Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/F3YmQmKlRfig32wPEVxnzCucwdo.roa
File: F3YmQmKlRfig32wPEVxnzCucwdo.roa (raw, json)
Hash identifier: j0PZxdCsSSU9f40aHBwtWcAkEs3lXFz7HZXu+/mqkU8=
Subject key identifier: 17:76:26:42:62:A5:45:F8:A0:DF:6C:0F:11:5C:67:CC:2B:9C:C1:DA
Certificate issuer: /CN=1E79C6C033BB9D469E0CE8164538DF39E9F1C3BC
Certificate serial: 34
Authority key identifier: 1E:79:C6:C0:33:BB:9D:46:9E:0C:E8:16:45:38:DF:39:E9:F1:C3:BC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/F3YmQmKlRfig32wPEVxnzCucwdo.roa
Signing time: Sun 07 Feb 2021 13:08:12 +0000
ROA not before: Sun 07 Feb 2021 13:08:12 +0000
ROA not after: Thu 02 Dec 2021 03:52:46 +0000
asID: 38856
IP address blocks: 103.159.118.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52 (0x34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1E79C6C033BB9D469E0CE8164538DF39E9F1C3BC
Validity
Not Before: Feb 7 13:08:12 2021 GMT
Not After : Dec 2 03:52:46 2021 GMT
Subject: CN=1776264262A545F8A0DF6C0F115C67CC2B9CC1DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9a:dd:d8:ed:74:b5:8a:77:ba:81:9e:bd:d2:
ac:78:08:bf:a9:f7:d2:78:1b:4e:48:a2:55:cd:78:
7e:d7:8e:70:98:b2:ba:4e:d6:5b:49:e0:91:2f:48:
99:db:eb:d6:61:54:5e:ed:18:a2:06:53:8b:38:d1:
ea:fe:66:6b:ae:68:cf:7c:d7:78:e2:71:03:3d:73:
68:e2:f0:05:20:a8:05:e0:dc:e0:71:e5:71:e1:92:
88:ae:9d:0e:04:b5:a0:a2:e0:b0:7c:c7:91:5c:8e:
6c:d5:a4:b0:ff:82:6e:85:2f:ad:7a:24:39:10:37:
f7:71:a9:de:bd:83:5a:bc:28:b0:f0:82:0c:3a:79:
8f:9b:16:69:01:e9:4d:fd:a2:df:b5:b2:f5:f5:aa:
bd:df:20:e9:da:9a:fb:db:3d:8a:e9:40:8e:0a:ad:
a4:94:72:38:b5:2d:21:3e:c8:4c:f2:0f:37:b1:5b:
c3:85:cb:8a:36:1b:f1:61:df:0c:1e:35:60:13:66:
53:3b:09:22:8e:89:ef:55:59:f7:1f:dd:3b:72:f9:
b2:d3:25:6b:97:f6:6b:c7:bf:61:1d:90:66:9e:ab:
14:87:1c:f2:08:2c:55:00:de:6f:79:77:ce:9d:bd:
d7:44:06:69:c2:00:0c:e6:5b:b3:6e:e3:05:36:a5:
d2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:76:26:42:62:A5:45:F8:A0:DF:6C:0F:11:5C:67:CC:2B:9C:C1:DA
X509v3 Authority Key Identifier:
keyid:1E:79:C6:C0:33:BB:9D:46:9E:0C:E8:16:45:38:DF:39:E9:F1:C3:BC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/HnnGwDO7nUaeDOgWRTjfOenxw7w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/F3YmQmKlRfig32wPEVxnzCucwdo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.118.0/23
Signature Algorithm: sha256WithRSAEncryption
72:d0:eb:cc:06:94:b3:1c:21:e6:bf:86:5c:ff:57:89:a6:ae:
94:15:21:a4:c9:2f:a8:b8:b5:ee:2f:0b:aa:8f:2b:c8:13:6e:
