Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/X4s3Qute8T5ZOBDaztKmA-MUk-4.roa
File: X4s3Qute8T5ZOBDaztKmA-MUk-4.roa (raw, json)
Hash identifier: gjhRCw4MoA1x6Xk1QNRqnPDAHHlQ6l19VDGSpBJ3ZXA=
Subject key identifier: 5F:8B:37:42:EB:5E:F1:3E:59:38:10:DA:CE:D2:A6:03:E3:14:93:EE
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 103F
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/X4s3Qute8T5ZOBDaztKmA-MUk-4.roa
Signing time: Thu 01 Sep 2022 07:43:17 +0000
ROA not before: Thu 01 Sep 2022 07:43:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 16509
IP address blocks: 103.235.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4159 (0x103f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 1 07:43:17 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5F8B3742EB5EF13E593810DACED2A603E31493EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:84:58:93:79:c4:e8:0a:b6:df:01:60:f1:ed:
4b:bd:27:d1:a6:67:da:8f:a1:e9:e9:67:8e:75:95:
e0:b9:07:7c:ef:f2:b6:ea:c0:56:7f:6f:8a:07:05:
fd:6d:56:da:60:46:3a:fa:84:03:89:ed:c9:02:9f:
52:2f:5a:aa:c0:f9:f4:b5:c6:27:9e:15:07:de:ce:
b8:68:5c:cd:f3:a3:27:03:a2:ef:cd:10:ce:90:77:
25:16:e6:72:f6:74:68:94:64:f6:e7:ce:97:05:20:
3d:1c:12:1b:8b:3f:f1:bc:eb:1c:0a:43:5a:b0:73:
29:c8:e0:a8:be:69:a4:0c:fc:6d:96:b8:44:52:eb:
a8:b8:3c:0b:ec:2b:b7:f1:0d:9f:91:e3:cf:5a:31:
0f:11:8a:23:e6:9c:c5:7f:1f:4e:a5:e6:d9:50:ca:
31:5b:9a:43:44:55:b0:f5:90:70:8e:96:5d:f6:1f:
43:f1:f3:70:27:9c:f3:89:cb:43:a9:0f:7e:91:18:
28:f2:e3:5f:21:eb:01:09:3e:90:7e:1e:e9:45:b8:
ed:12:17:2e:48:48:29:da:da:5e:71:92:dc:5c:e3:
d0:6b:fc:ae:d1:e5:13:a4:36:da:1f:c4:83:e8:f5:
0c:af:80:a2:c4:73:2c:51:e7:4f:14:c5:bb:c6:41:
4c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:8B:37:42:EB:5E:F1:3E:59:38:10:DA:CE:D2:A6:03:E3:14:93:EE
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/X4s3Qute8T5ZOBDaztKmA-MUk-4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.235.88.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:ff:e8:f9:52:c9:fb:7c:7f:be:70:c6:dc:1e:c1:30:0f:46:
22:e6:5f:3d:0e:3e:fb:c5:55:6c:48:fb:75:94:02:43:17:2f:
36:0f:31:8f:52:8b:93:0b:af:81:40:35:1a:23:f7:85:e5:44:
6f:e6:68:67:12:29:c9:aa:24:0e:12:d4:da:6c:3b:5d:49:47:
ca:33:96:1e:0d:52:0e:6a:22:aa:31:e7:5b:fe:61:da:c3:58:
30:4e:34:82:8d:52:a8:03:87:52:fd:30:78:49:97:46:66:0e:
fa:96:99:60:99:84:0b:05:2f:f6:47:40:61:47:58:0a:a3:2b:
d5:f3:3a:c2:32:96:75:6a:bd:60:cc:b0:13:53:2c:cc:1a:39:
72:68:e4:69:89:be:1f:f5:b9:dc:4b:cd:d0:27:31:43:22:7b:
fa:46:5d:28:07:b6:ac:03:49:53:06:72:1f:42:1d:ba:1a:ab:
ae:93:db:88:06:8f:3d:6b:83:1d:b9:34:db:82:92:6e:7f:f9:
9f:41:62:27:04:fc:30:e1:a2:ee:44:c5:cc:dd:7f:d7:7b:85:
56:f0:86:ed:42:bb:46:02:3b:b6:ba:d7:46:bf:f4:c0:a6:51:
f9:28:c2:9d:0a:f3:d6:ec:5d:ec:54:34:4f:17:9c:4f:51:c3:
fd:9d:89:81
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICED8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMjA5MDEw
NzQzMTdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDVGOEIzNzQyRUI1RUYx
M0U1OTM4MTBEQUNFRDJBNjAzRTMxNDkzRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLhFiTecToCrbfAWDx7Uu9J9GmZ9qPoenpZ451leC5B3zv8rbq
wFZ/b4oHBf1tVtpgRjr6hAOJ7ckCn1IvWqrA+fS1xieeFQfezrhoXM3zoycDou/N
EM6QdyUW5nL2dGiUZPbnzpcFID0cEhuLP/G86xwKQ1qwcynI4Ki+aaQM/G2WuERS
66i4PAvsK7fxDZ+R489aMQ8RiiPmnMV/H06l5tlQyjFbmkNEVbD1kHCOll32H0Px
83AnnPOJy0OpD36RGCjy418h6wEJPpB+HulFuO0SFy5ISCna2l5xktxc49Br/K7R
5ROkNtofxIPo9QyvgKLEcyxR508UxbvGQUwHAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUX4s3Qute8T5ZOBDaztKmA+MUk+4wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9YNHMzUXV0ZThUNVpPQkRhenRL
bUEtTVVrLTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tY
MA0GCSqGSIb3DQEBCwUAA4IBAQCm/+j5Usn7fH++cMbcHsEwD0Yi5l89Dj77xVVs
SPt1lAJDFy82DzGPUouTC6+BQDUaI/eF5URv5mhnEinJqiQOEtTabDtdSUfKM5Ye
DVIOaiKqMedb/mHaw1gwTjSCjVKoA4dS/TB4SZdGZg76lplgmYQLBS/2R0BhR1gK
oyvV8zrCMpZ1ar1gzLATUyzMGjlyaORpib4f9bncS83QJzFDInv6Rl0oB7asA0lT
BnIfQh26Gquuk9uIBo89a4MduTTbgpJuf/mfQWInBPww4aLuRMXM3X/Xe4VW8Ibt
QrtGAju2utdGv/TAplH5KMKdCvPW7F3sVDRPF5xPUcP9nYmB
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org