Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/fF-lrcyHnbOjB-j-ayU-5gphwxw.roa
File: fF-lrcyHnbOjB-j-ayU-5gphwxw.roa (raw, json)
Hash identifier: 2hZdy0lItENgyVWM/+/6puYUtLDKky7vhXfyMewbP7Q=
Subject key identifier: 7C:5F:A5:AD:CC:87:9D:B3:A3:07:E8:FE:6B:25:3E:E6:0A:61:C3:1C
Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E
Certificate serial: 08B7
Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/fF-lrcyHnbOjB-j-ayU-5gphwxw.roa
Signing time: Sun 07 Feb 2021 12:58:20 +0000
ROA not before: Sun 07 Feb 2021 12:58:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131639
IP address blocks: 103.129.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2231 (0x8b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E
Validity
Not Before: Feb 7 12:58:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7C5FA5ADCC879DB3A307E8FE6B253EE60A61C31C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e1:ee:a1:18:af:96:f7:5e:73:cd:10:fc:bd:
fd:71:6e:d4:ad:97:44:bf:97:8d:9a:0b:9f:40:73:
87:76:e1:9f:d4:ff:a6:2b:aa:20:dc:c9:cf:89:8d:
63:2e:67:9f:ae:99:e5:b0:3a:4d:62:9f:77:7c:cd:
ba:62:fe:2e:e7:f9:8b:00:94:a2:a2:43:f3:18:51:
69:83:41:8e:99:c8:25:dd:9f:cf:2c:00:c0:30:8a:
33:6c:83:63:4c:ff:2b:9b:ce:93:d0:ac:af:c3:d6:
d1:69:19:d9:50:4f:f4:c5:1a:db:b6:80:57:28:15:
14:73:8d:b9:dc:1f:12:b4:03:b3:2b:fa:0c:ff:e5:
a4:6c:60:21:71:4f:fa:e1:e9:61:5a:83:67:6e:4d:
f7:2b:eb:85:8e:dd:5c:c7:8d:47:93:48:e1:54:49:
5b:72:27:e1:60:35:61:22:0b:e0:1d:ed:57:89:47:
17:a3:88:26:0f:2c:1e:d9:60:6d:dc:e2:26:23:75:
26:2b:da:b0:a8:78:b1:fb:d8:e4:28:ae:75:b9:55:
04:7a:19:d2:36:0c:41:d0:1c:ac:86:63:ca:31:a4:
94:97:a7:a8:04:ae:a6:64:55:49:9d:3e:c0:3a:76:
f0:ba:a2:6a:0b:5e:2a:d4:87:5c:10:c4:6a:76:35:
f3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:5F:A5:AD:CC:87:9D:B3:A3:07:E8:FE:6B:25:3E:E6:0A:61:C3:1C
X509v3 Authority Key Identifier:
keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/fF-lrcyHnbOjB-j-ayU-5gphwxw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.146.0/24
Signature Algorithm: sha256WithRSAEncryption
06:4c:79:13:30:eb:2b:6b:29:e1:b8:5f:5e:0d:ac:7e:d7:30:
48:42:1c:68:2f:f8:1d:7a:96:f2:2e:e6:28:90:58:12:ba:d6:
e6:f2:e3:ef:62:16:7d:06:df:b8:99:cc:43:1e:8f:4a:02:ca:
7f:a4:b2:03:ea:cf:32:00:73:55:b1:12:43:ac:ab:63:76:d3:
10:d7:e2:08:8b:c9:cc:bb:1d:8c:cb:6a:f9:75:69:66:a1:31:
75:09:88:1f:ca:a5:ac:5e:dc:45:1a:ef:a0:cd:9a:14:b3:11:
09:72:5a:f5:08:9b:7d:cc:b0:61:5b:ef:18:e4:ba:33:d1:c7:
4c:3b:6b:38:f0:95:37:73:eb:ee:a3:55:a1:4a:74:e9:96:53:
0b:bf:d3:06:49:1c:ca:79:8d:f9:86:dc:41:df:27:29:57:4c:
45:74:d8:0e:d2:cd:0c:06:40:e3:b8:26:75:5b:77:6d:d5:1f:
0a:22:4a:50:50:43:9b:02:6e:45:bd:13:38:a9:82:44:e3:b4:
90:43:28:e9:4f:2b:74:f3:c3:5f:95:90:55:f2:23:4f:93:26:
94:57:cc:a3:63:c6:12:4d:ce:53:5d:0f:bb:ee:ab:58:a7:3f:
70:6e:2a:31:2f:0c:6d:1c:0d:75:02:81:d3:a0:f0:b0:dc:e7:
d0:cb:04:62
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCLcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkQ3
MjA0NjE3MzU0RDcwNTIzQjZGNjVBMjcwNzEyQjZCMTlEODE1RTAeFw0yMTAyMDcx
MjU4MjBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDdDNUZBNUFEQ0M4NzlE
QjNBMzA3RThGRTZCMjUzRUU2MEE2MUMzMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDE4e6hGK+W915zzRD8vf1xbtStl0S/l42aC59Ac4d24Z/U/6Yr
qiDcyc+JjWMuZ5+umeWwOk1in3d8zbpi/i7n+YsAlKKiQ/MYUWmDQY6ZyCXdn88s
AMAwijNsg2NM/yubzpPQrK/D1tFpGdlQT/TFGtu2gFcoFRRzjbncHxK0A7Mr+gz/
5aRsYCFxT/rh6WFag2duTfcr64WO3VzHjUeTSOFUSVtyJ+FgNWEiC+Ad7VeJRxej
iCYPLB7ZYG3c4iYjdSYr2rCoeLH72OQornW5VQR6GdI2DEHQHKyGY8oxpJSXp6gE
rqZkVUmdPsA6dvC6omoLXirUh1wQxGp2NfNHAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUfF+lrcyHnbOjB+j+ayU+5gphwxwwHwYDVR0jBBgwFoAULXIEYXNU1wUjtvZa
JwcStrGdgV4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL0xY
SUVZWE5VMXdVanR2WmFKd2NTdHJHZGdWNC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TFhJRVlYTlUxd1VqdHZaYUp3Y1N0ckdkZ1Y0LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL2ZGLWxyY3lIbmJPakItai1heVUtNWdw
aHd4dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABngZIwDQYJ
KoZIhvcNAQELBQADggEBAAZMeRMw6ytrKeG4X14NrH7XMEhCHGgv+B16lvIu5iiQ
WBK61uby4+9iFn0G37iZzEMej0oCyn+ksgPqzzIAc1WxEkOsq2N20xDX4giLycy7
HYzLavl1aWahMXUJiB/Kpaxe3EUa76DNmhSzEQlyWvUIm33MsGFb7xjkujPRx0w7
azjwlTdz6+6jVaFKdOmWUwu/0wZJHMp5jfmG3EHfJylXTEV02A7SzQwGQOO4JnVb
d23VHwoiSlBQQ5sCbkW9EzipgkTjtJBDKOlPK3Tzw1+VkFXyI0+TJpRXzKNjxhJN
zlNdD7vuq1inP3BuKjEvDG0cDXUCgdOg8LDc59DLBGI=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:06 2023 by rpki-client on console-ams.rpki-client.org