Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SGU/-u8KyTMKbUehcFNXae8xY5Grrhw.roa
File: -u8KyTMKbUehcFNXae8xY5Grrhw.roa (raw, json)
Hash identifier: pnUOMMJ7M6RxYKm6ucdcGtclsNXpAmqpYiPe7PmAZ8U=
Subject key identifier: FA:EF:0A:C9:33:0A:6D:47:A1:70:53:57:69:EF:31:63:91:AB:AE:1C
Certificate issuer: /CN=3294E71902A4A5C31B987BD67D094AF5830A816D
Certificate serial: F0
Authority key identifier: 32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/-u8KyTMKbUehcFNXae8xY5Grrhw.roa
Signing time: Tue 16 May 2023 08:35:19 +0000
ROA not before: Tue 16 May 2023 08:35:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 134823
IP address blocks: 103.186.186.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240 (0xf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3294E71902A4A5C31B987BD67D094AF5830A816D
Validity
Not Before: May 16 08:35:19 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FAEF0AC9330A6D47A170535769EF316391ABAE1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:98:e9:94:ed:5a:da:4c:15:3c:19:65:d4:41:
3f:59:90:9c:be:b1:e4:7b:f1:d8:e3:de:16:1c:a7:
9b:2b:f6:12:c7:31:c2:79:85:89:e0:fe:3a:6b:03:
df:a5:8d:d2:f8:10:93:0c:7c:09:79:ab:7b:23:6d:
b2:bf:8d:9d:8a:6f:e7:29:e4:08:59:4e:6c:1f:c6:
fa:20:bc:d9:2b:94:61:d8:89:e1:26:64:06:5e:21:
f5:e1:70:1b:06:7c:e3:de:a0:79:78:10:1d:a4:b7:
c5:1f:6e:50:31:5f:f8:ab:30:39:f6:a0:ee:4b:6e:
89:0d:21:53:e3:a8:90:74:7b:0e:d0:ec:a4:08:8a:
a3:28:d2:84:a9:ec:e7:c1:92:46:7f:a8:dd:cf:10:
b5:a4:78:69:42:81:15:f3:5a:66:51:1d:c5:cb:6c:
4e:a2:84:1a:3b:44:9b:dc:d4:27:37:aa:20:3d:95:
24:5e:ba:9d:5e:43:e4:04:70:3c:33:dc:23:f4:d0:
a2:26:40:99:d5:34:6b:80:b6:3c:a0:74:17:a0:73:
90:62:58:11:80:e1:9a:a0:d5:cb:71:f9:07:8b:1c:
11:eb:b6:20:45:10:5e:3f:b2:f7:98:5c:9a:c4:bb:
90:86:4a:dd:91:14:de:99:0a:07:ca:35:06:32:53:
0f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:EF:0A:C9:33:0A:6D:47:A1:70:53:57:69:EF:31:63:91:AB:AE:1C
X509v3 Authority Key Identifier:
keyid:32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/-u8KyTMKbUehcFNXae8xY5Grrhw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.186.0/23
Signature Algorithm: sha256WithRSAEncryption
90:a5:ab:1e:69:da:b1:8c:c0:f1:8c:c6:a0:99:e5:70:02:c3:
b4:40:55:4c:f6:ce:ee:6c:c0:57:6c:d7:b0:ee:2f:98:04:49:
c2:29:8f:4d:95:fe:bc:fe:52:6c:33:cb:e7:ac:f2:cd:38:a4:
3c:ae:78:00:27:ef:e9:1c:c6:1f:1d:99:5d:8b:e6:19:68:82:
6a:fe:3f:ea:9e:18:bb:fa:b5:28:37:37:ac:2f:a4:f5:37:cb:
bb:67:eb:6c:51:92:bf:d3:3d:1f:f8:9e:59:40:c9:72:cd:68:
6a:1d:9a:dc:b3:82:99:4a:1d:15:9c:be:0b:d2:61:d7:a5:ab:
01:dd:94:1b:8b:51:f9:05:98:8d:5a:6b:65:cf:e9:0e:d5:a4:
d1:81:5a:9b:62:75:d3:61:7c:4d:10:12:ec:5f:72:62:d7:49:
43:12:ce:fa:5b:f5:21:eb:13:8a:2c:ee:34:7b:dc:04:70:8f:
39:4a:55:7e:09:e6:9e:a3:3d:64:19:c9:06:0e:71:4a:43:6b:
f3:3a:eb:8f:8a:d4:22:8d:c9:75:85:19:31:04:4c:be:18:58:
a9:8f:9a:86:f2:35:c3:12:8a:a4:90:03:79:bd:27:68:90:c7:
d0:c6:0b:a3:db:06:b8:16:38:a9:a8:35:73:75:13:41:d6:28:
c4:b2:4e:f9
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzI5
NEU3MTkwMkE0QTVDMzFCOTg3QkQ2N0QwOTRBRjU4MzBBODE2RDAeFw0yMzA1MTYw
ODM1MTlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEZBRUYwQUM5MzMwQTZE
NDdBMTcwNTM1NzY5RUYzMTYzOTFBQkFFMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsmOmU7VraTBU8GWXUQT9ZkJy+seR78djj3hYcp5sr9hLHMcJ5
hYng/jprA9+ljdL4EJMMfAl5q3sjbbK/jZ2Kb+cp5AhZTmwfxvogvNkrlGHYieEm
ZAZeIfXhcBsGfOPeoHl4EB2kt8UfblAxX/irMDn2oO5LbokNIVPjqJB0ew7Q7KQI
iqMo0oSp7OfBkkZ/qN3PELWkeGlCgRXzWmZRHcXLbE6ihBo7RJvc1Cc3qiA9lSRe
up1eQ+QEcDwz3CP00KImQJnVNGuAtjygdBegc5BiWBGA4Zqg1ctx+QeLHBHrtiBF
EF4/sveYXJrEu5CGSt2RFN6ZCgfKNQYyUw/PAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU+u8KyTMKbUehcFNXae8xY5GrrhwwHwYDVR0jBBgwFoAUMpTnGQKkpcMbmHvW
fQlK9YMKgW0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0dVL01w
VG5HUUtrcGNNYm1IdldmUWxLOVlNS2dXMC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TXBUbkdRS2twY01ibUh2V2ZRbEs5WU1LZ1cwLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvU0dVLy11OEt5VE1LYlVlaGNGTlhhZTh4WTVH
cnJody5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnurowDQYJ
KoZIhvcNAQELBQADggEBAJClqx5p2rGMwPGMxqCZ5XACw7RAVUz2zu5swFds17Du
L5gEScIpj02V/rz+Umwzy+es8s04pDyueAAn7+kcxh8dmV2L5hlogmr+P+qeGLv6
tSg3N6wvpPU3y7tn62xRkr/TPR/4nllAyXLNaGodmtyzgplKHRWcvgvSYdelqwHd
lBuLUfkFmI1aa2XP6Q7VpNGBWptiddNhfE0QEuxfcmLXSUMSzvpb9SHrE4os7jR7
3ARwjzlKVX4J5p6jPWQZyQYOcUpDa/M664+K1CKNyXWFGTEETL4YWKmPmobyNcMS
iqSQA3m9J2iQx9DGC6PbBrgWOKmoNXN1E0HWKMSyTvk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org