Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/JlXwrsWfgAAUHCuPXGK4yDwsFEE.roa
File: JlXwrsWfgAAUHCuPXGK4yDwsFEE.roa (raw, json)
Hash identifier: OdIqseTeW3MmcDcoJ1651aziH/6RAuxqWGGG8DZXEiU=
Subject key identifier: 26:55:F0:AE:C5:9F:80:00:14:1C:2B:8F:5C:62:B8:C8:3C:2C:14:41
Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Certificate serial: 22
Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/JlXwrsWfgAAUHCuPXGK4yDwsFEE.roa
Signing time: Tue 20 Oct 2020 04:05:19 +0000
ROA not before: Tue 20 Oct 2020 04:05:19 +0000
ROA not after: Sat 16 Oct 2021 04:29:56 +0000
asID: 131642
IP address blocks: 103.157.42.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34 (0x22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Validity
Not Before: Oct 20 04:05:19 2020 GMT
Not After : Oct 16 04:29:56 2021 GMT
Subject: CN=2655F0AEC59F8000141C2B8F5C62B8C83C2C1441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ad:b6:99:ce:73:91:99:59:b3:b6:d3:bb:a8:
d0:e2:83:cb:2c:74:dc:2c:e3:2d:2e:44:19:30:52:
04:40:9b:75:8c:e8:42:8d:a5:0b:a5:c8:02:ed:72:
42:92:df:fe:ab:a6:6e:81:59:38:fa:80:59:d1:27:
e0:e0:11:b8:b3:72:66:56:6f:fe:1d:0e:3f:57:10:
95:25:bc:5a:07:d6:44:97:ee:0f:8f:ba:b3:97:a8:
ae:88:6b:59:a1:30:6a:8b:ee:c0:36:48:3d:ff:aa:
5b:12:c6:a8:5f:0e:41:04:76:cc:b3:20:67:fa:5f:
4b:cd:a1:0a:84:96:ca:5f:1e:33:66:bc:49:d1:4c:
4a:73:67:2c:bd:55:41:d7:1f:b0:9a:39:1f:c7:1c:
d0:77:66:58:18:e3:eb:60:6e:26:f8:44:72:cb:1e:
98:7c:ff:cf:6e:de:28:4c:7b:5f:0b:eb:0e:91:02:
4f:8f:98:3f:bd:91:94:20:39:1a:86:a7:9a:a0:4e:
90:56:8e:cc:03:fa:5a:92:c1:8b:bc:be:fa:3e:69:
c1:a0:2d:f0:e7:91:b3:38:7c:79:f5:46:6c:d4:b1:
c3:7a:94:97:cd:1c:c8:c9:a0:0b:51:a9:ef:01:4e:
88:22:ef:e0:34:2b:f6:ae:69:36:b7:ca:b0:a2:68:
2c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:55:F0:AE:C5:9F:80:00:14:1C:2B:8F:5C:62:B8:C8:3C:2C:14:41
X509v3 Authority Key Identifier:
keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/JlXwrsWfgAAUHCuPXGK4yDwsFEE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.42.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:c7:14:d4:04:7f:eb:5c:a5:18:29:e2:db:6f:78:ff:d9:d1:
c2:ec:cd:0d:1e:3e:80:36:2d:30:ea:bc:9e:39:23:90:24:20:
a5:43:19:ab:0f:63:88:05:3c:29:ec:d5:26:60:07:25:0d:17:
bf:2b:84:5e:5c:88:a5:21:21:ba:cf:2f:a1:b9:7d:3f:15:c4:
41:1b:59:f5:ab:de:a0:83:2c:96:00:04:a2:57:fe:e2:9b:c1:
