Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/h7M60cy7eFpQfwPUemGAAsKqAJ0.roa
File: h7M60cy7eFpQfwPUemGAAsKqAJ0.roa (raw, json)
Hash identifier: FqGQ0OIV+46QJcsnTfOqiKGdjWGC57nedzXEzlgTf20=
Subject key identifier: 87:B3:3A:D1:CC:BB:78:5A:50:7F:03:D4:7A:61:80:02:C2:AA:00:9D
Certificate issuer: /CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B
Certificate serial: 05
Authority key identifier: 45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/h7M60cy7eFpQfwPUemGAAsKqAJ0.roa
Signing time: Mon 14 Nov 2022 09:50:29 +0000
ROA not before: Mon 14 Nov 2022 09:50:29 +0000
ROA not after: Thu 09 Nov 2023 15:30:09 +0000
asID: 9678
IP address blocks: 103.37.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B
Validity
Not Before: Nov 14 09:50:29 2022 GMT
Not After : Nov 9 15:30:09 2023 GMT
Subject: CN=87B33AD1CCBB785A507F03D47A618002C2AA009D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:20:63:38:e5:5a:c4:42:2f:97:14:96:38:aa:
de:4e:dc:3f:6c:11:ab:ea:4c:ce:17:18:69:31:e9:
70:4d:56:a2:7e:ab:14:0d:8b:9c:ec:f5:42:79:ba:
db:46:d0:27:17:28:ba:7c:4d:65:cb:90:ac:e7:59:
fa:8a:9f:24:dd:89:81:65:f2:aa:1e:e8:c3:2e:41:
7e:96:cf:53:b1:ac:f1:41:dc:f7:34:43:97:fb:ef:
7f:88:7f:8f:34:2c:1e:75:be:c0:b1:11:96:82:19:
60:2b:0a:8d:4f:0d:a0:f0:e6:8c:8e:22:23:36:86:
04:58:cc:9a:31:37:03:93:c9:da:67:38:6e:3d:15:
87:b8:5c:26:54:82:5d:78:fb:02:5c:eb:f7:6c:b8:
f3:1c:eb:34:da:31:26:ea:d2:a3:37:a4:89:37:b7:
0a:22:50:57:2b:5c:b8:16:66:08:b3:7e:79:b4:ae:
1c:d1:5d:17:1f:d2:bb:b6:34:4f:e4:35:2c:bd:5f:
f1:d0:8e:25:d8:fa:e3:2f:9f:79:60:56:92:91:cb:
c7:fc:37:09:e1:f4:8d:d5:ed:c2:93:4d:25:38:ad:
4b:1e:e0:9d:6f:94:01:75:41:21:61:17:a7:68:3e:
c2:3d:47:5b:7d:98:6f:35:04:f5:03:ce:6a:b3:b9:
9c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B3:3A:D1:CC:BB:78:5A:50:7F:03:D4:7A:61:80:02:C2:AA:00:9D
X509v3 Authority Key Identifier:
keyid:45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/h7M60cy7eFpQfwPUemGAAsKqAJ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.37.4.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:35:1d:96:57:1d:ea:6b:ae:ce:5b:a9:a3:6f:dc:b4:f6:6d:
95:8c:ce:8c:3e:9a:e9:34:af:fc:18:ef:5b:29:b3:6e:7e:f8:
43:02:b8:03:f8:20:b1:ae:5b:65:1d:32:73:15:c6:6c:3b:dd:
9c:56:df:20:ed:4d:bc:fd:28:4a:9f:86:39:36:fb:72:0c:c7:
03:b2:27:c0:41:74:f1:4e:66:13:0d:03:47:9c:01:95:22:46:
87:62:ff:53:b8:ee:28:14:08:13:9b:ae:bf:57:8d:74:28:f6:
b4:a7:52:e0:67:71:79:9f:cd:8e:c1:df:66:6a:a7:59:46:3d:
0e:09:f6:aa:d1:b0:01:ab:56:66:6a:0a:4c:43:41:d2:6a:12:
92:b3:da:82:04:15:9c:f6:78:44:f5:bf:0b:0b:46:f3:cd:48:
5a:38:ec:f4:d6:14:24:1a:1a:ac:88:1d:9d:b2:06:25:67:ab:
7f:8f:23:f5:11:09:74:d0:65:41:e6:34:97:72:81:64:c9:2e:
96:bc:65:25:48:31:14:db:25:e5:48:fc:9f:48:85:3b:4a:15:
71:9d:85:44:17:37:59:8a:d6:9e:71:7f:1d:9b:57:27:96:8a:
ac:33:58:86:a3:61:cb:f6:78:c4:30:ca:a8:b1:a7:44:bf:7d:
1f:6e:ba:69
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0NUYz
MEI0QzVFQ0U2RTEyRTZEOTA4ODlENzk0MEQ4RTE4NzEwNzJCMB4XDTIyMTExNDA5
NTAyOVoXDTIzMTEwOTE1MzAwOVowMzExMC8GA1UEAxMoODdCMzNBRDFDQ0JCNzg1
QTUwN0YwM0Q0N0E2MTgwMDJDMkFBMDA5RDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANQgYzjlWsRCL5cUljiq3k7cP2wRq+pMzhcYaTHpcE1Won6rFA2L
nOz1Qnm620bQJxcounxNZcuQrOdZ+oqfJN2JgWXyqh7owy5BfpbPU7Gs8UHc9zRD
l/vvf4h/jzQsHnW+wLERloIZYCsKjU8NoPDmjI4iIzaGBFjMmjE3A5PJ2mc4bj0V
h7hcJlSCXXj7Alzr92y48xzrNNoxJurSozekiTe3CiJQVytcuBZmCLN+ebSuHNFd
Fx/Su7Y0T+Q1LL1f8dCOJdj64y+feWBWkpHLx/w3CeH0jdXtwpNNJTitSx7gnW+U
AXVBIWEXp2g+wj1HW32YbzUE9QPOarO5nCECAwEAAaOCAfAwggHsMB0GA1UdDgQW
BBSHszrRzLt4WlB/A9R6YYACwqoAnTAfBgNVHSMEGDAWgBRF8wtMXs5uEubZCInX
lA2OGHEHKzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ
oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TTVRSVENI
L1JmTUxURjdPYmhMbTJRaUoxNVFOamhoeEJ5cy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvUmZNTFRGN09iaExtMlFpSjE1UU5qaGh4QnlzLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU01UUlRDSC9oN002MGN5N2VGcFFmd1BV
ZW1HQUFzS3FBSjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu
dHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
ZyUEMA0GCSqGSIb3DQEBCwUAA4IBAQBrNR2WVx3qa67OW6mjb9y09m2VjM6MPprp
NK/8GO9bKbNufvhDArgD+CCxrltlHTJzFcZsO92cVt8g7U28/ShKn4Y5NvtyDMcD
sifAQXTxTmYTDQNHnAGVIkaHYv9TuO4oFAgTm66/V410KPa0p1LgZ3F5n82Owd9m
aqdZRj0OCfaq0bABq1ZmagpMQ0HSahKSs9qCBBWc9nhE9b8LC0bzzUhaOOz01hQk
GhqsiB2dsgYlZ6t/jyP1EQl00GVB5jSXcoFkyS6WvGUlSDEU2yXlSPyfSIU7ShVx
nYVEFzdZitaecX8dm1cnloqsM1iGo2HL9njEMMqosadEv30fbrpp
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org