Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/KWPP50kkWgBGRrXd4FBVbdcqM9k.roa
File: KWPP50kkWgBGRrXd4FBVbdcqM9k.roa (raw, json)
Hash identifier: J611P3VxF3aDvyLTpufb3GmPLcLiaFqM9uB3Ba+jJjA=
Subject key identifier: 29:63:CF:E7:49:24:5A:00:46:46:B5:DD:E0:50:55:6D:D7:2A:33:D9
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0790
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/KWPP50kkWgBGRrXd4FBVbdcqM9k.roa
Signing time: Tue 29 Sep 2020 10:06:04 +0000
ROA not before: Tue 29 Sep 2020 10:06:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 103.234.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1936 (0x790)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:04 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2963CFE749245A004646B5DDE050556DD72A33D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:97:07:3d:e3:38:20:dc:64:46:3c:a8:16:fd:
5e:3b:08:ea:3a:92:a7:a4:93:1f:40:6d:24:bf:cf:
ff:df:e7:07:15:5f:89:f3:c1:40:5b:c9:86:92:78:
20:18:df:1d:5b:77:8d:fc:bd:8a:80:6e:50:c4:f3:
e7:2d:a6:61:e4:18:d2:53:98:3c:4e:42:d4:90:a9:
0c:60:64:bf:a8:a8:67:a5:6e:99:da:e1:19:e4:e6:
34:dd:2d:70:b8:3c:4a:63:56:53:e8:1e:b2:ea:5c:
0c:9e:48:71:48:4d:53:38:97:af:e5:bf:f1:01:c5:
20:40:7e:f0:f5:4c:f3:64:10:19:f0:eb:8c:63:8a:
f3:c3:5c:b4:43:fe:2e:99:f3:95:e9:78:2b:1c:6c:
1c:0a:8b:a9:f0:ae:1e:32:9a:3a:3b:d3:c6:b0:0f:
d7:59:02:b2:c4:8a:f7:a4:4c:be:b5:07:07:99:8f:
06:4f:fe:cb:aa:91:14:54:59:19:4c:70:3d:30:a3:
b3:b3:09:cb:de:ef:87:72:ba:39:fd:a6:de:24:df:
63:b5:39:0c:b0:dc:89:e5:f2:a3:82:e6:cd:c7:0d:
d3:d4:31:cf:c2:e3:57:59:92:9d:e4:7c:5b:a7:17:
ef:0b:57:ae:52:b4:02:f3:55:8e:12:f0:f3:35:96:
86:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:63:CF:E7:49:24:5A:00:46:46:B5:DD:E0:50:55:6D:D7:2A:33:D9
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/KWPP50kkWgBGRrXd4FBVbdcqM9k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.228.0/22
Signature Algorithm: sha256WithRSAEncryption
20:9c:14:25:10:97:39:64:b0:42:7c:06:86:bc:a7:58:3d:73:
56:93:3a:e0:83:29:00:d4:08:a8:c2:5d:e2:b2:a6:27:b7:86:
fb:87:23:73:1f:8d:13:c0:66:c0:77:c3:26:0d:7a:96:82:e3:
f0:1b:d1:9e:2e:a9:44:4c:64:17:8c:16:13:eb:db:ca:af:83:
70:83:b4:17:e8:fd:f9:e1:42:0e:03:12:a1:e8:5d:9f:b6:ed:
eb:0e:47:4f:78:16:56:d2:70:8f:cc:54:f0:4a:28:51:bd:bd:
2f:95:7a:27:72:be:49:8d:c9:30:75:8e:d1:b4:55:9e:96:2f:
c4:ca:37:e1:56:25:b6:61:3f:55:f3:22:d7:79:76:c7:12:b1:
dd:d9:a2:9a:76:d3:b5:1d:96:4c:79:c2:74:fd:bf:86:ac:ca:
bd:98:97:1a:f1:39:6b:50:c0:1e:b1:a1:87:5f:2f:1c:a2:be:
63:11:ee:82:0f:b5:a1:de:2d:5b:d1:26:3f:1f:43:97:f4:ce:
19:62:ce:7a:2d:c7:83:07:b0:77:be:32:4b:59:ae:6a:bc:d7:
d5:af:bc:e8:04:19:47:26:74:cc:d7:66:78:26:d1:27:7e:04:
de:a5:a4:ef:49:27:62:92:cb:88:45:a5:f7:47:b9:f9:97:d7:
0a:77:18:bf
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB5AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMDA5Mjkx
MDA2MDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDI5NjNDRkU3NDkyNDVB
MDA0NjQ2QjVEREUwNTA1NTZERDcyQTMzRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD4lwc94zgg3GRGPKgW/V47COo6kqekkx9AbSS/z//f5wcVX4nz
wUBbyYaSeCAY3x1bd438vYqAblDE8+ctpmHkGNJTmDxOQtSQqQxgZL+oqGelbpna
4Rnk5jTdLXC4PEpjVlPoHrLqXAyeSHFITVM4l6/lv/EBxSBAfvD1TPNkEBnw64xj
ivPDXLRD/i6Z85XpeCscbBwKi6nwrh4ymjo708awD9dZArLEivekTL61BweZjwZP
/suqkRRUWRlMcD0wo7OzCcve74dyujn9pt4k32O1OQyw3Inl8qOC5s3HDdPUMc/C
41dZkp3kfFunF+8LV65StALzVY4S8PM1loYxAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUKWPP50kkWgBGRrXd4FBVbdcqM9kwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9LV1BQNTBra1dnQkdSclhkNEZC
VmJkY3FNOWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+rk
MA0GCSqGSIb3DQEBCwUAA4IBAQAgnBQlEJc5ZLBCfAaGvKdYPXNWkzrggykA1Aio
wl3isqYnt4b7hyNzH40TwGbAd8MmDXqWguPwG9GeLqlETGQXjBYT69vKr4Nwg7QX
6P354UIOAxKh6F2ftu3rDkdPeBZW0nCPzFTwSihRvb0vlXoncr5JjckwdY7RtFWe
li/EyjfhViW2YT9V8yLXeXbHErHd2aKadtO1HZZMecJ0/b+GrMq9mJca8TlrUMAe
saGHXy8cor5jEe6CD7Wh3i1b0SY/H0OX9M4ZYs56LceDB7B3vjJLWa5qvNfVr7zo
BBlHJnTM12Z4JtEnfgTepaTvSSdiksuIRaX3R7n5l9cKdxi/
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org