91:17:d4:6b:68:01:d6:c1:9d:91:7b:93:53:a5:a2:68:1c:f2:
45:17:15:d9:af:96:38:ec:17:6c:8b:dd:dd:73:3b:ff:05:09:
f2:a0:b1:17:40:f3:5c:d0:0b:81:9b:5c:81:ac:37:32:34:17:
b4:80:af:6b:e2:c0:13:4e:a3:72:6d:6f:2d:40:5e:cd:74:b8:
2c:93:36:cf:2b:53:a9:f8:b4:ae:63:dc:35:dd:43:57:46:47:
6a:47:3e:39:1b:70:ed:34:48:1d:63:0f:67:eb:f5:52:b9:c6:
75:cb:6b:ee:10:b9:d7:8b:a7:13:ea:73:f1:c8:c1:68:da:bd:
ea:09:40:7b:1f:42:78:c1:6f:71:eb:7b:3f:0c:ca:45:4f:7e:
78:6c:20:dd:d3:c5:09:eb:7c:c3:44:47:63:a9:a8:7d:58:a9:
4e:ca:bb:f6
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgIBIjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCRkJC
N0Y3QjVDNTgzMjM0OTA4NzU4NDlCOEVEREE0OTVFRjE3QjFCMB4XDTIwMTAyMDA0
MDUxOVoXDTIxMTAxNjA0Mjk1NlowMzExMC8GA1UEAxMoMjY1NUYwQUVDNTlGODAw
MDE0MUMyQjhGNUM2MkI4QzgzQzJDMTQ0MTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANittpnOc5GZWbO207uo0OKDyyx03CzjLS5EGTBSBECbdYzoQo2l
C6XIAu1yQpLf/qumboFZOPqAWdEn4OARuLNyZlZv/h0OP1cQlSW8WgfWRJfuD4+6
s5eorohrWaEwaovuwDZIPf+qWxLGqF8OQQR2zLMgZ/pfS82hCoSWyl8eM2a8SdFM
SnNnLL1VQdcfsJo5H8cc0HdmWBjj62BuJvhEcssemHz/z27eKEx7XwvrDpECT4+Y
P72RlCA5GoanmqBOkFaOzAP6WpLBi7y++j5pwaAt8OeRszh8efVGbNSxw3qUl80c
yMmgC1Gp7wFOiCLv4DQr9q5pNrfKsKJoLFkCAwEAAaOCAegwggHkMB0GA1UdDgQW
BBQmVfCuxZ+AABQcK49cYrjIPCwUQTAfBgNVHSMEGDAWgBS/u397XFgyNJCHWEm4
7dpJXvF7GzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFkGA1UdHwRSMFAwTqBM
oEqGSHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9VTEMvdjd0
X2UxeFlNalNRaDFoSnVPM2FTVjd4ZXhzLmNybDBgBggrBgEFBQcBAQRUMFIwUAYI
KwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS92
N3RfZTF4WU1qU1FoMWhKdU8zYVNWN3hleHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCB
mQYIKwYBBQUHAQsEgYwwgYkwVAYIKwYBBQUHMAuGSHJzeW5jOi8vcnBraWNhLnR3
bmljLnR3L3Jwa2kvVFdOSUNDQS9VTEMvSmxYd3JzV2ZnQUFVSEN1UFhHSzR5RHdz
RkVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAv
bm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWedKjANBgkq
hkiG9w0BAQsFAAOCAQEAPMcU1AR/61ylGCni2294/9nRwuzNDR4+gDYtMOq8njkj
kCQgpUMZqw9jiAU8KezVJmAHJQ0XvyuEXlyIpSEhus8vobl9PxXEQRtZ9aveoIMs
lgAEolf+4pvBkRfUa2gB1sGdkXuTU6WiaBzyRRcV2a+WOOwXbIvd3XM7/wUJ8qCx
F0DzXNALgZtcgaw3MjQXtICva+LAE06jcm1vLUBezXS4LJM2zytTqfi0rmPcNd1D
V0ZHakc+ORtw7TRIHWMPZ+v1UrnGdctr7hC514unE+pz8cjBaNq96glAex9CeMFv
cet7PwzKRU9+eGwg3dPFCet8w0RHY6mofVipTsq79g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org