Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AIRPAYTW/Vr-Zocc5-LNU6hTTMJHGrB-0vi8.roa
File: Vr-Zocc5-LNU6hTTMJHGrB-0vi8.roa (raw, json)
Hash identifier: S/4UJqp7gxIbiLzKkF8DT4nw7zGrfmg1uaLrMZ7DQHE=
Subject key identifier: 56:BF:99:A1:C7:39:F8:B3:54:EA:14:D3:30:91:C6:AC:1F:B4:BE:2F
Certificate issuer: /CN=23E0C44033B500F78931D123EBD9F35E9AE17DC4
Certificate serial: 0C6E
Authority key identifier: 23:E0:C4:40:33:B5:00:F7:89:31:D1:23:EB:D9:F3:5E:9A:E1:7D:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I-DEQDO1APeJMdEj69nzXprhfcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AIRPAYTW/Vr-Zocc5-LNU6hTTMJHGrB-0vi8.roa
Signing time: Tue 29 Sep 2020 09:59:10 +0000
ROA not before: Tue 29 Sep 2020 09:59:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131635
IP address blocks: 103.127.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3182 (0xc6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23E0C44033B500F78931D123EBD9F35E9AE17DC4
Validity
Not Before: Sep 29 09:59:10 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=56BF99A1C739F8B354EA14D33091C6AC1FB4BE2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:36:75:de:84:67:1e:e2:a2:f9:6b:54:46:21:
3c:ae:79:34:8c:1b:80:9a:cd:9a:0c:af:52:20:79:
87:4e:55:8f:2b:ad:35:a3:fa:98:20:ea:c2:2f:da:
dc:1b:ae:ff:0c:d0:16:7d:a0:e1:28:8f:4a:e7:ec:
ff:92:ce:73:a0:8d:ed:0c:5e:35:b5:df:82:80:a4:
af:bf:75:6b:21:01:35:e1:09:7c:82:65:0e:39:e7:
4a:4f:45:2b:59:b9:e1:66:ff:b5:e5:c0:6f:8b:e6:
94:ee:81:e9:1f:91:58:43:8e:cd:4a:19:c8:91:08:
f7:47:37:11:0f:f2:91:6d:54:96:9c:14:6c:73:02:
9c:dc:14:d3:30:04:4c:ff:40:67:a9:c5:19:a0:fe:
90:c6:48:d3:88:d7:99:a8:12:ec:02:ea:d5:72:8d:
fb:d8:1b:00:16:40:20:09:fe:bd:13:39:13:28:82:
03:a7:fa:d9:f3:e7:d3:e2:c5:66:5b:8e:1f:95:58:
3f:5a:04:54:0d:09:ab:ca:f1:fb:cc:4e:ee:79:6d:
b5:8c:08:70:8d:d8:72:9f:27:75:ee:c0:b3:ec:e8:
7c:d6:02:e9:3e:10:9e:d3:1b:68:f3:93:a4:9e:2e:
23:a5:8c:a6:9e:e1:48:16:f3:3a:6c:a2:e5:93:d5:
32:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:BF:99:A1:C7:39:F8:B3:54:EA:14:D3:30:91:C6:AC:1F:B4:BE:2F
X509v3 Authority Key Identifier:
keyid:23:E0:C4:40:33:B5:00:F7:89:31:D1:23:EB:D9:F3:5E:9A:E1:7D:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AIRPAYTW/I-DEQDO1APeJMdEj69nzXprhfcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I-DEQDO1APeJMdEj69nzXprhfcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AIRPAYTW/Vr-Zocc5-LNU6hTTMJHGrB-0vi8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.232.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:f1:9d:98:13:2f:8d:0a:f0:08:b9:03:d6:ba:b0:0f:79:73:
54:c0:27:f2:b0:db:23:68:fc:33:d7:89:1d:e5:48:72:e6:77:
e3:95:7e:92:b9:a2:7c:92:26:77:b4:a6:8d:d7:e6:60:77:3e:
6c:17:53:b0:3f:4e:44:3d:b7:f4:40:a8:06:ce:1f:07:fb:87:
29:31:bb:a8:90:b7:74:e9:14:2f:b0:ec:ca:47:bc:26:38:05:
a7:00:50:1e:bf:2c:31:14:74:b8:59:56:de:38:97:41:b4:e0:
63:82:0a:be:2e:4f:40:72:0b:1d:69:ed:24:f8:8c:dd:b7:52:
ee:45:f1:30:e9:73:65:cd:c9:22:a1:5d:ed:cc:9f:72:51:38:
36:c0:4f:08:a0:cc:06:8e:e9:eb:10:8c:09:c3:62:ab:0a:7e:
44:cb:2d:9f:cb:e3:97:b8:a2:42:12:3c:fb:17:0b:4d:0e:18:
05:74:35:a2:30:28:8b:cc:a4:bc:dd:9a:4c:98:e7:b3:a4:57:
67:8c:28:b8:83:3d:4d:9e:95:e9:2a:1a:2a:2f:fa:13:b2:52:
f1:25:8e:bb:7a:72:5b:61:65:04:e6:3d:59:f1:f2:4a:85:93:
61:90:69:48:96:e4:d2:58:d9:c8:8d:2d:33:82:1f:b3:32:33:
94:dd:8c:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:10 2025 by rpki-client