Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/mhX4NHupAhI5DOBWkVEjgdQJLxo.roa
File: mhX4NHupAhI5DOBWkVEjgdQJLxo.roa (raw, json)
Hash identifier: Cfmx43Yq2WhY74qkP9Jvb6lhBxA/JVLtuTRgkenMJ50=
Subject key identifier: 9A:15:F8:34:7B:A9:02:12:39:0C:E0:56:91:51:23:81:D4:09:2F:1A
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 02BF
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/mhX4NHupAhI5DOBWkVEjgdQJLxo.roa
Signing time: Sun 07 Feb 2021 13:02:54 +0000
ROA not before: Sun 07 Feb 2021 13:02:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9678
IP address blocks: 103.152.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 703 (0x2bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Feb 7 13:02:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9A15F8347BA90212390CE05691512381D4092F1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:32:d5:98:89:c8:5e:7d:cc:16:05:d6:4c:b8:
3d:b1:11:04:e9:7f:33:38:ff:e7:0f:4d:91:cf:55:
01:51:6b:00:5c:99:47:6c:90:87:b7:f5:ef:16:c0:
37:81:d5:48:f4:8f:b5:91:8d:d8:75:c7:e5:13:fc:
af:83:b6:50:a5:57:7e:86:42:3a:ad:78:b9:b9:5f:
7d:7a:ce:1d:45:af:fe:b3:05:c9:a5:66:aa:57:9b:
c9:b5:a1:57:e7:2b:48:d1:64:a6:7a:4c:c0:1f:c6:
60:00:e4:f1:02:fb:d3:5e:b4:5c:38:d9:37:af:34:
49:fb:4f:2c:8e:c6:fb:9f:bf:4c:a2:40:39:75:27:
65:31:99:92:af:f5:b5:12:f4:31:3c:14:5e:cd:a6:
de:e2:e9:b0:71:a0:91:63:1e:d6:63:87:ce:15:d5:
84:63:a2:a3:59:83:f2:ab:07:28:3c:63:54:fc:a7:
0e:92:e8:4f:21:c1:a3:e6:40:6a:7a:19:3f:18:c2:
20:1a:1b:c8:3a:20:97:53:5c:2c:66:c3:15:aa:97:
9d:f1:ed:77:ee:47:70:38:e2:38:01:e6:47:6e:76:
6b:57:0a:41:17:a1:d8:f7:3e:89:f8:17:42:3b:77:
2c:dd:37:a1:d4:e0:46:af:68:5c:62:fc:12:82:cd:
fb:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:15:F8:34:7B:A9:02:12:39:0C:E0:56:91:51:23:81:D4:09:2F:1A
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/mhX4NHupAhI5DOBWkVEjgdQJLxo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.151.0/24
Signature Algorithm: sha256WithRSAEncryption
03:82:79:5e:31:b1:60:72:4e:c6:71:1d:a7:e2:8b:0d:aa:ea:
b6:22:c3:71:8f:00:e6:6a:24:4e:c7:fb:06:0b:b8:67:ed:5e:
39:38:11:e1:c7:4e:11:d5:2a:90:1d:a5:48:06:a6:68:a1:ad:
cd:b0:e5:94:20:64:36:ab:02:27:ab:00:1f:f9:e1:ff:c6:99:
c0:cf:da:6e:6c:37:cf:3a:f7:36:39:7f:f6:2d:05:b0:93:63:
32:66:f6:bb:14:6c:7c:32:32:e1:cf:b5:38:e5:3e:9b:f3:ad:
6e:d9:d4:8a:8d:16:51:09:9b:cb:03:27:86:49:d4:d2:c7:7b:
e5:f1:c1:c6:0d:5e:ca:ae:46:06:3d:d0:f5:cc:e9:8b:23:1a:
2b:84:7f:10:6d:15:1b:a3:df:85:64:af:18:37:bc:36:fc:ce:
c2:7b:eb:b1:db:79:02:d2:78:c7:1c:a0:20:86:28:58:e0:c5:
18:eb:1d:ee:a3:97:55:b6:c5:32:73:c5:75:46:27:88:b4:ec:
90:49:99:cf:40:4c:d7:ae:a6:99:da:e0:98:3c:50:7e:b9:df:
43:ff:5f:c1:50:34:b0:b5:f7:e1:63:19:e7:f0:86:01:8d:4a:
aa:77:b1:f0:b2:a3:16:db:2d:62:ff:28:4e:57:1b:ad:35:41:
b6:d7:6c:ae
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICAr8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjI4
MzlCRjdBNkM2QjE3RTdDRkNCMzczNEEzNkMwRTk4QzM3QTFCNzAeFw0yMTAyMDcx
MzAyNTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDlBMTVGODM0N0JBOTAy
MTIzOTBDRTA1NjkxNTEyMzgxRDQwOTJGMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpMtWYichefcwWBdZMuD2xEQTpfzM4/+cPTZHPVQFRawBcmUds
kIe39e8WwDeB1Uj0j7WRjdh1x+UT/K+DtlClV36GQjqteLm5X316zh1Fr/6zBcml
ZqpXm8m1oVfnK0jRZKZ6TMAfxmAA5PEC+9NetFw42TevNEn7TyyOxvufv0yiQDl1
J2UxmZKv9bUS9DE8FF7Npt7i6bBxoJFjHtZjh84V1YRjoqNZg/KrByg8Y1T8pw6S
6E8hwaPmQGp6GT8YwiAaG8g6IJdTXCxmwxWql53x7XfuR3A44jgB5kdudmtXCkEX
odj3Pon4F0I7dyzdN6HU4EavaFxi/BKCzftbAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUmhX4NHupAhI5DOBWkVEjgdQJLxowHwYDVR0jBBgwFoAUsoOb96bGsX58/LNz
SjbA6Yw3obcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1VNQVRS
QS9zb09iOTZiR3NYNThfTE56U2piQTZZdzNvYmMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3NvT2I5NmJHc1g1OF9MTnpTamJBNll3M29iYy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NVTUFUUkEvbWhYNE5IdXBBaEk1RE9C
V2tWRWpnZFFKTHhvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGeYlzANBgkqhkiG9w0BAQsFAAOCAQEAA4J5XjGxYHJOxnEdp+KLDarqtiLDcY8A
5mokTsf7Bgu4Z+1eOTgR4cdOEdUqkB2lSAamaKGtzbDllCBkNqsCJ6sAH/nh/8aZ
wM/abmw3zzr3Njl/9i0FsJNjMmb2uxRsfDIy4c+1OOU+m/OtbtnUio0WUQmbywMn
hknU0sd75fHBxg1eyq5GBj3Q9czpiyMaK4R/EG0VG6PfhWSvGDe8NvzOwnvrsdt5
AtJ4xxygIIYoWODFGOsd7qOXVbbFMnPFdUYniLTskEmZz0BM166mmdrgmDxQfrnf
Q/9fwVA0sLX34WMZ5/CGAY1Kqnex8LKjFtstYv8oTlcbrTVBttdsrg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org