Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SPETW/tXeXS7mcPjY5VlN-v6uhDlk6a1Y.roa
File: tXeXS7mcPjY5VlN-v6uhDlk6a1Y.roa (raw, json)
Hash identifier: pf4tyZCT5eT/NamxmGs5601X09Q++dm6k5mMQEMgbkA=
Subject key identifier: B5:77:97:4B:B9:9C:3E:36:39:56:53:7E:BF:AB:A1:0E:59:3A:6B:56
Certificate issuer: /CN=6F8C92DFC78CBFE8C5EFD6BA5A37A1628221FFE2
Certificate serial: 0A1A
Authority key identifier: 6F:8C:92:DF:C7:8C:BF:E8:C5:EF:D6:BA:5A:37:A1:62:82:21:FF:E2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b4yS38eMv-jF79a6WjehYoIh_-I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SPETW/tXeXS7mcPjY5VlN-v6uhDlk6a1Y.roa
Signing time: Thu 15 Sep 2022 02:50:10 +0000
ROA not before: Thu 15 Sep 2022 02:50:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131623
IP address blocks: 103.117.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2586 (0xa1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6F8C92DFC78CBFE8C5EFD6BA5A37A1628221FFE2
Validity
Not Before: Sep 15 02:50:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B577974BB99C3E363956537EBFABA10E593A6B56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e3:7f:06:48:39:f9:97:7e:35:30:fe:da:58:
df:2d:07:27:60:85:06:50:00:36:42:99:40:33:e3:
7a:7f:b0:71:c4:05:94:6a:65:70:fc:fe:2e:c7:3b:
c1:09:5e:d2:65:51:3c:22:5b:31:88:0a:13:84:23:
24:9d:e1:ff:77:c2:31:00:c2:32:85:69:9a:65:64:
ff:73:a5:33:f9:ba:2c:6b:e0:5f:24:fd:d8:b6:db:
a7:52:25:d5:5c:41:26:2c:23:a3:a2:79:73:d2:9e:
5e:ed:f8:d2:6d:c0:3d:09:20:74:e8:a6:d3:e6:b2:
d5:ac:2f:50:4f:05:c9:a8:cd:de:f0:80:60:95:59:
da:1a:f9:99:09:78:62:85:f0:30:d5:f4:44:18:2d:
8b:89:cf:6a:19:a6:1a:72:4c:13:9c:44:fb:64:fa:
6d:07:63:c9:bc:c3:14:a2:69:06:64:d7:9d:e2:f0:
cb:0a:6b:10:b8:bf:6b:ef:a7:97:6a:5a:e0:5a:a0:
92:e4:e4:c9:78:34:f6:52:60:f6:36:a6:4a:a7:38:
71:2f:ea:87:2d:50:8d:64:d7:6a:69:5c:fa:7d:07:
90:ce:97:18:36:7f:63:f6:52:95:57:a9:89:8c:49:
a6:0a:22:d7:b8:71:34:13:e0:b2:45:c7:e0:64:4e:
16:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:77:97:4B:B9:9C:3E:36:39:56:53:7E:BF:AB:A1:0E:59:3A:6B:56
X509v3 Authority Key Identifier:
keyid:6F:8C:92:DF:C7:8C:BF:E8:C5:EF:D6:BA:5A:37:A1:62:82:21:FF:E2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SPETW/b4yS38eMv-jF79a6WjehYoIh_-I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b4yS38eMv-jF79a6WjehYoIh_-I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SPETW/tXeXS7mcPjY5VlN-v6uhDlk6a1Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.117.4.0/22
