Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/QsBsRJyv7Q8WqRTu0IJeO_FA0tY.roa
File: QsBsRJyv7Q8WqRTu0IJeO_FA0tY.roa (raw, json)
Hash identifier: nq9tPfhP62rqoEJxcBer98/kLOWhx460TQZ2x6V67Ho=
Subject key identifier: 42:C0:6C:44:9C:AF:ED:0F:16:A9:14:EE:D0:82:5E:3B:F1:40:D2:D6
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 08D2
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/QsBsRJyv7Q8WqRTu0IJeO_FA0tY.roa
Signing time: Sun 07 Feb 2021 11:49:09 +0000
ROA not before: Sun 07 Feb 2021 11:49:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131590
IP address blocks: 103.227.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2258 (0x8d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Feb 7 11:49:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=42C06C449CAFED0F16A914EED0825E3BF140D2D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:83:02:a2:0c:b9:e8:b3:1f:92:16:e9:b7:92:
34:a6:8c:b9:b3:5a:62:fc:1b:a8:9b:d2:80:78:bc:
aa:08:6a:94:18:ac:59:c5:3c:c1:38:da:e8:88:1d:
d5:91:f7:a0:75:37:ef:8c:0d:e8:78:42:6e:77:35:
3d:01:ce:a7:5c:b6:34:0b:e4:85:5a:19:71:0f:1a:
0f:2c:bf:a4:0e:34:52:dc:32:7c:de:f7:e0:c9:93:
71:7c:5d:80:18:2b:35:e6:15:de:96:cd:8a:ef:c8:
5f:17:fa:d3:f6:25:0c:0a:64:4a:af:00:8c:72:c5:
44:c5:b6:ee:69:7f:83:28:6a:5f:c6:f8:d3:db:cd:
8b:c5:76:64:5c:58:f5:71:0a:22:a4:c9:3e:ef:e5:
9c:bc:41:c3:62:8e:fe:8a:64:83:c6:bc:bb:66:36:
46:f3:6e:36:f9:66:3c:0b:d8:a2:40:36:44:54:72:
6d:06:09:75:9b:e0:18:c8:29:f7:ad:1e:07:8b:ba:
02:e7:b0:35:55:ca:ab:8b:a4:e2:8b:3e:cc:2a:46:
aa:c3:ff:fb:4f:46:07:80:42:aa:7c:83:82:4c:54:
9a:f2:be:f2:dc:2e:4b:c5:41:30:08:98:3e:da:d4:
f8:03:f8:52:35:f6:3b:50:d0:c5:6b:df:38:df:bc:
b6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C0:6C:44:9C:AF:ED:0F:16:A9:14:EE:D0:82:5E:3B:F1:40:D2:D6
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/QsBsRJyv7Q8WqRTu0IJeO_FA0tY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.227.224.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:fe:25:8a:a6:09:53:b2:a1:cf:df:e7:fa:10:5a:75:b2:7b:
cd:af:2a:a2:ee:a6:83:38:2d:72:5e:cd:00:5a:be:f6:f3:03:
0c:56:e3:fb:51:59:ba:cf:19:d1:fd:71:eb:ce:4a:4a:e1:ea:
4e:6c:81:f6:76:26:7e:31:48:ac:76:c0:1f:c7:86:af:2d:b2:
bd:39:ed:e9:2d:96:15:da:9a:6b:e7:2d:69:97:95:d1:95:c3:
30:8c:b6:e6:d5:40:7c:29:fe:91:01:a8:66:5d:c0:20:52:2c:
d8:76:84:f7:da:7b:fa:15:19:7c:32:34:e7:ca:a2:28:19:d1:
90:75:81:85:c0:3e:3c:81:93:26:5c:d5:b2:87:f2:3a:9e:e2:
7e:26:40:af:a8:47:4e:09:d7:6a:99:9b:c1:d4:ea:ec:b8:8c:
ca:49:d6:4e:29:37:f5:e6:df:4b:3b:32:ce:d1:7a:d8:8f:cb:
02:38:ff:02:11:33:c3:d6:c8:28:f3:e2:05:8d:29:e6:c5:6e:
5a:aa:70:72:37:dd:fa:ca:6a:f8:41:58:be:60:2a:13:c6:d7:
3f:ed:67:aa:d0:e2:26:17:0c:6a:ab:7f:0f:72:5a:3f:bb:52:
3e:71:fb:63:49:ec:a1:b2:70:2a:5d:b8:98:8e:fd:20:14:48:
9f:f6:f7:ec
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCNIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkY4
MkEzQUMxMTQ1NTAzMDc0M0MwQTc0MzcxMUY4QTBEOEVCQUUyODAeFw0yMTAyMDcx
MTQ5MDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQyQzA2QzQ0OUNBRkVE
MEYxNkE5MTRFRUQwODI1RTNCRjE0MEQyRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNgwKiDLnosx+SFum3kjSmjLmzWmL8G6ib0oB4vKoIapQYrFnF
PME42uiIHdWR96B1N++MDeh4Qm53NT0BzqdctjQL5IVaGXEPGg8sv6QONFLcMnze
9+DJk3F8XYAYKzXmFd6WzYrvyF8X+tP2JQwKZEqvAIxyxUTFtu5pf4Moal/G+NPb
zYvFdmRcWPVxCiKkyT7v5Zy8QcNijv6KZIPGvLtmNkbzbjb5ZjwL2KJANkRUcm0G
CXWb4BjIKfetHgeLugLnsDVVyquLpOKLPswqRqrD//tPRgeAQqp8g4JMVJryvvLc
LkvFQTAImD7a1PgD+FI19jtQ0MVr3zjfvLb3AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUQsBsRJyv7Q8WqRTu0IJeO/FA0tYwHwYDVR0jBBgwFoAUv4KjrBFFUDB0PAp0
NxH4oNjrrigwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL3Y0
S2pyQkZGVURCMFBBcDBOeEg0b05qcnJpZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
djRLanJCRkZVREIwUEFwME54SDRvTmpycmlnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL1FzQnNSSnl2N1E4V3FSVHUwSUplT19G
QTB0WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn4+AwDQYJ
KoZIhvcNAQELBQADggEBAIz+JYqmCVOyoc/f5/oQWnWye82vKqLupoM4LXJezQBa
vvbzAwxW4/tRWbrPGdH9cevOSkrh6k5sgfZ2Jn4xSKx2wB/Hhq8tsr057ektlhXa
mmvnLWmXldGVwzCMtubVQHwp/pEBqGZdwCBSLNh2hPfae/oVGXwyNOfKoigZ0ZB1
gYXAPjyBkyZc1bKH8jqe4n4mQK+oR04J12qZm8HU6uy4jMpJ1k4pN/Xm30s7Ms7R
etiPywI4/wIRM8PWyCjz4gWNKebFblqqcHI33frKavhBWL5gKhPG1z/tZ6rQ4iYX
DGqrfw9yWj+7Uj5x+2NJ7KGycCpduJiO/SAUSJ/29+w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org