Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKMT/Lcq7zrBGGSWkuFviBHMihBqN5aY.roa
File: Lcq7zrBGGSWkuFviBHMihBqN5aY.roa (raw, json)
Hash identifier: RrVzEMyZj1CZxMmvdVf48Uxfz+usweDZCbHS6DCC++U=
Subject key identifier: 2D:CA:BB:CE:B0:46:19:25:A4:B8:5B:E2:04:73:22:84:1A:8D:E5:A6
Certificate issuer: /CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5
Certificate serial: 0A3B
Authority key identifier: 48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/Lcq7zrBGGSWkuFviBHMihBqN5aY.roa
Signing time: Sun 07 Feb 2021 11:56:01 +0000
ROA not before: Sun 07 Feb 2021 11:56:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131645
IP address blocks: 103.141.82.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2619 (0xa3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5
Validity
Not Before: Feb 7 11:56:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2DCABBCEB0461925A4B85BE2047322841A8DE5A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ee:5a:d5:b4:f4:b5:d0:20:da:57:31:6a:e6:
8a:5d:e3:b0:d7:f0:04:15:1f:96:d0:bc:10:39:e7:
2e:00:9c:c8:08:e0:1a:f6:cc:01:d8:3c:0d:5c:85:
cf:23:f2:99:2d:66:32:14:0d:31:be:9f:d1:4b:86:
83:fb:77:23:19:0d:b0:73:b5:b4:14:5a:27:15:97:
b6:62:c0:8c:74:04:77:9c:4c:a8:83:f1:56:96:2e:
50:e3:f0:cf:5c:d0:a0:31:ee:8c:45:37:74:5d:59:
1d:6e:4d:15:17:f6:0c:9e:0e:9f:7e:f6:92:44:f6:
d3:14:82:e2:35:df:77:28:e1:d5:c8:99:3c:76:e5:
b1:97:0d:a2:92:c8:70:a3:b6:df:10:69:43:7d:6f:
9d:c5:e3:d8:2f:56:bd:b7:a6:87:40:ea:f4:d1:85:
21:92:16:5d:ed:24:4f:90:a0:48:64:39:a0:f8:43:
db:75:2a:a2:2a:b5:af:73:0e:34:15:13:9d:17:3c:
2f:bf:43:fc:cb:51:5e:37:56:f5:5d:c8:68:44:05:
0f:10:68:9b:63:1b:2f:30:bc:72:20:5e:82:67:04:
aa:18:a2:c5:e7:67:31:de:4c:9e:66:a2:8d:d6:2f:
cc:ea:a7:ff:ee:b1:30:e0:71:81:3b:74:4b:3b:66:
59:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:CA:BB:CE:B0:46:19:25:A4:B8:5B:E2:04:73:22:84:1A:8D:E5:A6
X509v3 Authority Key Identifier:
keyid:48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/SFQOE_iyyuhs0fjHJSg5pQePFqU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/Lcq7zrBGGSWkuFviBHMihBqN5aY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.82.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:af:f5:a2:84:5d:d2:3b:bd:d0:3c:d9:b6:2a:82:7f:ee:99:
96:e8:b0:de:a5:69:42:65:4f:78:17:17:98:c1:34:da:54:21:
bf:c8:7b:0a:9b:4b:77:7e:5d:04:1c:6b:e1:0d:40:90:02:13:
07:d6:8e:cb:23:ec:e7:60:86:a9:84:69:9e:7e:63:c1:89:de:
ef:c6:9c:09:e9:d0:d0:bb:1b:3b:7b:11:fb:01:89:d5:0a:7c:
6f:94:dc:61:eb:ab:e1:76:28:3f:ae:01:6f:f3:7c:f6:d5:e9:
4f:dd:0b:df:cd:b6:47:a5:ea:d3:bb:0a:83:fa:cb:1c:6e:39:
ce:fb:d8:05:bf:19:5e:14:f6:0d:c3:2d:87:dc:b2:8e:65:bc:
b3:f7:9e:f5:2b:8d:7f:36:4f:f3:a2:63:4c:99:81:be:84:5b:
66:9d:e8:4c:28:9c:f4:ba:4d:32:f3:c9:a8:f1:b9:87:85:53:
e9:42:de:bc:f8:48:67:d2:e6:44:4d:9a:e8:73:de:77:b7:84:
0e:eb:5b:6a:93:74:a1:38:3d:6f:d5:6c:1c:36:8b:cb:8d:4b:
96:dc:9e:6e:4b:9e:51:f8:58:a1:ec:60:21:06:b2:42:ae:05:
62:18:ff:ee:95:75:79:cb:b2:4c:38:78:bb:e2:c2:9b:23:5a:
a1:e4:1b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:31 2025 by rpki-client