Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AIRPAYTW/Z0TMPc83geeC6AsswbhRuCM0dAs.roa
File: Z0TMPc83geeC6AsswbhRuCM0dAs.roa (raw, json)
Hash identifier: /QqghZI34HUzd5Jw+GBAaPsSNZdIicMCwp+pX5oXxzg=
Subject key identifier: 67:44:CC:3D:CF:37:81:E7:82:E8:0B:2C:C1:B8:51:B8:23:34:74:0B
Certificate issuer: /CN=23E0C44033B500F78931D123EBD9F35E9AE17DC4
Certificate serial: 0E41
Authority key identifier: 23:E0:C4:40:33:B5:00:F7:89:31:D1:23:EB:D9:F3:5E:9A:E1:7D:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I-DEQDO1APeJMdEj69nzXprhfcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AIRPAYTW/Z0TMPc83geeC6AsswbhRuCM0dAs.roa
Signing time: Wed 29 Sep 2021 02:51:41 +0000
ROA not before: Wed 29 Sep 2021 02:51:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131635
IP address blocks: 103.127.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3649 (0xe41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23E0C44033B500F78931D123EBD9F35E9AE17DC4
Validity
Not Before: Sep 29 02:51:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6744CC3DCF3781E782E80B2CC1B851B82334740B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:bd:86:06:37:d6:86:92:b9:df:41:bd:c9:96:
d3:9d:61:e6:e6:fd:41:26:29:58:48:89:45:da:4b:
fc:99:50:d3:b1:65:c1:1f:30:e5:7f:ae:cc:3e:fd:
19:d7:22:6c:2f:5b:98:60:26:7f:69:43:b6:cb:68:
80:71:85:81:9b:08:af:62:2b:4b:71:d0:90:36:56:
99:34:c6:5d:0e:29:c2:7c:33:31:49:74:ba:97:a0:
cc:12:5f:a2:c7:52:12:37:92:ae:9b:c0:99:5b:a1:
8c:f1:97:fa:3c:9d:d1:d8:df:fe:4f:d7:5d:9c:c9:
07:72:17:e1:c0:65:ef:b5:aa:e2:31:34:e9:b8:2d:
e7:4d:e9:cf:4f:91:a3:dd:52:60:09:f6:59:ca:00:
d1:40:ec:35:df:10:29:db:3d:d3:92:9e:cb:b7:85:
af:05:a8:d3:aa:6c:cb:7c:10:de:14:f7:57:94:97:
04:40:dc:de:72:93:eb:00:d7:3b:9b:00:36:cf:5a:
dd:73:e5:0e:60:7b:b6:97:66:7e:fc:9e:d8:07:8f:
d4:95:fb:23:af:65:3f:be:91:07:41:cb:89:84:2f:
c2:20:72:49:1f:b7:d0:bb:43:c4:ef:a6:1b:50:5b:
5c:26:08:e8:7b:50:9f:22:87:57:d0:25:e3:4c:6a:
51:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:44:CC:3D:CF:37:81:E7:82:E8:0B:2C:C1:B8:51:B8:23:34:74:0B
X509v3 Authority Key Identifier:
keyid:23:E0:C4:40:33:B5:00:F7:89:31:D1:23:EB:D9:F3:5E:9A:E1:7D:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AIRPAYTW/I-DEQDO1APeJMdEj69nzXprhfcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I-DEQDO1APeJMdEj69nzXprhfcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AIRPAYTW/Z0TMPc83geeC6AsswbhRuCM0dAs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.232.0/22
Signature Algorithm: sha256WithRSAEncryption
79:ed:f1:91:ad:da:b9:26:a9:78:4f:6f:6e:4c:54:6c:97:4b:
3b:60:64:b7:e6:49:d4:12:94:36:52:7f:1a:46:25:7b:89:0b:
a4:3a:26:7d:b7:46:49:6b:50:a4:9d:1b:f1:26:6b:05:c8:c7:
8d:14:20:7a:ea:5b:d4:5e:52:a3:2d:87:68:14:c9:8c:41:fa:
c0:df:ca:4d:ca:4a:3d:06:cb:75:65:a4:4b:b0:00:04:c9:96:
3d:fc:0a:24:6f:4b:7b:f9:61:0f:3c:68:46:a7:44:18:85:99:
f7:6e:5e:3b:32:8d:cd:36:3a:d1:cf:8e:39:cf:b5:61:6a:d2:
b8:93:78:19:4b:9c:41:16:45:6a:1b:e1:1f:b1:be:33:9a:5b:
6d:ce:78:c8:58:0a:f5:1d:13:84:6b:64:c0:85:d0:e0:3a:ba:
a5:b9:d6:25:01:c6:d1:54:36:05:97:66:2d:ef:7e:8e:71:a5:
8e:5d:28:1b:d3:6a:07:30:d3:df:01:f1:24:47:01:75:e7:e1:
50:58:7f:47:17:df:f1:d0:3c:aa:e4:7c:73:be:80:3c:87:65:
e4:12:d8:26:dc:22:3b:e1:57:26:cb:67:64:0c:1b:b8:61:08:
e1:68:dd:6d:6a:dd:e5:e5:5f:2a:6d:52:19:0d:93:c2:76:fc:
db:87:91:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:31 2025 by rpki-client