Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDTV/ZjCcrtCQGxAfVfGQGoG8E8FMiGw.roa
File: ZjCcrtCQGxAfVfGQGoG8E8FMiGw.roa (raw, json)
Hash identifier: bWNW1W9wicGPhBDM+F/x6OTM4GaPwBl4dmypTA6APpI=
Subject key identifier: 66:30:9C:AE:D0:90:1B:10:1F:55:F1:90:1A:81:BC:13:C1:4C:88:6C
Certificate issuer: /CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526
Certificate serial: 094E
Authority key identifier: 7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/ZjCcrtCQGxAfVfGQGoG8E8FMiGw.roa
Signing time: Wed 29 Sep 2021 02:42:41 +0000
ROA not before: Wed 29 Sep 2021 02:42:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131611
IP address blocks: 103.100.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2382 (0x94e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526
Validity
Not Before: Sep 29 02:42:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=66309CAED0901B101F55F1901A81BC13C14C886C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:be:16:c6:90:b9:f4:12:c7:96:bc:7f:85:d4:
9b:ad:c0:1d:73:8d:60:cc:97:1f:54:49:4d:be:9e:
eb:f7:8e:b3:c5:a9:a0:f9:ad:4d:dd:d8:0f:9b:e3:
1f:b6:1d:43:a4:35:35:1e:a6:2a:82:16:19:4d:3c:
e8:16:82:8f:f4:cb:ca:51:d8:bf:68:07:eb:95:33:
a6:ab:a5:21:57:aa:6a:f1:cc:c1:60:c4:76:ec:8b:
21:1b:f8:3c:a8:38:28:a9:52:13:70:72:5b:ee:f0:
79:22:af:84:67:39:49:50:fa:66:01:b8:a2:c6:b1:
5b:77:57:a1:75:15:1c:ca:c5:f8:b3:e6:29:41:8d:
c3:8c:5d:d0:e2:88:ba:d3:67:b8:2c:2e:84:90:70:
c8:cb:0b:2d:d7:ea:4a:6f:aa:c0:18:90:92:cf:8c:
a4:60:43:22:63:a1:70:e0:44:6a:cf:e6:c4:f5:87:
15:2d:74:1a:2b:0b:d7:fb:7f:6a:58:37:16:0d:aa:
c9:c0:e1:5a:8d:93:e7:23:d1:de:51:22:d8:6f:47:
bb:81:00:69:a2:5f:83:ed:6d:1e:44:92:35:2f:f5:
4d:e4:71:97:17:d9:1d:39:b3:d8:6b:b8:8f:33:8b:
be:69:cd:c3:c2:c7:14:66:d1:a9:5a:35:80:22:8e:
79:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:30:9C:AE:D0:90:1B:10:1F:55:F1:90:1A:81:BC:13:C1:4C:88:6C
X509v3 Authority Key Identifier:
keyid:7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/f12NVOy3zutG_Y31RnxBwAJENSY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/ZjCcrtCQGxAfVfGQGoG8E8FMiGw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.164.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:13:21:74:04:94:02:89:e3:e0:01:af:08:ab:58:40:7a:c1:
c2:b7:19:3a:3c:39:4c:93:fb:12:5d:93:59:e0:95:64:0b:1f:
fd:ce:1f:30:9d:de:16:b8:aa:b4:22:a8:7f:60:cf:6e:26:7b:
58:72:ee:ba:bc:65:e2:55:61:32:21:f7:e6:6d:b3:b0:ad:12:
42:c2:19:d4:7d:10:c1:a3:dc:ae:fa:fa:c8:69:a7:1d:7a:46:
9e:2d:8c:d8:d0:e8:26:21:e9:70:22:66:ad:fd:fa:dd:14:78:
1f:43:0c:c8:1c:2b:3c:04:9a:43:06:98:64:e7:a6:dc:98:f5:
45:29:09:d6:27:9d:ae:fa:7d:d3:31:30:30:a1:6d:70:01:fd:
3a:64:35:ad:a7:a1:d3:7e:1c:58:0c:df:f7:0a:fa:e7:ca:02:
0c:4c:1f:91:cb:a9:d5:88:a6:67:6a:07:64:34:05:1a:b2:fd:
b4:f1:b8:ab:c6:a1:d8:d1:3c:e6:28:eb:4e:61:bc:e6:fb:40:
5c:08:1f:59:f7:b7:e7:0b:e7:c6:b0:9e:28:17:fd:f2:59:a2:
95:15:0a:1d:0f:f4:45:6a:fc:b6:2b:6f:87:8d:ad:d6:08:64:
06:13:1d:37:60:86:8e:02:76:65:e3:0a:cb:9a:bb:66:10:fe:
29:c4:80:1b
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCU4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Y1
RDhENTRFQ0I3Q0VFQjQ2RkQ4REY1NDY3QzQxQzAwMjQ0MzUyNjAeFw0yMTA5Mjkw
MjQyNDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDY2MzA5Q0FFRDA5MDFC
MTAxRjU1RjE5MDFBODFCQzEzQzE0Qzg4NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQvhbGkLn0EseWvH+F1JutwB1zjWDMlx9USU2+nuv3jrPFqaD5
rU3d2A+b4x+2HUOkNTUepiqCFhlNPOgWgo/0y8pR2L9oB+uVM6arpSFXqmrxzMFg
xHbsiyEb+DyoOCipUhNwclvu8Hkir4RnOUlQ+mYBuKLGsVt3V6F1FRzKxfiz5ilB
jcOMXdDiiLrTZ7gsLoSQcMjLCy3X6kpvqsAYkJLPjKRgQyJjoXDgRGrP5sT1hxUt
dBorC9f7f2pYNxYNqsnA4VqNk+cj0d5RIthvR7uBAGmiX4PtbR5EkjUv9U3kcZcX
2R05s9hruI8zi75pzcPCxxRm0alaNYAijnnTAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUZjCcrtCQGxAfVfGQGoG8E8FMiGwwHwYDVR0jBBgwFoAUf12NVOy3zutG/Y31
RnxBwAJENSYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RUVi9m
MTJOVk95M3p1dEdfWTMxUm54QndBSkVOU1kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2YxMk5WT3kzenV0R19ZMzFSbnhCd0FKRU5TWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1NEVFYvWmpDY3J0Q1FHeEFmVmZHUUdvRzhF
OEZNaUd3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdkpDAN
BgkqhkiG9w0BAQsFAAOCAQEALRMhdASUAonj4AGvCKtYQHrBwrcZOjw5TJP7El2T
WeCVZAsf/c4fMJ3eFriqtCKof2DPbiZ7WHLuurxl4lVhMiH35m2zsK0SQsIZ1H0Q
waPcrvr6yGmnHXpGni2M2NDoJiHpcCJmrf363RR4H0MMyBwrPASaQwaYZOem3Jj1
RSkJ1iedrvp90zEwMKFtcAH9OmQ1raeh034cWAzf9wr658oCDEwfkcup1YimZ2oH
ZDQFGrL9tPG4q8ah2NE85ijrTmG85vtAXAgfWfe35wvnxrCeKBf98lmilRUKHQ/0
RWr8titvh42t1ghkBhMdN2CGjgJ2ZeMKy5q7ZhD+KcSAGw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org