6c:3d:a7:a5:b1:a2:c7:14:0c:4e:1a:b6:52:e2:6b:60:f4:7b:
5b:9b:a9:17:6a:99:2b:09:f4:13:6b:24:3e:6a:b5:ed:b0:51:
53:aa:33:69:f4:56:b9:4b:61:51:74:4a:d3:dc:75:64:33:84:
62:87:87:09:7d:1a:cf:a3:76:65:3c:f1:23:53:f3:f6:b0:fd:
55:27:cf:cc:aa:61:14:64:96:56:4a:a3:5e:39:c9:e3:8d:ba:
9a:53:8e:26:77:b5:f6:c1:09:27:f7:f1:19:19:a7:22:45:bc:
d6:03:c1:d9:6d:82:57:10:ac:c3:f0:81:35:b2:1f:7e:66:f4:
99:7f:f1:76:4f:5c:ea:ca:95:6e:aa:8e:a7:d4:bb:68:44:cc:
ca:41:91:5b:97:7f:b6:42:92:95:40:89:9d:93:b7:6f:d6:69:
ca:1c:c3:d3:30:7e:6f:59:b8:07:af:a0:0e:b7:f9:fb:83:2d:
27:c0:93:a6:01:25:85:91:dc:0a:2c:ad:59:1b:a0:11:59:7d:
70:9b:77:48:cf:63:48:0a:35:66:eb:6c:c0:c0:a2:2c:94:95:
0f:8b:13:60
-----BEGIN CERTIFICATE-----
MIIE2TCCA8GgAwIBAgIBNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxRTc5
QzZDMDMzQkI5RDQ2OUUwQ0U4MTY0NTM4REYzOUU5RjFDM0JDMB4XDTIxMDIwNzEz
MDgxMloXDTIxMTIwMjAzNTI0NlowMzExMC8GA1UEAxMoMTc3NjI2NDI2MkE1NDVG
OEEwREY2QzBGMTE1QzY3Q0MyQjlDQzFEQTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMqa3djtdLWKd7qBnr3SrHgIv6n30ngbTkiiVc14fteOcJiyuk7W
W0ngkS9Imdvr1mFUXu0YogZTizjR6v5ma65oz3zXeOJxAz1zaOLwBSCoBeDc4HHl
ceGSiK6dDgS1oKLgsHzHkVyObNWksP+CboUvrXokORA393Gp3r2DWrwosPCCDDp5
j5sWaQHpTf2i37Wy9fWqvd8g6dqa+9s9iulAjgqtpJRyOLUtIT7ITPIPN7Fbw4XL
ijYb8WHfDB41YBNmUzsJIo6J71VZ9x/dO3L5stMla5f2a8e/YR2QZp6rFIcc8ggs
VQDeb3l3zp2910QGacIADOZbs27jBTal0uUCAwEAAaOCAfYwggHyMB0GA1UdDgQW
BBQXdiZCYqVF+KDfbA8RXGfMK5zB2jAfBgNVHSMEGDAWgBQeecbAM7udRp4M6BZF
ON856fHDvDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGAGA1UdHwRZMFcwVaBT
oFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQUxLU0NM
T1VEL0hubkd3RE83blVhZURPZ1dSVGpmT2VueHc3dy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvSG5uR3dETzduVWFlRE9nV1JUamZPZW54dzd3LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgaAGCCsGAQUFBwELBIGTMIGQMFsGCCsGAQUFBzALhk9yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FMS1NDTE9VRC9GM1ltUW1LbFJm
aWczMndQRVZ4bnpDdWN3ZG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAu
dHduaWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA
ATAGAwQBZ592MA0GCSqGSIb3DQEBCwUAA4IBAQBy0OvMBpSzHCHmv4Zc/1eJpq6U
FSGkyS+ouLXuLwuqjyvIE25sPaelsaLHFAxOGrZS4mtg9Htbm6kXapkrCfQTayQ+
arXtsFFTqjNp9Fa5S2FRdErT3HVkM4Rih4cJfRrPo3ZlPPEjU/P2sP1VJ8/MqmEU
ZJZWSqNeOcnjjbqaU44md7X2wQkn9/EZGaciRbzWA8HZbYJXEKzD8IE1sh9+ZvSZ
f/F2T1zqypVuqo6n1LtoRMzKQZFbl3+2QpKVQImdk7dv1mnKHMPTMH5vWbgHr6AO
t/n7gy0nwJOmASWFkdwKLK1ZG6ARWX1wm3dIz2NICjVm62zAwKIslJUPixNg
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org