Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/Tmz2hGXBW4js03x0b3q4SeAycEg.roa
File: Tmz2hGXBW4js03x0b3q4SeAycEg.roa (raw, json)
Hash identifier: M4VubPjhYjqwVT1iQ2ZLzQ/tWwPQnyHVgUIa3aDD0E8=
Subject key identifier: 4E:6C:F6:84:65:C1:5B:88:EC:D3:7C:74:6F:7A:B8:49:E0:32:70:48
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0A61
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/Tmz2hGXBW4js03x0b3q4SeAycEg.roa
Signing time: Thu 15 Sep 2022 02:38:35 +0000
ROA not before: Thu 15 Sep 2022 02:38:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131590
IP address blocks: 103.227.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2657 (0xa61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 15 02:38:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4E6CF68465C15B88ECD37C746F7AB849E0327048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:17:de:00:84:91:bf:c3:d5:b5:b3:cf:43:b7:
10:65:0c:3f:bc:b4:1a:86:9c:aa:7e:75:59:a4:39:
6f:a8:b7:06:16:70:03:d5:43:9e:a8:d8:3c:61:15:
bc:d0:fc:5b:a5:e7:31:1e:59:c6:c6:98:7a:7a:81:
ea:b4:0d:fb:0b:85:ea:ec:49:ad:b6:ad:b7:04:fc:
70:41:f8:0b:dc:ea:dc:f3:9c:45:8a:5c:5b:46:d4:
8e:b7:59:00:24:48:42:9c:a0:38:a0:36:26:21:7d:
1f:f1:72:bd:5a:36:c8:5a:a9:bb:b2:a7:34:cb:eb:
f6:7e:30:9b:c7:97:ae:f6:ce:39:ac:8f:12:5b:72:
67:a9:ec:9b:a6:a1:9a:a0:9d:4c:1b:e7:0b:1a:34:
dd:3c:d4:de:5e:49:e9:e0:04:28:95:02:c6:ef:0c:
d8:70:8f:6f:4d:e0:5d:f5:03:26:24:5c:f8:c9:27:
d5:91:e6:33:50:fa:cb:51:f7:b1:b9:7f:52:03:e2:
c2:b2:28:93:4d:c3:29:12:b4:90:ac:ae:b3:8d:25:
28:71:ca:e6:4b:ef:a2:b3:88:56:16:13:23:95:f8:
52:3f:ee:f1:7c:ca:06:cd:b2:c2:b7:e1:ef:cc:93:
95:a0:91:3e:bf:92:e1:d3:5a:54:57:25:17:e3:26:
09:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:6C:F6:84:65:C1:5B:88:EC:D3:7C:74:6F:7A:B8:49:E0:32:70:48
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/Tmz2hGXBW4js03x0b3q4SeAycEg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.227.224.0/22
Signature Algorithm: sha256WithRSAEncryption
90:11:4f:6d:dc:d3:c6:46:b7:81:0f:ab:c7:c4:39:85:31:b9:
8c:a5:80:15:4b:a0:36:ab:ed:da:eb:f9:b6:b4:e9:88:d4:d6:
0a:56:59:70:d0:23:55:b4:dc:13:ed:6a:23:7f:00:62:9d:82:
88:ba:0f:30:df:40:b5:3b:39:52:7b:10:d3:33:be:12:98:37:
58:2a:3d:bd:cc:61:5a:43:67:d0:f1:b7:3d:9c:53:12:7b:88:
1b:b2:c7:4a:d3:3b:f7:ce:49:d2:e4:55:d7:a1:b0:e3:7e:eb:
4a:3d:40:dd:27:80:3a:83:01:63:b5:99:d2:7a:bd:20:29:1e:
a1:15:05:f6:b4:b1:f2:17:d2:06:0d:21:4b:85:d7:80:fb:e5:
65:48:ff:2b:c8:5f:2d:40:f3:d1:2a:bb:09:6d:1b:fb:0d:f3:
fc:a0:eb:7b:db:ac:a1:33:c3:6a:22:83:55:29:25:4f:7b:1f:
39:39:5f:8b:9b:01:8e:98:6f:de:11:75:79:07:d2:18:fe:6e:
70:c0:25:69:15:ef:d5:f9:96:76:12:b0:02:d1:36:19:4b:61:
11:bc:fd:11:7c:66:f6:4f:ee:44:29:8c:88:e7:7e:4b:f1:c8:
c6:1b:64:7b:8d:1c:09:22:1e:d5:db:b1:6e:65:20:5b:bf:7e:
91:1f:61:eb
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCmEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkY4
MkEzQUMxMTQ1NTAzMDc0M0MwQTc0MzcxMUY4QTBEOEVCQUUyODAeFw0yMjA5MTUw
MjM4MzVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDRFNkNGNjg0NjVDMTVC
ODhFQ0QzN0M3NDZGN0FCODQ5RTAzMjcwNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1F94AhJG/w9W1s89DtxBlDD+8tBqGnKp+dVmkOW+otwYWcAPV
Q56o2DxhFbzQ/Ful5zEeWcbGmHp6geq0DfsLhersSa22rbcE/HBB+Avc6tzznEWK
XFtG1I63WQAkSEKcoDigNiYhfR/xcr1aNshaqbuypzTL6/Z+MJvHl672zjmsjxJb
cmep7JumoZqgnUwb5wsaNN081N5eSengBCiVAsbvDNhwj29N4F31AyYkXPjJJ9WR
5jNQ+stR97G5f1ID4sKyKJNNwykStJCsrrONJShxyuZL76KziFYWEyOV+FI/7vF8
ygbNssK34e/Mk5WgkT6/kuHTWlRXJRfjJglTAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUTmz2hGXBW4js03x0b3q4SeAycEgwHwYDVR0jBBgwFoAUv4KjrBFFUDB0PAp0
NxH4oNjrrigwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL3Y0
S2pyQkZGVURCMFBBcDBOeEg0b05qcnJpZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
djRLanJCRkZVREIwUEFwME54SDRvTmpycmlnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL1RtejJoR1hCVzRqczAzeDBiM3E0U2VB
eWNFZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn4+AwDQYJ
KoZIhvcNAQELBQADggEBAJART23c08ZGt4EPq8fEOYUxuYylgBVLoDar7drr+ba0
6YjU1gpWWXDQI1W03BPtaiN/AGKdgoi6DzDfQLU7OVJ7ENMzvhKYN1gqPb3MYVpD
Z9Dxtz2cUxJ7iBuyx0rTO/fOSdLkVdehsON+60o9QN0ngDqDAWO1mdJ6vSApHqEV
Bfa0sfIX0gYNIUuF14D75WVI/yvIXy1A89EquwltG/sN8/yg63vbrKEzw2oig1Up
JU97Hzk5X4ubAY6Yb94RdXkH0hj+bnDAJWkV79X5lnYSsALRNhlLYRG8/RF8ZvZP
7kQpjIjnfkvxyMYbZHuNHAkiHtXbsW5lIFu/fpEfYes=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org