Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/-LPKHXIHweC07eFQ4ssEnPlTZ54.roa
File: -LPKHXIHweC07eFQ4ssEnPlTZ54.roa (raw, json)
Hash identifier: GE7w95xjvi1QRnPNfz2Ahn40mHjo1A+p57CZtB44kQA=
Subject key identifier: F8:B3:CA:1D:72:07:C1:E0:B4:ED:E1:50:E2:CB:04:9C:F9:53:67:9E
Certificate issuer: /CN=8A3FD89CE70A14F13ED0A86459224D007DD0A148
Certificate serial: 04B6
Authority key identifier: 8A:3F:D8:9C:E7:0A:14:F1:3E:D0:A8:64:59:22:4D:00:7D:D0:A1:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ij_YnOcKFPE-0KhkWSJNAH3QoUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/-LPKHXIHweC07eFQ4ssEnPlTZ54.roa
Signing time: Sun 07 Feb 2021 13:00:02 +0000
ROA not before: Sun 07 Feb 2021 13:00:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131618
IP address blocks: 103.148.146.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1206 (0x4b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8A3FD89CE70A14F13ED0A86459224D007DD0A148
Validity
Not Before: Feb 7 13:00:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F8B3CA1D7207C1E0B4EDE150E2CB049CF953679E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:22:96:42:a4:55:c6:fc:83:df:64:6c:1a:89:
df:c4:ff:24:0a:83:85:18:8a:03:13:2f:35:d5:9c:
c4:14:b9:6e:36:23:0e:2b:cf:05:1a:5f:24:7c:e9:
3a:25:11:2f:f0:e9:bd:5b:0e:e1:85:4b:32:0c:9f:
e1:e0:29:72:c0:e9:d2:e8:40:8a:92:1b:73:6d:3a:
0c:d0:85:f7:b6:6e:fc:2e:3e:8f:41:ad:a8:1f:aa:
0e:54:03:23:66:80:ce:da:7e:13:c9:86:65:ef:1c:
07:3c:1d:22:cf:cf:0b:43:d1:81:10:6b:54:50:bd:
9f:7f:e9:e1:08:87:6a:05:7f:ac:16:e2:bc:1b:b6:
1c:98:73:0e:99:27:69:8b:4c:fa:32:6c:c7:b1:af:
ab:c0:33:34:78:d7:15:dd:60:ee:c3:2b:f0:52:b5:
03:32:39:74:f1:68:8e:fa:56:d8:5a:41:76:f0:65:
3d:ab:76:08:9a:53:e5:b0:04:0a:0f:f3:06:bf:35:
2e:fa:ca:54:8b:92:a9:35:89:09:df:32:95:1c:00:
d9:75:3d:d2:17:f3:e6:3f:f2:b8:a5:3d:b2:bb:cc:
a2:7e:09:1a:25:78:13:e3:6d:20:75:0a:d1:d5:7c:
a5:2a:c5:73:8a:6a:bd:49:8c:e2:3e:62:1d:48:6c:
d2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B3:CA:1D:72:07:C1:E0:B4:ED:E1:50:E2:CB:04:9C:F9:53:67:9E
X509v3 Authority Key Identifier:
keyid:8A:3F:D8:9C:E7:0A:14:F1:3E:D0:A8:64:59:22:4D:00:7D:D0:A1:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/ij_YnOcKFPE-0KhkWSJNAH3QoUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ij_YnOcKFPE-0KhkWSJNAH3QoUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/-LPKHXIHweC07eFQ4ssEnPlTZ54.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.148.146.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:42:ca:02:25:8f:3c:a0:35:4d:e2:c9:67:56:45:b5:29:84:
82:ca:98:32:bb:c2:21:7a:95:7d:0c:e9:e7:cc:da:69:39:6d:
a9:f1:78:1b:42:03:68:a9:32:3d:73:ca:8b:d6:fe:8d:1b:8b:
2a:8a:18:51:9a:8d:9b:15:a6:4d:e8:62:ba:dc:a7:c6:ac:f2:
71:15:96:b9:70:9b:bf:25:14:ab:50:3f:51:0d:a7:ae:3a:f0:
b1:4f:fa:4e:37:8c:10:36:4d:f1:95:fc:80:88:5b:24:07:f9:
87:19:69:7f:71:b5:7b:6a:8b:75:1b:84:e4:84:92:1c:21:82:
f4:cf:b7:d9:15:2b:92:47:e0:1b:23:bb:75:c5:24:44:ee:4c:
46:5a:13:18:78:ee:99:53:85:93:8c:4e:6c:ee:30:c4:65:70:
6f:5d:3a:d4:dc:7f:4f:cd:4b:bd:60:f8:86:9d:ef:25:3c:59:
a2:4f:e9:b3:41:46:90:d8:ae:73:a9:16:e3:c6:e6:cb:1f:d6:
3b:83:0a:5e:a0:8b:b9:75:cf:03:06:d3:b2:b6:db:bf:7e:3e:
5e:f5:38:65:99:cc:1b:a4:f5:81:12:9c:2b:ff:56:0b:2a:e7:
00:31:be:fe:5f:ab:df:a8:51:27:74:c5:60:a1:79:69:38:c4:
b6:6c:aa:65
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:04 2025 by rpki-client