Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/L5bv7G1t48dYm7OIfzK6ytrCB3g.roa
File: L5bv7G1t48dYm7OIfzK6ytrCB3g.roa (raw, json)
Hash identifier: cZ3TM+yul9x8h6KRQxdYaaZgho/Dm8a7c+7T8Hln0Gs=
Subject key identifier: 2F:96:EF:EC:6D:6D:E3:C7:58:9B:B3:88:7F:32:BA:CA:DA:C2:07:78
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0AD1
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/L5bv7G1t48dYm7OIfzK6ytrCB3g.roa
Signing time: Wed 04 Nov 2020 08:22:09 +0000
ROA not before: Wed 04 Nov 2020 08:22:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131641
IP address blocks: 103.136.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2769 (0xad1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Nov 4 08:22:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2F96EFEC6D6DE3C7589BB3887F32BACADAC20778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f8:e9:3a:90:ff:01:8e:a1:3a:dd:c9:ad:f1:
6c:c2:72:e0:b5:69:0c:1c:45:57:a2:87:92:6c:af:
45:e0:f0:45:38:c0:f0:49:39:6f:3b:c8:d5:d2:a1:
00:e9:22:ff:2a:20:e3:bb:7b:5f:6a:3f:13:29:3a:
b6:f8:ab:ed:48:7e:4d:74:b4:ca:e9:83:a8:05:ee:
88:ed:61:e0:79:18:f0:89:92:06:38:de:0a:d9:68:
bd:ed:8d:24:56:cb:1d:75:b7:b7:3e:44:0a:ab:c8:
0a:fd:2d:4a:97:09:95:41:cb:9b:0f:e6:17:47:62:
f8:ef:cb:72:c4:60:bd:65:90:32:d6:fb:fb:1d:0c:
fc:02:52:a3:51:f7:81:89:e6:8e:16:99:4a:96:7a:
29:b4:5a:c3:be:74:9e:64:5d:25:db:d4:77:2f:14:
e8:24:75:73:f5:75:38:09:94:a2:ac:e0:ad:80:40:
8a:72:1a:eb:26:6b:bf:d1:44:ce:10:a9:36:6d:f6:
ce:cd:f2:4e:25:4f:63:b2:9b:31:0a:ff:00:4d:b1:
a0:ba:8f:28:db:38:5c:38:81:7e:0c:d0:4c:6e:14:
fa:18:a4:e9:60:be:5b:a1:89:43:4e:fc:e8:1f:0c:
d4:ca:0d:3a:e5:de:b1:f9:84:c6:8c:e1:39:31:20:
6e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:96:EF:EC:6D:6D:E3:C7:58:9B:B3:88:7F:32:BA:CA:DA:C2:07:78
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/L5bv7G1t48dYm7OIfzK6ytrCB3g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:27:77:7e:a6:9c:59:38:81:c5:1d:cb:e6:21:39:d5:b4:34:
8f:d2:2c:17:75:ff:83:56:87:70:67:ed:eb:cd:6a:26:e5:89:
34:02:f7:de:eb:c9:b8:9e:66:fa:e8:3c:a1:07:c7:3b:8b:ef:
7e:1c:cc:6d:82:44:54:d3:15:04:7d:dc:38:c7:67:8a:7e:0b:
e0:b6:f4:b9:eb:5a:de:d6:c6:42:07:8d:d9:09:c4:a0:c7:57:
05:7b:b3:25:21:ba:5d:3c:c0:46:8c:ef:86:33:e9:4b:fa:fa:
4d:6a:5d:ed:da:7c:9c:74:15:8c:d2:99:84:a7:ae:d9:fa:ff:
d8:cd:dc:9d:11:02:21:30:c8:7c:e1:af:53:0f:1e:86:ae:cb:
09:eb:b1:f1:a2:00:da:ce:f0:9e:6e:0f:7b:34:5f:86:e9:c2:
9b:33:ab:1f:9f:ed:cf:cf:d3:6a:56:4d:26:44:01:23:13:17:
ed:f1:bf:84:24:6a:16:df:ea:15:d5:d4:3c:f5:51:6b:6d:ea:
df:7a:08:0f:8c:ce:4d:c1:ab:7d:3e:82:aa:b4:c3:27:ab:bb:
7a:01:c6:15:58:b8:a0:34:6f:2d:ca:7b:47:5d:d6:2b:7c:3a:
a7:82:67:19:9f:7d:f0:be:b4:90:19:6c:a6:cd:35:dc:b9:4e:
ba:c3:5e:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:54:14 2025 by rpki-client