Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/ZA0RwN78jZQpl6YguJ5tIuz9A4g.roa
File: ZA0RwN78jZQpl6YguJ5tIuz9A4g.roa (raw, json)
Hash identifier: PN6VtQy/sPhws5krYdiqWflDOJbsRPpMsq/27iTqMX4=
Subject key identifier: 64:0D:11:C0:DE:FC:8D:94:29:97:A6:20:B8:9E:6D:22:EC:FD:03:88
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 044E
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/ZA0RwN78jZQpl6YguJ5tIuz9A4g.roa
Signing time: Thu 15 Sep 2022 02:35:11 +0000
ROA not before: Thu 15 Sep 2022 02:35:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9678
IP address blocks: 103.152.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1102 (0x44e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Sep 15 02:35:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=640D11C0DEFC8D942997A620B89E6D22ECFD0388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:db:19:ca:cb:0c:c6:6a:a1:8b:ee:55:c7:4f:
29:28:1b:73:1a:81:8d:39:fb:30:ae:db:ad:a9:26:
c6:22:35:7a:f6:ff:32:5b:1e:33:88:dc:c7:8f:3f:
c4:7c:b5:35:05:f6:4e:1e:5e:fe:c8:ea:7d:01:f2:
62:18:4d:78:11:9d:79:5a:83:04:04:68:57:ef:bc:
26:78:a4:37:3a:64:c7:64:46:64:75:f2:4c:d5:cc:
4c:fd:e6:db:2c:8d:7b:c7:97:d1:f9:1d:15:c4:e5:
d4:93:b8:9b:2c:a7:45:d9:0e:d4:cf:d9:56:74:ee:
59:2c:ea:f6:62:a2:e1:3d:f3:01:ae:7b:5f:92:86:
29:43:16:1d:3b:94:36:1e:a3:f9:81:b1:e7:e3:49:
c7:c4:f1:90:d0:5f:12:22:04:a5:c4:85:af:d6:ef:
3c:a6:44:02:e4:f8:7e:bd:f3:b0:ea:f7:86:0d:22:
e6:48:0d:d1:b6:24:d0:86:77:60:85:86:48:16:b4:
03:d6:bd:a8:4f:1c:ad:d2:34:75:f9:31:a8:e2:eb:
c2:12:bc:b5:1d:0f:17:0a:89:1e:2b:48:61:5a:e0:
92:25:2b:a2:35:d3:f9:af:a4:94:ba:22:55:f4:2d:
08:88:3a:e8:1b:94:2c:21:6f:75:ed:a1:0c:53:a8:
ce:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:0D:11:C0:DE:FC:8D:94:29:97:A6:20:B8:9E:6D:22:EC:FD:03:88
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/ZA0RwN78jZQpl6YguJ5tIuz9A4g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.150.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:1f:d9:a4:4e:69:49:42:bb:2e:f2:2c:71:d1:a2:c0:4e:ac:
74:90:96:a2:8c:b8:e3:7b:36:69:28:7b:55:de:a8:48:00:82:
7c:5d:c8:0f:3d:22:00:1c:b5:7b:d6:81:13:0e:a4:d4:c4:88:
6a:91:5a:fd:90:12:ca:39:0f:14:45:52:9a:72:0b:1e:fa:49:
75:64:90:aa:dd:5a:2e:7c:44:8b:08:d5:6b:44:c1:61:56:a3:
54:b5:54:08:97:f5:d9:5d:eb:cb:04:a3:c9:5d:ca:9e:f0:70:
bb:b1:a4:c7:d3:89:64:ba:65:da:04:84:98:af:d6:77:c0:a5:
01:bc:13:15:df:41:bf:42:b0:60:ba:a2:a5:42:bc:23:08:f4:
9a:b9:57:9d:1a:65:f8:db:22:ce:1a:03:4a:b1:7b:4d:60:5f:
67:71:db:31:54:da:6e:08:43:73:f1:1b:fc:68:55:34:8c:1d:
2c:27:2c:f4:92:9c:fc:5b:15:f4:95:5f:e6:4f:58:54:33:26:
c8:9f:a7:ad:53:e8:0c:7c:85:3e:7b:03:71:b4:30:46:be:bd:
19:5c:77:7c:e4:71:82:a9:96:1e:79:78:8c:12:58:37:b9:31:
ea:00:96:cb:d9:54:39:9f:ce:a8:97:f9:ab:5a:48:29:0b:86:
2f:a3:34:a9
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICBE4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjI4
MzlCRjdBNkM2QjE3RTdDRkNCMzczNEEzNkMwRTk4QzM3QTFCNzAeFw0yMjA5MTUw
MjM1MTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDY0MEQxMUMwREVGQzhE
OTQyOTk3QTYyMEI4OUU2RDIyRUNGRDAzODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDp2xnKywzGaqGL7lXHTykoG3MagY05+zCu262pJsYiNXr2/zJb
HjOI3MePP8R8tTUF9k4eXv7I6n0B8mIYTXgRnXlagwQEaFfvvCZ4pDc6ZMdkRmR1
8kzVzEz95tssjXvHl9H5HRXE5dSTuJssp0XZDtTP2VZ07lks6vZiouE98wGue1+S
hilDFh07lDYeo/mBsefjScfE8ZDQXxIiBKXEha/W7zymRALk+H6987Dq94YNIuZI
DdG2JNCGd2CFhkgWtAPWvahPHK3SNHX5Maji68ISvLUdDxcKiR4rSGFa4JIlK6I1
0/mvpJS6IlX0LQiIOugblCwhb3XtoQxTqM63AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUZA0RwN78jZQpl6YguJ5tIuz9A4gwHwYDVR0jBBgwFoAUsoOb96bGsX58/LNz
SjbA6Yw3obcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1VNQVRS
QS9zb09iOTZiR3NYNThfTE56U2piQTZZdzNvYmMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3NvT2I5NmJHc1g1OF9MTnpTamJBNll3M29iYy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NVTUFUUkEvWkEwUndONzhqWlFwbDZZ
Z3VKNXRJdXo5QTRnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AWeYljANBgkqhkiG9w0BAQsFAAOCAQEApR/ZpE5pSUK7LvIscdGiwE6sdJCWooy4
43s2aSh7Vd6oSACCfF3IDz0iABy1e9aBEw6k1MSIapFa/ZASyjkPFEVSmnILHvpJ
dWSQqt1aLnxEiwjVa0TBYVajVLVUCJf12V3rywSjyV3KnvBwu7Gkx9OJZLpl2gSE
mK/Wd8ClAbwTFd9Bv0KwYLqipUK8Iwj0mrlXnRpl+NsizhoDSrF7TWBfZ3HbMVTa
bghDc/Eb/GhVNIwdLCcs9JKc/FsV9JVf5k9YVDMmyJ+nrVPoDHyFPnsDcbQwRr69
GVx3fORxgqmWHnl4jBJYN7kx6gCWy9lUOZ/OqJf5q1pIKQuGL6M0qQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:05:07 2025 by rpki-client