Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYVC/8dfdWoKlo5E-M-HaLXYZNl28a5k.roa
File: 8dfdWoKlo5E-M-HaLXYZNl28a5k.roa (raw, json)
Hash identifier: vVwm5bVB3NtYW2CU6K9YoXiA4bqjrISSCJ5V6eh8FYo=
Subject key identifier: F1:D7:DD:5A:82:A5:A3:91:3E:33:E1:DA:2D:76:19:36:5D:BC:6B:99
Certificate issuer: /CN=7448D66FF329D2945C52EA01A567578B50026717
Certificate serial: 03
Authority key identifier: 74:48:D6:6F:F3:29:D2:94:5C:52:EA:01:A5:67:57:8B:50:02:67:17
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/8dfdWoKlo5E-M-HaLXYZNl28a5k.roa
Signing time: Mon 21 Mar 2022 10:15:17 +0000
ROA not before: Mon 21 Mar 2022 10:15:17 +0000
ROA not after: Tue 21 Mar 2023 07:03:02 +0000
asID: 7483
IP address blocks: 103.183.198.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7448D66FF329D2945C52EA01A567578B50026717
Validity
Not Before: Mar 21 10:15:17 2022 GMT
Not After : Mar 21 07:03:02 2023 GMT
Subject: CN=F1D7DD5A82A5A3913E33E1DA2D7619365DBC6B99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f5:d1:2b:b7:a9:2f:48:c3:66:d1:88:c1:d7:
af:43:1d:85:36:d1:71:ac:dd:df:71:f4:09:c4:27:
0d:8b:31:b0:f7:8f:54:31:1e:28:8a:d2:42:98:5f:
d5:11:50:46:4e:c9:c3:a7:f5:97:0b:33:8a:17:e5:
d9:8f:12:d1:a3:b4:2b:6b:09:62:60:41:0a:1a:3b:
cb:5b:43:4b:a1:f4:2d:3d:c5:8f:1a:bd:c5:6b:70:
15:ca:40:fd:00:fa:05:d6:21:e8:8a:5e:43:36:3f:
7b:19:0b:c0:49:2f:1e:47:f6:29:5d:5d:b7:ad:74:
ad:7f:27:cf:c5:82:91:df:a7:31:f1:86:0d:b0:57:
0c:ef:6c:78:29:9c:d7:09:14:ef:58:b7:7d:3f:73:
de:88:f7:d5:3f:7c:5f:bc:78:50:20:12:73:05:5e:
89:b8:3b:82:5d:78:bb:60:da:00:f5:b2:55:78:15:
4d:c4:88:80:5b:57:6e:68:d4:db:e1:a2:d7:8f:2c:
3c:c9:5a:dc:d0:5c:35:d3:82:34:5e:8a:33:ce:51:
99:f8:49:57:e5:87:78:0e:a0:11:c4:73:a9:04:83:
4e:f0:a5:c5:20:b4:62:b9:d8:c7:5e:cc:74:d8:6e:
32:cd:05:67:9f:44:2e:01:49:fc:a2:20:b6:9f:8f:
85:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:D7:DD:5A:82:A5:A3:91:3E:33:E1:DA:2D:76:19:36:5D:BC:6B:99
X509v3 Authority Key Identifier:
keyid:74:48:D6:6F:F3:29:D2:94:5C:52:EA:01:A5:67:57:8B:50:02:67:17
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/8dfdWoKlo5E-M-HaLXYZNl28a5k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.183.198.0/23
Signature Algorithm: sha256WithRSAEncryption
c7:44:f6:e9:95:6a:60:c8:d9:88:75:b1:f1:41:26:c0:5d:46:
58:0f:f9:07:0e:07:6d:f6:6d:bd:10:17:ff:e8:7e:18:62:ef:
