Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEEMON/fpBF9LDwRRKdeDCaUoDfvEv77TM.roa
File: fpBF9LDwRRKdeDCaUoDfvEv77TM.roa (raw, json)
Hash identifier: WvsZalGXdmSNyHTnduK1I4uIbqSkTNJuX94TN9vsfKY=
Subject key identifier: 7E:90:45:F4:B0:F0:45:12:9D:78:30:9A:52:80:DF:BC:4B:FB:ED:33
Certificate issuer: /CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Certificate serial: 52
Authority key identifier: 04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/fpBF9LDwRRKdeDCaUoDfvEv77TM.roa
Signing time: Sat 20 May 2023 09:05:41 +0000
ROA not before: Sat 20 May 2023 09:05:41 +0000
ROA not after: Thu 11 Jan 2024 15:30:09 +0000
asID: 9915
IP address blocks: 103.67.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82 (0x52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Validity
Not Before: May 20 09:05:41 2023 GMT
Not After : Jan 11 15:30:09 2024 GMT
Subject: CN=7E9045F4B0F045129D78309A5280DFBC4BFBED33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:26:54:b2:e2:3e:d2:8a:c5:17:41:52:63:e4:
f5:40:34:fb:fa:1c:37:37:a7:c8:75:52:ce:eb:09:
22:f7:b5:8b:36:96:62:df:04:6e:db:c3:62:42:fd:
3f:e8:8c:69:c3:1d:92:13:74:56:3e:3d:cd:94:c4:
0a:36:29:47:01:fc:64:6c:38:90:18:e8:0f:ce:62:
40:20:d5:ba:28:61:51:02:47:cf:22:56:4e:02:53:
f3:ad:6b:15:78:e7:b6:d6:25:19:06:33:90:bb:6a:
75:38:ec:d2:93:36:e0:77:92:69:fb:c6:bb:4f:d6:
57:75:10:c5:11:25:fd:ab:d1:b1:0c:dc:83:07:1c:
41:6a:79:70:d0:c0:e9:e8:00:6d:1a:5b:b3:5e:11:
9e:e9:db:c4:42:42:10:15:7a:65:68:5b:da:f3:e2:
76:19:24:58:ba:05:c5:8c:f9:65:2b:fc:b6:ed:b2:
03:4c:44:24:1c:a2:22:8a:a7:00:83:19:4d:cb:e7:
42:a4:35:c1:d3:f0:7b:f8:13:64:9b:a8:00:2d:ce:
5f:73:f7:34:ef:19:75:86:98:6a:e9:31:d5:75:80:
7a:fa:bb:76:07:6f:95:0e:1c:d3:90:0a:78:57:06:
f5:19:c0:85:7d:0e:5e:c2:bf:1a:30:43:e4:6b:26:
18:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:90:45:F4:B0:F0:45:12:9D:78:30:9A:52:80:DF:BC:4B:FB:ED:33
X509v3 Authority Key Identifier:
keyid:04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/fpBF9LDwRRKdeDCaUoDfvEv77TM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.67.161.0/24
Signature Algorithm: sha256WithRSAEncryption
97:88:dc:91:1b:ba:3d:70:8d:98:28:6d:41:51:e5:44:de:1d:
c4:46:3d:34:22:74:bc:23:5b:c2:ca:21:dc:08:28:52:1b:e6:
28:ac:2a:1e:3c:6a:39:2a:34:b7:0d:da:06:d6:a8:3a:43:35:
d0:da:5b:18:10:cc:4e:d5:c6:cd:f0:01:57:be:89:ba:d9:13:
4f:8f:bb:35:05:4f:46:6b:74:d5:f8:a5:54:40:a4:9d:4b:5f:
6b:de:4c:9a:12:1f:51:58:3e:ac:8f:33:23:ef:f2:6f:4e:53:
4c:f3:4e:8b:ad:a0:d5:d2:ee:fb:b8:98:51:4e:86:66:ec:87:
df:dd:c9:51:b5:c3:53:6d:69:b3:ed:62:88:a5:bb:1b:a4:7c:
3c:20:81:b7:02:9c:93:3e:5d:26:a6:9e:4d:48:c4:ca:b7:66:
dc:d5:b2:4b:7e:d9:67:57:47:90:fc:88:2e:3e:54:4c:e8:0d:
7b:cc:a5:0e:54:c0:00:89:d8:27:dc:af:bf:4b:9b:63:a7:79:
e3:1a:33:47:99:c3:85:40:e6:f3:9f:73:f9:17:20:e3:de:77:
22:ba:de:bf:91:6c:c3:b5:68:64:e3:48:5d:d6:1d:86:07:4a:
7a:4d:73:94:ac:02:b8:dd:72:e0:d8:c8:1c:95:9b:25:8a:e4:
2e:9f:3f:55
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgIBUjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNDg2
RjFENTExRDJDMjJFQzk1OTk0QjEyM0IzQTI0OTYyQzFFMzI3MB4XDTIzMDUyMDA5
MDU0MVoXDTI0MDExMTE1MzAwOVowMzExMC8GA1UEAxMoN0U5MDQ1RjRCMEYwNDUx
MjlENzgzMDlBNTI4MERGQkM0QkZCRUQzMzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAL0mVLLiPtKKxRdBUmPk9UA0+/ocNzenyHVSzusJIve1izaWYt8E
btvDYkL9P+iMacMdkhN0Vj49zZTECjYpRwH8ZGw4kBjoD85iQCDVuihhUQJHzyJW
TgJT861rFXjnttYlGQYzkLtqdTjs0pM24HeSafvGu0/WV3UQxREl/avRsQzcgwcc
QWp5cNDA6egAbRpbs14RnunbxEJCEBV6ZWhb2vPidhkkWLoFxYz5ZSv8tu2yA0xE
JByiIoqnAIMZTcvnQqQ1wdPwe/gTZJuoAC3OX3P3NO8ZdYaYaukx1XWAevq7dgdv
lQ4c05AKeFcG9RnAhX0OXsK/GjBD5GsmGBECAwEAAaOCAe4wggHqMB0GA1UdDgQW
BBR+kEX0sPBFEp14MJpSgN+8S/vtMzAfBgNVHSMEGDAWgBQEhvHVEdLCLslZlLEj
s6JJYsHjJzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP
oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MRUVNT04v
QklieDFSSFN3aTdKV1pTeEk3T2lTV0xCNHljLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9CSWJ4MVJIU3dpN0pXWlN4STdPaVNXTEI0eWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MRUVNT04vZnBCRjlMRHdSUktkZURDYVVv
RGZ2RXY3N1RNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3
L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdD
oTANBgkqhkiG9w0BAQsFAAOCAQEAl4jckRu6PXCNmChtQVHlRN4dxEY9NCJ0vCNb
wsoh3AgoUhvmKKwqHjxqOSo0tw3aBtaoOkM10NpbGBDMTtXGzfABV76JutkTT4+7
NQVPRmt01filVECknUtfa95MmhIfUVg+rI8zI+/yb05TTPNOi62g1dLu+7iYUU6G
ZuyH393JUbXDU21ps+1iiKW7G6R8PCCBtwKckz5dJqaeTUjEyrdm3NWyS37ZZ1dH
kPyILj5UTOgNe8ylDlTAAInYJ9yvv0ubY6d54xozR5nDhUDm859z+Rcg4953Irre
v5Fsw7VoZONIXdYdhgdKek1zlKwCuN1y4NjIHJWbJYrkLp8/VQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org