Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LEwoccyw4szY0P7wAIkxYne4wl4.roa
File: LEwoccyw4szY0P7wAIkxYne4wl4.roa (raw, json)
Hash identifier: j4lyDaAqmRuoJ5oe3Vu/Z586ay4FL26vqUc5VHscdcw=
Subject key identifier: 2C:4C:28:71:CC:B0:E2:CC:D8:D0:FE:F0:00:89:31:62:77:B8:C2:5E
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C42
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LEwoccyw4szY0P7wAIkxYne4wl4.roa
Signing time: Thu 30 Sep 2021 13:28:11 +0000
ROA not before: Thu 30 Sep 2021 13:28:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 103.5.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3138 (0xc42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 30 13:28:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2C4C2871CCB0E2CCD8D0FEF00089316277B8C25E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e8:5f:2d:05:c5:6e:29:69:0e:5c:8a:bc:ec:
ca:0e:d7:82:2d:20:8d:63:f1:f3:21:47:2a:04:96:
26:9d:e7:c1:34:62:30:d8:d7:4e:59:4c:0d:ff:68:
b2:8a:bb:d6:15:87:e0:b6:9a:7f:0c:7c:cd:ea:47:
65:34:48:1d:16:10:a7:7c:b0:c9:53:8f:c2:28:f2:
fe:f6:fe:01:f7:c6:bf:84:d6:64:17:9e:59:3d:aa:
29:d2:cf:40:95:04:d8:0a:e1:e6:bf:a8:f4:64:5f:
2b:37:48:05:96:da:90:f8:fd:8c:66:11:7e:7e:bc:
18:45:43:76:6b:40:c4:17:3c:96:31:d7:88:6a:5e:
aa:27:8e:72:7a:08:c9:ff:90:39:b9:7d:9d:39:81:
34:0c:00:88:ba:16:44:d8:5d:cf:1f:29:fa:d5:d5:
1d:0e:35:68:1e:36:03:53:fe:3f:fc:c0:d4:4f:05:
81:2c:7e:59:98:bd:50:f2:fe:92:f2:10:7e:42:d4:
98:97:f2:0f:c0:fa:61:87:f7:50:ec:0e:d2:7f:58:
f7:3f:12:a7:92:4a:61:16:8b:db:a6:4a:59:91:99:
a8:39:af:e6:91:49:09:12:73:4f:d7:cb:5d:cc:21:
e2:a7:81:f7:47:9f:f1:47:5c:c7:57:da:7c:48:fa:
83:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:4C:28:71:CC:B0:E2:CC:D8:D0:FE:F0:00:89:31:62:77:B8:C2:5E
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LEwoccyw4szY0P7wAIkxYne4wl4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.5.100.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:3d:08:8e:5e:2c:ed:e3:12:31:7f:66:33:a2:d6:c4:51:ab:
88:91:8b:7a:80:76:7e:11:3f:68:12:5b:1d:b9:8d:5d:90:5c:
46:97:5d:e6:9d:82:5a:2e:d1:c7:e1:39:44:2d:7b:8c:ad:a5:
0f:78:d5:fd:60:4f:04:f1:b3:7f:32:8f:be:74:ce:34:03:de:
37:0d:ca:99:90:8c:81:ea:09:6b:36:9d:a8:ea:9b:bf:84:25:
f9:2c:6a:bb:7e:38:5d:04:65:b8:35:68:e3:a8:fc:a1:d1:ef:
ff:9f:e7:39:4a:85:e5:05:cd:e5:56:21:2f:1f:1a:c6:d2:53:
4e:6c:9e:2c:5e:4b:71:22:56:eb:9a:7d:82:1f:cd:80:8b:e2:
ac:ce:9e:7f:16:1f:ab:52:27:e6:70:44:85:de:d2:c6:80:bc:
fd:c1:34:e4:b4:7c:df:dd:8e:1d:16:59:bd:8e:24:6e:51:b6:
6f:27:ab:43:e3:ec:cc:cd:fb:d1:56:65:07:e6:a7:81:d1:83:
a4:01:a6:d3:3d:c1:75:1c:53:f4:d4:63:d8:16:03:51:ba:fc:
d6:41:fa:75:8c:55:c4:7f:b2:57:9a:db:cf:48:e7:98:1e:af:
c6:28:2e:1d:68:f8:ad:a5:fc:c2:fc:61:8f:a0:f5:0f:51:9c:
4a:7a:14:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:54 2025 by rpki-client