Signature Algorithm: sha256WithRSAEncryption
25:22:14:7d:0c:7c:2f:35:8b:e5:80:d3:04:a5:f7:ce:cf:ab:
3b:2a:1c:d8:fe:ce:38:c1:15:99:ba:4a:4f:6f:24:28:af:dc:
4d:76:98:96:26:7d:bc:dd:4c:75:23:3a:b7:1d:e5:19:f2:0a:
33:c7:e7:66:1e:79:51:85:dc:3d:dc:c4:e8:2b:dc:74:12:86:
0d:45:0e:59:ad:bb:fa:38:79:1e:2d:97:e4:c6:01:4d:81:2c:
1b:6e:cf:e2:74:b2:b4:f8:97:ad:c1:13:0c:27:7d:d7:c9:4f:
12:ca:eb:b3:33:12:7d:a1:fb:57:19:d1:e5:6e:a4:73:74:61:
14:58:40:fd:e3:76:76:3e:50:98:11:54:51:27:8b:ce:de:4b:
d1:07:fe:4b:f3:2a:b2:67:ec:80:22:18:5e:5a:18:1c:f0:d7:
44:06:68:1e:38:cf:be:70:3b:73:09:2e:0e:18:6b:25:f4:1c:
a7:6f:c6:bd:c9:74:12:bd:3a:f2:a4:f0:cd:9d:85:03:f7:cd:
2d:6b:53:eb:02:0e:32:79:28:e7:df:c0:24:d0:b7:61:53:b8:
ae:8d:93:aa:e9:25:80:65:ae:a0:3c:06:be:26:fa:85:c9:94:
29:36:29:42:ad:6f:65:6e:71:9d:fa:a4:c7:14:ff:88:39:c2:
69:47:de:78
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICChowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkY4
QzkyREZDNzhDQkZFOEM1RUZENkJBNUEzN0ExNjI4MjIxRkZFMjAeFw0yMjA5MTUw
MjUwMTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEI1Nzc5NzRCQjk5QzNF
MzYzOTU2NTM3RUJGQUJBMTBFNTkzQTZCNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDk438GSDn5l341MP7aWN8tBydghQZQADZCmUAz43p/sHHEBZRq
ZXD8/i7HO8EJXtJlUTwiWzGIChOEIySd4f93wjEAwjKFaZplZP9zpTP5uixr4F8k
/di226dSJdVcQSYsI6OieXPSnl7t+NJtwD0JIHToptPmstWsL1BPBcmozd7wgGCV
Wdoa+ZkJeGKF8DDV9EQYLYuJz2oZphpyTBOcRPtk+m0HY8m8wxSiaQZk153i8MsK
axC4v2vvp5dqWuBaoJLk5Ml4NPZSYPY2pkqnOHEv6octUI1k12ppXPp9B5DOlxg2
f2P2UpVXqYmMSaYKIte4cTQT4LJFx+BkThbBAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUtXeXS7mcPjY5VlN+v6uhDlk6a1YwHwYDVR0jBBgwFoAUb4yS38eMv+jF79a6
WjehYoIh/+IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1BFVFcv
YjR5UzM4ZU12LWpGNzlhNldqZWhZb0loXy1JLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9iNHlTMzhlTXYtakY3OWE2V2plaFlvSWhfLUkuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TUEVUVy90WGVYUzdtY1BqWTVWbE4tdjZ1
aERsazZhMVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ3UE
MA0GCSqGSIb3DQEBCwUAA4IBAQAlIhR9DHwvNYvlgNMEpffOz6s7KhzY/s44wRWZ
ukpPbyQor9xNdpiWJn283Ux1Izq3HeUZ8gozx+dmHnlRhdw93MToK9x0EoYNRQ5Z
rbv6OHkeLZfkxgFNgSwbbs/idLK0+JetwRMMJ33XyU8SyuuzMxJ9oftXGdHlbqRz
dGEUWED943Z2PlCYEVRRJ4vO3kvRB/5L8yqyZ+yAIhheWhgc8NdEBmgeOM++cDtz
CS4OGGsl9Bynb8a9yXQSvTrypPDNnYUD980ta1PrAg4yeSjn38Ak0LdhU7iujZOq
6SWAZa6gPAa+JvqFyZQpNilCrW9lbnGd+qTHFP+IOcJpR954
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org