Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/UcI6H7FWltLMOOIJG09CRfDxEu4.roa
File: UcI6H7FWltLMOOIJG09CRfDxEu4.roa (raw, json)
Hash identifier: qNGSuVo8oRqLXuReaMuErlRVK2RqyMCHh13RbybOR+g=
Subject key identifier: 51:C2:3A:1F:B1:56:96:D2:CC:38:E2:09:1B:4F:42:45:F0:F1:12:EE
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0A04
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/UcI6H7FWltLMOOIJG09CRfDxEu4.roa
Signing time: Tue 29 Sep 2020 10:03:08 +0000
ROA not before: Tue 29 Sep 2020 10:03:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 103.136.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2564 (0xa04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 10:03:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=51C23A1FB15696D2CC38E2091B4F4245F0F112EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:83:63:18:7b:1e:17:77:a6:06:8f:37:41:27:
cb:71:dd:ce:7e:b9:00:f9:97:6e:43:77:f5:0a:6c:
29:3b:cb:5a:ff:57:83:99:31:eb:8e:8b:d9:82:cf:
60:ad:52:fd:82:8b:6f:b8:65:86:9e:8d:15:1e:cc:
fb:80:e6:31:c5:7c:22:ae:79:d0:bb:3c:39:df:ff:
f4:d7:25:71:20:41:d3:a9:56:8d:ac:ec:bc:03:b2:
9e:1e:36:1c:06:0f:08:3a:53:aa:b7:24:26:05:53:
01:6c:ef:a5:ae:37:3f:9c:80:47:25:e9:a3:10:b9:
a8:fa:68:8a:21:58:ad:5f:48:6a:d0:ec:75:7f:cf:
50:07:a9:06:ea:01:82:e9:79:26:70:b5:99:1c:c5:
a1:5b:02:38:0f:0b:37:71:48:60:47:f7:f7:5e:70:
cb:91:f8:ef:34:eb:1a:0a:49:e9:f8:ce:76:35:8e:
86:01:6c:72:c6:e7:3e:9e:db:88:49:a3:41:48:4d:
bd:40:a1:de:4d:77:f4:6e:e5:82:aa:06:47:b5:c9:
fc:68:ad:78:74:b4:e0:40:23:46:39:09:4b:ff:09:
97:b7:ae:57:c4:b1:ab:27:04:a7:a0:68:ae:b3:a8:
0f:60:cc:68:fc:d2:d1:da:7c:ca:30:44:f3:f1:86:
50:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:C2:3A:1F:B1:56:96:D2:CC:38:E2:09:1B:4F:42:45:F0:F1:12:EE
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/UcI6H7FWltLMOOIJG09CRfDxEu4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/24
Signature Algorithm: sha256WithRSAEncryption
42:65:1f:be:11:85:b5:5b:d2:62:d4:56:76:f6:8e:ab:ca:b6:
72:43:1d:8f:e1:b8:0f:1c:ca:5b:90:6c:f8:0d:33:71:9b:ef:
f8:94:87:26:fe:49:4a:53:cb:9a:ec:a1:9d:73:5d:54:82:ac:
b2:64:eb:f0:cd:0a:e5:74:d7:61:ba:56:fa:f0:cb:42:be:fc:
6d:cd:f8:e9:91:f5:cb:ed:f8:21:6c:8a:e2:08:2f:ab:27:8c:
d0:47:b2:82:ad:88:24:67:6d:1d:e0:43:eb:a7:57:21:3d:6f:
0a:a8:84:d9:41:31:cb:3e:92:34:74:8c:b4:1a:d2:76:67:71:
fa:92:4a:55:e8:8a:c9:dd:5e:dd:5a:f4:12:ca:d8:7a:a2:a5:
e7:77:fe:01:b6:ed:70:4c:ef:c5:b5:83:33:fb:93:1c:ea:b7:
77:05:e8:ee:a6:12:67:9a:98:d6:22:7a:80:dd:41:d8:b9:45:
d0:a5:a7:04:84:53:86:fc:25:99:2b:46:7a:46:7d:de:4c:8e:
dc:9e:4b:c2:5a:0c:d9:5d:aa:ee:e5:9e:89:21:d4:01:d2:46:
ec:e6:6e:03:3e:0e:09:be:68:e5:d1:fd:26:1b:3d:02:3f:29:
15:a0:ba:ed:da:96:cf:c0:73:f6:42:fa:3d:69:df:d7:2b:19:
40:71:54:ea
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCgQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG
MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMDA5Mjkx
MDAzMDhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDUxQzIzQTFGQjE1Njk2
RDJDQzM4RTIwOTFCNEY0MjQ1RjBGMTEyRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAg2MYex4Xd6YGjzdBJ8tx3c5+uQD5l25Dd/UKbCk7y1r/V4OZ
MeuOi9mCz2CtUv2Ci2+4ZYaejRUezPuA5jHFfCKuedC7PDnf//TXJXEgQdOpVo2s
7LwDsp4eNhwGDwg6U6q3JCYFUwFs76WuNz+cgEcl6aMQuaj6aIohWK1fSGrQ7HV/
z1AHqQbqAYLpeSZwtZkcxaFbAjgPCzdxSGBH9/decMuR+O806xoKSen4znY1joYB
bHLG5z6e24hJo0FITb1Aod5Nd/Ru5YKqBke1yfxorXh0tOBAI0Y5CUv/CZe3rlfE
sasnBKegaK6zqA9gzGj80tHafMowRPPxhlD/AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUUcI6H7FWltLMOOIJG09CRfDxEu4wHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75
mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ
RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL1VjSTZIN0ZXbHRMTU9PSUpHMDlDUmZE
eEV1NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniDwwDQYJ
KoZIhvcNAQELBQADggEBAEJlH74RhbVb0mLUVnb2jqvKtnJDHY/huA8cyluQbPgN
M3Gb7/iUhyb+SUpTy5rsoZ1zXVSCrLJk6/DNCuV012G6Vvrwy0K+/G3N+OmR9cvt
+CFsiuIIL6snjNBHsoKtiCRnbR3gQ+unVyE9bwqohNlBMcs+kjR0jLQa0nZncfqS
SlXoisndXt1a9BLK2Hqiped3/gG27XBM78W1gzP7kxzqt3cF6O6mEmeamNYieoDd
Qdi5RdClpwSEU4b8JZkrRnpGfd5MjtyeS8JaDNldqu7lnokh1AHSRuzmbgM+Dgm+
aOXR/SYbPQI/KRWguu3als/Ac/ZC+j1p39crGUBxVOo=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:40 2025 by rpki-client