Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/FWZecRpAqEMLSoVeMjmFaczbLAc.roa
File: FWZecRpAqEMLSoVeMjmFaczbLAc.roa (raw, json)
Hash identifier: t+S+Oj0CC3FGv/NROwtiej89ijcVxIqoDvVbPLekotQ=
Subject key identifier: 15:66:5E:71:1A:40:A8:43:0B:4A:85:5E:32:39:85:69:CC:DB:2C:07
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 096F
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/FWZecRpAqEMLSoVeMjmFaczbLAc.roa
Signing time: Wed 29 Sep 2021 02:39:17 +0000
ROA not before: Wed 29 Sep 2021 02:39:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 103.229.100.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2415 (0x96f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Sep 29 02:39:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=15665E711A40A8430B4A855E32398569CCDB2C07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c2:6c:28:ff:08:a3:fc:37:5b:30:da:98:b2:
32:a9:1e:d8:c5:9c:7c:84:f4:d7:23:c8:da:29:21:
e4:fe:ce:c0:2d:a6:31:98:ed:c7:21:34:aa:77:81:
c8:7e:ce:8d:54:5d:5f:01:63:0f:f2:53:76:fe:6a:
c1:d2:87:a6:c1:fa:22:af:a6:dd:e5:a5:68:59:cf:
8e:a2:60:5e:ea:45:97:ae:2c:c8:76:36:83:a0:11:
71:b0:b2:b9:dd:8f:c1:d8:e9:ab:d8:fc:33:a3:2d:
92:2d:c3:95:70:b8:a3:a6:5e:f4:f2:7f:b8:9d:7d:
a1:10:f0:3c:ff:94:ab:42:d0:7b:f5:af:3c:84:1c:
f4:dd:4f:ff:41:50:d1:65:47:1c:17:a4:ff:20:15:
63:b8:fb:fc:0b:ce:82:d1:87:b4:68:af:c4:ba:39:
29:2c:22:00:a1:fe:58:5e:74:36:6f:78:de:00:91:
fe:5a:db:e3:cf:c0:0b:f3:b5:fd:71:a6:ad:5e:35:
9f:8d:b2:0e:b3:8d:d4:ae:0c:02:bd:f6:6e:e5:c5:
a5:2b:c3:e5:c4:2a:c4:ed:2c:40:cd:1d:56:77:65:
90:ff:a5:5c:27:92:ec:39:4c:b1:85:9d:fb:38:d3:
f2:f0:25:1f:1c:ef:11:40:a8:ad:f1:5d:e3:11:fb:
3d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:66:5E:71:1A:40:A8:43:0B:4A:85:5E:32:39:85:69:CC:DB:2C:07
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/FWZecRpAqEMLSoVeMjmFaczbLAc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.229.100.0/23
Signature Algorithm: sha256WithRSAEncryption
47:a0:40:bd:13:99:c7:d3:ee:4b:8c:fe:49:e9:8d:f3:12:5e:
94:59:e0:98:97:a4:85:9e:dc:14:b9:49:aa:af:a4:50:8e:1c:
43:ec:ae:dc:a6:bb:4d:11:96:6d:3f:7b:be:23:39:42:0b:4b:
65:13:46:ba:47:df:d4:d5:d1:39:f7:85:28:4a:4d:a3:c2:7f:
b7:b1:9f:32:ad:8b:0a:20:9f:d4:6e:95:b3:1d:80:29:d7:1d:
a8:30:2b:32:4c:e9:50:ad:a5:8f:b3:2d:26:a0:01:b6:2c:70:
ae:15:06:d4:08:e1:2e:de:1d:8c:a9:94:ff:04:c3:d7:f2:1f:
52:81:3c:eb:b6:74:73:5d:59:3f:bc:95:2c:ec:3d:57:1a:e1:
fa:98:4f:e1:ae:d2:04:b0:ac:5b:f2:12:ae:9d:dc:fa:d7:c0:
25:89:db:26:12:52:9b:3b:a2:93:e7:0d:39:88:49:f4:32:ff:
af:ab:e6:bb:fd:26:e4:e5:63:09:08:a0:42:bd:de:c1:76:63:
77:bb:24:a2:95:c9:02:a7:f5:cf:72:e6:c5:6a:7b:83:4c:47:
38:0c:90:a1:42:6a:28:da:86:f6:db:76:b4:d3:30:cb:ab:35:
e4:29:c6:bd:e5:14:0c:57:dc:a3:3f:23:7c:cc:1a:4f:00:36:
66:ac:94:0a
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCW8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VD
N0YxNjc3QkI0OTIzODAyODIxNTNCQjc3RUMyRUJFMzE4NTM3ODAeFw0yMTA5Mjkw
MjM5MTdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDE1NjY1RTcxMUE0MEE4
NDMwQjRBODU1RTMyMzk4NTY5Q0NEQjJDMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDnwmwo/wij/DdbMNqYsjKpHtjFnHyE9NcjyNopIeT+zsAtpjGY
7cchNKp3gch+zo1UXV8BYw/yU3b+asHSh6bB+iKvpt3lpWhZz46iYF7qRZeuLMh2
NoOgEXGwsrndj8HY6avY/DOjLZItw5VwuKOmXvTyf7idfaEQ8Dz/lKtC0Hv1rzyE
HPTdT/9BUNFlRxwXpP8gFWO4+/wLzoLRh7Ror8S6OSksIgCh/lhedDZveN4Akf5a
2+PPwAvztf1xpq1eNZ+Nsg6zjdSuDAK99m7lxaUrw+XEKsTtLEDNHVZ3ZZD/pVwn
kuw5TLGFnfs40/LwJR8c7xFAqK3xXeMR+z3hAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUFWZecRpAqEMLSoVeMjmFaczbLAcwHwYDVR0jBBgwFoAUfsfxZ3u0kjgCghU7
t37C6+MYU3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2Zz
ZnhaM3Uwa2pnQ2doVTd0MzdDNi1NWVUzZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZnNmeFozdTBramdDZ2hVN3QzN0M2LU1ZVTNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL0ZXWmVjUnBBcUVNTFNvVmVNam1GYWN6
YkxBYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn5WQwDQYJ
KoZIhvcNAQELBQADggEBAEegQL0TmcfT7kuM/knpjfMSXpRZ4JiXpIWe3BS5Saqv
pFCOHEPsrtymu00Rlm0/e74jOUILS2UTRrpH39TV0Tn3hShKTaPCf7exnzKtiwog
n9RulbMdgCnXHagwKzJM6VCtpY+zLSagAbYscK4VBtQI4S7eHYyplP8Ew9fyH1KB
POu2dHNdWT+8lSzsPVca4fqYT+Gu0gSwrFvyEq6d3PrXwCWJ2yYSUps7opPnDTmI
SfQy/6+r5rv9JuTlYwkIoEK93sF2Y3e7JKKVyQKn9c9y5sVqe4NMRzgMkKFCaija
hvbbdrTTMMurNeQpxr3lFAxX3KM/I3zMGk8ANmaslAo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org