Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/IWZrApSjVsoFggPdBkxVrr4MsFQ.roa
File: IWZrApSjVsoFggPdBkxVrr4MsFQ.roa (raw, json)
Hash identifier: 02BF/F4+uuTkCmHdDlO7tBlDv6fsvbu8SP8AwwRsdwU=
Subject key identifier: 21:66:6B:02:94:A3:56:CA:05:82:03:DD:06:4C:55:AE:BE:0C:B0:54
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 03BB
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/IWZrApSjVsoFggPdBkxVrr4MsFQ.roa
Signing time: Thu 01 Oct 2020 05:19:12 +0000
ROA not before: Thu 01 Oct 2020 05:19:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9678
IP address blocks: 103.150.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 955 (0x3bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: Oct 1 05:19:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=21666B0294A356CA058203DD064C55AEBE0CB054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:89:9b:cc:b0:c3:0c:8c:ae:c7:30:8a:d1:0b:
ee:41:0f:05:f2:07:b8:d9:a5:73:e4:29:c0:2c:06:
9f:57:fc:e0:fe:cc:2c:dd:e4:75:01:1c:7d:80:6e:
a7:44:8a:dd:29:46:82:e0:74:07:b5:fc:fa:b4:38:
05:9e:39:89:51:08:c5:1a:66:9c:41:70:a4:1d:3e:
05:c3:77:32:97:8f:9c:d8:54:e9:a2:fb:4a:2e:fe:
aa:e9:75:94:b5:9c:d5:ad:c8:52:57:2d:7f:e8:8e:
c8:44:99:06:07:82:08:33:e6:c6:82:56:41:5d:b6:
52:c9:33:9b:e1:23:43:b6:89:70:9c:07:1a:e4:74:
02:89:1a:ba:4c:f4:a0:44:ca:d3:7c:57:d4:0f:75:
e2:71:3a:f2:b6:01:2a:90:52:90:c4:b5:4f:e8:d8:
16:58:e2:e1:81:c0:7c:27:62:ec:16:fe:2f:e8:ee:
a1:86:4a:53:a1:f7:e3:67:fa:0e:38:ca:cb:31:fc:
74:37:33:74:53:15:4f:f2:6c:f1:b2:95:e6:d9:df:
e8:23:b7:b8:c6:39:be:4c:53:24:af:bc:9a:50:1f:
b3:8e:66:f3:2e:8a:4d:b4:86:73:c0:57:18:46:53:
2e:88:96:2e:70:a1:b6:73:3d:38:cc:b6:55:e6:55:
17:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:66:6B:02:94:A3:56:CA:05:82:03:DD:06:4C:55:AE:BE:0C:B0:54
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/IWZrApSjVsoFggPdBkxVrr4MsFQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.150.36.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:6d:70:6c:32:ba:c1:30:5c:a7:ee:cb:f5:50:41:9e:f5:94:
60:b8:29:a8:a6:03:e5:d1:f0:ad:b7:20:06:cd:27:11:cc:8c:
11:35:23:44:94:be:e9:72:ce:ce:f1:e9:83:db:8b:b1:62:c2:
dd:e9:7e:b0:3b:2c:12:d6:b1:e4:fe:27:ea:72:de:06:86:ce:
36:69:60:44:0a:b1:df:ef:a5:1c:8e:cd:75:bd:c5:a8:6e:8a:
4d:ee:9b:9b:ec:31:b9:80:dc:8b:0b:f3:df:46:8c:2f:80:65:
f1:96:2f:81:a2:86:3b:fe:3c:ad:0a:53:90:54:b1:78:2e:cf:
53:1c:c6:b2:fa:db:7b:8f:d0:75:64:cf:ef:31:cd:87:59:a9:
02:7c:ed:f5:d8:fe:c0:aa:1c:11:2e:43:25:fe:b5:a5:a8:6a:
62:b9:5b:40:9e:74:d2:59:66:ec:f7:74:9f:8e:2d:ea:cd:ad:
89:30:c7:9e:bb:77:b9:61:62:a5:a8:1a:1c:89:1e:ac:49:1f:
c9:51:e2:40:c9:8f:4e:d0:89:bc:db:4a:d8:0a:8c:14:03:28:
bb:b1:45:e5:dd:f2:5c:01:59:8a:3b:55:ce:d3:00:12:bc:ab:
92:ff:e4:1f:fe:cd:22:7a:93:87:f4:da:43:ca:65:c5:66:e2:
cb:6b:0e:82
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICA7swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0FE
NTI3MDIyQzhDRDA3NTY4RUM5RkM4MkExQ0UwRERFNUIyQzRBQzAeFw0yMDEwMDEw
NTE5MTJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDIxNjY2QjAyOTRBMzU2
Q0EwNTgyMDNERDA2NEM1NUFFQkUwQ0IwNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEiZvMsMMMjK7HMIrRC+5BDwXyB7jZpXPkKcAsBp9X/OD+zCzd
5HUBHH2AbqdEit0pRoLgdAe1/Pq0OAWeOYlRCMUaZpxBcKQdPgXDdzKXj5zYVOmi
+0ou/qrpdZS1nNWtyFJXLX/ojshEmQYHgggz5saCVkFdtlLJM5vhI0O2iXCcBxrk
dAKJGrpM9KBEytN8V9QPdeJxOvK2ASqQUpDEtU/o2BZY4uGBwHwnYuwW/i/o7qGG
SlOh9+Nn+g44yssx/HQ3M3RTFU/ybPGylebZ3+gjt7jGOb5MUySvvJpQH7OOZvMu
ik20hnPAVxhGUy6Ili5wobZzPTjMtlXmVRc5AgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUIWZrApSjVsoFggPdBkxVrr4MsFQwHwYDVR0jBBgwFoAUytUnAiyM0HVo7J/I
Khzg3eWyxKwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdCRVNU
V0FSRS95dFVuQWl5TTBIVm83Sl9JS2h6ZzNlV3l4S3cuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL3l0VW5BaXlNMEhWbzdKX0lLaHpnM2VXeXhLdy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXQkVTVFdBUkUvSVdackFwU2pW
c29GZ2dQZEJreFZycjRNc0ZRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAGeWJDANBgkqhkiG9w0BAQsFAAOCAQEAfG1wbDK6wTBcp+7L9VBBnvWU
YLgpqKYD5dHwrbcgBs0nEcyMETUjRJS+6XLOzvHpg9uLsWLC3el+sDssEtax5P4n
6nLeBobONmlgRAqx3++lHI7Ndb3FqG6KTe6bm+wxuYDciwvz30aML4Bl8ZYvgaKG
O/48rQpTkFSxeC7PUxzGsvrbe4/QdWTP7zHNh1mpAnzt9dj+wKocES5DJf61pahq
YrlbQJ500llm7Pd0n44t6s2tiTDHnrt3uWFipagaHIkerEkfyVHiQMmPTtCJvNtK
2AqMFAMou7FF5d3yXAFZijtVztMAEryrkv/kH/7NInqTh/TaQ8plxWbiy2sOgg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org