Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/LWXjJmnQRYnRKgutnGw65hc_bK4.roa
File: LWXjJmnQRYnRKgutnGw65hc_bK4.roa (raw, json)
Hash identifier: umqmNLXADi92EQwnIQ1GFO0bubiIkGuo88kOK7ZCHEs=
Subject key identifier: 2D:65:E3:26:69:D0:45:89:D1:2A:0B:AD:9C:6C:3A:E6:17:3F:6C:AE
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0E3E
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/LWXjJmnQRYnRKgutnGw65hc_bK4.roa
Signing time: Sun 07 Feb 2021 12:59:53 +0000
ROA not before: Sun 07 Feb 2021 12:59:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 14618
IP address blocks: 103.235.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3646 (0xe3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Feb 7 12:59:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2D65E32669D04589D12A0BAD9C6C3AE6173F6CAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ff:8d:43:f7:1f:3e:55:ca:1c:c8:4b:c0:1e:
53:11:f7:7f:39:c4:f2:30:65:ae:b3:1e:1b:20:7d:
61:b7:00:b1:c9:cd:1e:75:5f:9b:77:37:36:72:16:
c0:98:94:30:9f:de:09:15:be:0d:95:39:ba:51:9c:
3f:f4:26:13:34:c3:23:73:d2:05:cc:b1:5f:c3:a4:
8d:d8:b7:6c:dc:59:31:f6:fe:56:ee:d9:71:29:6e:
d2:ee:0d:c9:89:00:0d:27:62:9c:50:f6:37:b2:63:
61:c6:b2:53:48:78:6a:24:aa:e5:92:53:b1:3a:8c:
ed:f7:79:9c:f8:6d:2c:86:aa:06:56:7f:b0:dd:f1:
b1:04:fd:b4:14:61:b6:ab:6e:95:37:12:39:8f:09:
65:61:e3:b8:87:57:c5:12:74:26:46:40:1d:01:4f:
f7:cc:1f:a1:46:57:39:b7:c6:2d:e9:bd:7b:bb:02:
db:12:b7:19:6b:eb:ed:e0:8a:96:b4:6d:49:ab:ab:
d6:1b:91:c7:39:b9:25:6d:52:3e:21:1e:8c:9d:88:
82:2e:cd:e7:21:69:8f:ae:09:04:3b:f5:67:ab:fe:
0e:af:80:67:7a:98:ae:f5:6a:f1:da:6c:cf:b9:98:
cb:03:66:0d:e5:78:4e:c4:24:1e:42:eb:5e:59:ba:
37:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:65:E3:26:69:D0:45:89:D1:2A:0B:AD:9C:6C:3A:E6:17:3F:6C:AE
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/LWXjJmnQRYnRKgutnGw65hc_bK4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.235.88.0/24
Signature Algorithm: sha256WithRSAEncryption
50:e9:c1:5b:38:ec:38:51:13:19:78:bf:1e:a2:e8:00:77:36:
fe:ad:ea:6e:ec:5e:9d:90:d9:0e:c6:a8:8c:98:38:99:2c:02:
28:6f:ac:2d:0d:6a:23:7c:4b:79:d2:b2:68:a6:b1:ed:19:7d:
9a:6d:df:19:b2:1f:3e:75:dc:8e:4d:52:e1:1b:13:d4:58:49:
1f:94:f8:01:b0:a0:55:02:da:5c:47:f3:d5:18:ca:99:a4:de:
53:2e:09:2f:39:63:2e:d9:d9:fa:85:82:79:e1:5a:f3:52:f4:
8e:c5:55:fa:19:41:e2:12:fc:53:c7:af:cc:1e:0b:af:c3:56:
82:02:4d:aa:d4:3b:9e:8a:b2:47:a3:e8:6e:55:9d:9b:61:e8:
4c:a7:1b:04:af:30:27:b9:09:d2:74:eb:46:da:0e:9a:f6:ed:
39:2c:c3:aa:a3:6b:66:a5:cc:af:20:4a:67:44:dd:b0:c5:68:
c8:fb:95:7a:83:fe:a0:e2:4a:f4:2c:90:81:f4:4b:c5:4c:48:
08:c0:43:08:57:d3:ac:c8:72:3a:d3:f2:bb:7e:8e:25:b3:df:
e7:b1:0c:12:29:00:c6:a8:86:a0:ab:54:a3:27:37:65:8a:22:
48:36:f3:98:1e:5c:ee:87:5c:4e:a7:dd:a0:84:e7:09:88:e4:
dd:30:67:ac
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDj4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMTAyMDcx
MjU5NTNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDJENjVFMzI2NjlEMDQ1
ODlEMTJBMEJBRDlDNkMzQUU2MTczRjZDQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJ/41D9x8+VcocyEvAHlMR9385xPIwZa6zHhsgfWG3ALHJzR51
X5t3NzZyFsCYlDCf3gkVvg2VObpRnD/0JhM0wyNz0gXMsV/DpI3Yt2zcWTH2/lbu
2XEpbtLuDcmJAA0nYpxQ9jeyY2HGslNIeGokquWSU7E6jO33eZz4bSyGqgZWf7Dd
8bEE/bQUYbarbpU3EjmPCWVh47iHV8USdCZGQB0BT/fMH6FGVzm3xi3pvXu7AtsS
txlr6+3gipa0bUmrq9Ybkcc5uSVtUj4hHoydiIIuzechaY+uCQQ79Wer/g6vgGd6
mK71avHabM+5mMsDZg3leE7EJB5C615ZujcPAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQULWXjJmnQRYnRKgutnGw65hc/bK4wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9MV1hqSm1uUVJZblJLZ3V0bkd3
NjVoY19iSzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tY
MA0GCSqGSIb3DQEBCwUAA4IBAQBQ6cFbOOw4URMZeL8eougAdzb+repu7F6dkNkO
xqiMmDiZLAIob6wtDWojfEt50rJoprHtGX2abd8Zsh8+ddyOTVLhGxPUWEkflPgB
sKBVAtpcR/PVGMqZpN5TLgkvOWMu2dn6hYJ54VrzUvSOxVX6GUHiEvxTx6/MHguv
w1aCAk2q1DueirJHo+huVZ2bYehMpxsErzAnuQnSdOtG2g6a9u05LMOqo2tmpcyv
IEpnRN2wxWjI+5V6g/6g4kr0LJCB9EvFTEgIwEMIV9OsyHI60/K7fo4ls9/nsQwS
KQDGqIagq1SjJzdliiJINvOYHlzuh1xOp92ghOcJiOTdMGes
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:03 2025 by rpki-client