Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/l27oui5H-Wis5C9FAVsNXkAGSH0.roa
File: l27oui5H-Wis5C9FAVsNXkAGSH0.roa (raw, json)
Hash identifier: uzsFtjL0R425Oewl/HJ1aHXh7V1wbz4qrAiKeWEdzN0=
Subject key identifier: 97:6E:E8:BA:2E:47:F9:68:AC:E4:2F:45:01:5B:0D:5E:40:06:48:7D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C32
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/l27oui5H-Wis5C9FAVsNXkAGSH0.roa
Signing time: Wed 29 Sep 2021 02:39:09 +0000
ROA not before: Wed 29 Sep 2021 02:39:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10085
IP address blocks: 203.163.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3122 (0xc32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=976EE8BA2E47F968ACE42F45015B0D5E4006487D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:eb:02:7a:9e:07:a7:57:57:4a:ee:5d:bc:73:
12:c6:ad:ac:42:e9:a9:ed:27:41:8f:25:b2:53:eb:
85:75:87:d0:5d:4e:9a:ef:e3:63:d4:78:f5:90:66:
bc:3f:a3:12:1a:5f:25:80:7a:1e:c5:80:6f:d8:68:
c5:50:a5:b3:06:f9:91:7c:72:70:22:8f:76:b0:0a:
76:a3:7d:e6:45:89:36:f6:77:4a:e8:a6:a8:ca:20:
ab:ca:c6:f1:5d:06:d5:1f:72:6d:2f:cd:f1:42:ab:
fc:30:17:3b:fb:b1:5d:24:3c:76:36:f0:12:83:63:
dd:d3:48:d9:f1:08:be:1e:8b:fc:f3:8c:ca:19:b4:
8b:c5:ec:d0:c2:f5:6f:be:dc:dd:a7:3e:d6:ff:fb:
de:46:1f:8b:3d:cc:47:48:11:10:50:ef:57:2d:f0:
d7:7d:ce:63:b8:ea:ae:0e:07:14:7f:5d:67:a9:98:
29:b1:51:b9:27:31:92:26:81:9a:89:57:80:eb:b2:
4f:35:a0:d2:08:92:f8:e8:6f:ca:88:93:6f:98:8c:
4d:06:04:64:71:dc:df:9b:8c:44:d3:c9:d3:45:4d:
da:bf:a7:59:21:98:ac:1e:cb:57:e4:9c:96:70:7b:
9a:5e:f1:6d:db:9f:66:7c:a4:ca:8c:d0:54:9b:fc:
5b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:6E:E8:BA:2E:47:F9:68:AC:E4:2F:45:01:5B:0D:5E:40:06:48:7D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/l27oui5H-Wis5C9FAVsNXkAGSH0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.208.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:08:40:8a:73:b4:5f:19:fc:88:b9:f0:17:18:2d:e4:cd:bc:
45:76:af:72:2c:43:4b:ea:c8:82:59:4e:0f:83:21:ed:04:37:
e9:03:b3:05:22:1e:73:b0:15:fa:72:98:52:8f:82:87:8c:54:
00:e2:6f:1c:00:01:e8:68:60:e6:c0:be:b1:e4:3d:97:61:e0:
32:5a:9d:24:2f:54:e6:c2:a6:da:50:b5:c7:07:8c:8a:77:ea:
1b:57:79:22:3a:82:e2:41:a2:31:e5:9d:0c:18:de:69:07:b4:
1e:7b:8c:43:bb:74:8c:39:14:03:b6:a4:f1:dd:6c:1e:24:0f:
3c:1a:4a:60:2e:cc:32:2d:24:3f:c6:81:88:37:e3:b3:1f:33:
74:99:c7:d4:d9:75:46:16:98:3a:51:1a:4f:17:d1:1d:aa:82:
b5:1b:f9:19:ff:d2:73:94:4a:dd:f6:92:73:e0:6b:c9:a0:cc:
6e:b4:c8:ec:13:b5:e1:a6:ab:12:45:83:13:0e:d4:4a:ac:9f:
3f:86:92:b7:ca:70:c8:39:50:97:f8:9f:35:3d:22:6d:b3:2d:
d3:bc:9a:2a:18:e6:e7:9c:fd:cb:a8:5d:ff:32:37:08:b6:bf:
d4:47:e8:13:02:b2:96:96:eb:80:5e:31:ca:74:2a:88:1d:16:
fd:7e:d1:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:46 2025 by rpki-client