35:63:b7:d0:5c:e3:0a:4f:7a:c8:11:7f:8d:39:81:01:03:64:
88:d7:01:3d:81:40:7e:82:65:0e:da:eb:a1:c7:ad:61:94:d1:
31:03:7f:2f:30:19:c3:74:3d:fe:b7:91:73:fa:41:0e:f3:d0:
54:1c:d8:4c:1e:8c:30:12:92:0e:79:a4:be:40:14:9f:36:4c:
66:52:7b:d2:22:76:1b:eb:0d:1a:cb:f6:ba:66:d7:0f:e2:2d:
ed:1f:c7:fc:45:41:a1:c4:cf:47:b6:35:42:9a:20:d7:6d:64:
5f:74:b8:e7:82:33:a7:4d:85:c9:61:26:09:d1:b8:36:6c:5d:
79:c3:fa:5d:47:af:15:45:61:cd:1f:e5:1d:30:ef:82:80:4b:
79:c6:ec:b6:38:8a:70:91:5f:0f:a9:c3:b9:7d:af:50:ef:5e:
ad:a3:96:68:e2:a1:75:a7:0f:52:46:cc:63:c5:3e:cd:d4:1b:
c9:25:42:2a:7f:33:51:7c:87:09:74:27:65:af:4b:d0:6a:3e:
37:fa:83:a9:c7:09:00:7c:b6:7f:52:4e:59:24:8a:ae:4f:07:
e1:7a:83:0f
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3NDQ4
RDY2RkYzMjlEMjk0NUM1MkVBMDFBNTY3NTc4QjUwMDI2NzE3MB4XDTIyMDMyMTEw
MTUxN1oXDTIzMDMyMTA3MDMwMlowMzExMC8GA1UEAxMoRjFEN0RENUE4MkE1QTM5
MTNFMzNFMURBMkQ3NjE5MzY1REJDNkI5OTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMH10Su3qS9Iw2bRiMHXr0MdhTbRcazd33H0CcQnDYsxsPePVDEe
KIrSQphf1RFQRk7Jw6f1lwszihfl2Y8S0aO0K2sJYmBBCho7y1tDS6H0LT3Fjxq9
xWtwFcpA/QD6BdYh6IpeQzY/exkLwEkvHkf2KV1dt610rX8nz8WCkd+nMfGGDbBX
DO9seCmc1wkU71i3fT9z3oj31T98X7x4UCAScwVeibg7gl14u2DaAPWyVXgVTcSI
gFtXbmjU2+Gi148sPMla3NBcNdOCNF6KM85RmfhJV+WHeA6gEcRzqQSDTvClxSC0
YrnYx17MdNhuMs0FZ59ELgFJ/KIgtp+PhdsCAwEAAaOCAeowggHmMB0GA1UdDgQW
BBTx191agqWjkT4z4dotdhk2XbxrmTAfBgNVHSMEGDAWgBR0SNZv8ynSlFxS6gGl
Z1eLUAJnFzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN
oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TWVZDL2RF
aldiX01wMHBSY1V1b0JwV2RYaTFBQ1p4Yy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZEVqV2JfTXAwcFJjVXVvQnBXZFhpMUFDWnhjLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvU1lWQy84ZGZkV29LbG81RS1NLUhhTFhZWk5s
MjhhNWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk
cC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7fGMA0G
CSqGSIb3DQEBCwUAA4IBAQDHRPbplWpgyNmIdbHxQSbAXUZYD/kHDgdt9m29EBf/
6H4YYu81Y7fQXOMKT3rIEX+NOYEBA2SI1wE9gUB+gmUO2uuhx61hlNExA38vMBnD
dD3+t5Fz+kEO89BUHNhMHowwEpIOeaS+QBSfNkxmUnvSInYb6w0ay/a6ZtcP4i3t
H8f8RUGhxM9HtjVCmiDXbWRfdLjngjOnTYXJYSYJ0bg2bF15w/pdR68VRWHNH+Ud
MO+CgEt5xuy2OIpwkV8PqcO5fa9Q716to5Zo4qF1pw9SRsxjxT7N1BvJJUIqfzNR
fIcJdCdlr0vQaj43+oOpxwkAfLZ/Uk5ZJIquTwfheoMP
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org