a:0f:a8:3b:33:d7:a4:e1:fb:44:f9:
f2:7b:58:8f:18:b9:74:c4:2a:83:1b:be:a2:d1:c2:41:38:d4:
8a:07:7b:f5:f0:0f:b1:58:08:b3:8e:9c:ff:14:76:c5:1b:3c:
02:29:84:5b:14:7f:21:02:19:03:7e:01:d8:ab:d0:07:6d:4e:
12:27:ad:1c:15:ce:e9:27:ba:b2:76:05:d8:dd:30:df:00:97:
24:a4:48:6c:58:dc:09:0c:c3:8f:f3:e0:05:ae:10:d2:d5:57:
82:78:0e:b6
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICESQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5
QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMjEwMDUw
NzIyNDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDhBODAxNzI1NDZCODUz
MDBBMTY0OUQ5NDhFQTczNjkyMzFBM0IwRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPBEpf+iPdnZ6q5DxJgCOiAFcHfddt57Z7pFClWtTB2zVYiT4N
3u+k4KRHXb50khnh+dUmHcPT7HwU4+QAxyB4QDVZNiKOSdP/eJo3B7rQu9b3yX9T
hkMFyPDslzTSaHgHHrIwANXAWmb13uVb/NzC3JQ3UymrIT2OzTrFInJwVDAeRfYR
W+8s9RrMawlKOwP0UBskLDgmjOVTNdSr8LZwuzIBIz7ZiXWgyJ0E9cdGzgIg+byr
yslrPe/jgisgtP/12M+Hc1X/Typ7gcH2zYvYUPGuzJdw97/LjaR3VFgjek4Pocia
bnC/t1EqzLEw4IRtPdQBB9D/bNhsBSu3oMXXAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUioAXJUa4UwChZJ2Ujqc2kjGjsPswHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf
9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv
Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9pb0FYSlVhNFV3Q2haSjJVanFj
MmtqR2pzUHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vb
MA0GCSqGSIb3DQEBCwUAA4IBAQA/h90z1YSBSvSivXXqpXLk3gVmpcInYGOJbvG2
F+0u4r3Kjv3VqhOuQG7e9oY/bDndOZva2asogIKg3VT+YmStpJYuctxwDpemj8MK
MjND44uoLfbkeUKfjOlC6zqE3wPpTEvDi84BKnhnM0lWENn9F+05drpCytR8BP2N
Lr98Lijt27VwHZPW/VDksIxaH97a8vV/KvC/eg+oOzPXpOH7RPnye1iPGLl0xCqD
G76i0cJBONSKB3v18A+xWAizjpz/FHbFGzwCKYRbFH8hAhkDfgHYq9AHbU4SJ60c
Fc7pJ7qydgXY3TDfAJckpEhsWNwJDMOP8+AFrhDS1VeCeA62
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org