Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-0l-wvKXlfAxl3oIut7NXzDeFGk.roa
File: -0l-wvKXlfAxl3oIut7NXzDeFGk.roa (raw, json)
Hash identifier: E6EzxDGtmrGOQPEBkUWdvLCdFOhI4VWKJgIBLixWUgY=
Subject key identifier: FB:49:7E:C2:F2:97:95:F0:31:97:7A:08:BA:DE:CD:5F:30:DE:14:69
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E0A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-0l-wvKXlfAxl3oIut7NXzDeFGk.roa
Signing time: Thu 29 Dec 2022 09:32:09 +0000
ROA not before: Thu 29 Dec 2022 09:32:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10085
IP address blocks: 203.163.202.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3594 (0xe0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FB497EC2F29795F031977A08BADECD5F30DE1469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0d:54:a4:c2:15:61:9d:75:4b:3e:8f:b5:da:
9b:17:ca:1a:5c:bb:61:29:67:63:48:ef:d0:96:99:
b4:1d:09:c7:88:99:40:23:77:ba:48:47:83:1f:0c:
37:20:af:da:af:f2:95:07:ee:0d:5e:c9:ac:02:dc:
b8:8d:e8:5a:df:a9:91:17:84:bb:93:b2:a9:58:ba:
15:b0:3d:c5:b8:28:bd:39:c1:53:55:27:d3:37:8e:
92:4c:e3:e0:6e:79:8c:dc:2b:77:6f:7e:59:fe:5d:
0d:47:49:07:9f:11:a7:f0:7b:54:fe:0e:a5:13:6e:
de:49:c1:15:3a:b3:07:14:c4:d5:48:20:64:e1:d8:
d2:d1:e7:29:7e:41:69:24:e5:0d:32:f8:aa:d5:1f:
5c:df:72:21:6a:ea:c1:5b:f4:c8:82:38:50:0d:f7:
10:87:da:d9:72:3e:36:cb:c2:79:2d:e0:74:22:55:
71:88:70:d6:3c:ea:f4:24:dd:b3:be:4c:67:17:42:
8d:af:36:12:cf:3b:22:19:3a:65:a4:86:36:e4:1b:
64:00:1c:8c:57:a3:d6:85:5a:2b:f6:19:bc:71:11:
c2:c4:5c:c0:98:af:08:fa:1a:05:f8:ca:ad:4c:c7:
1e:dc:46:11:90:bb:94:a8:7e:5e:4f:a2:bc:dd:4c:
3e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:49:7E:C2:F2:97:95:F0:31:97:7A:08:BA:DE:CD:5F:30:DE:14:69
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-0l-wvKXlfAxl3oIut7NXzDeFGk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.202.0/23
Signature Algorithm: sha256WithRSAEncryption
58:07:15:7a:d0:5c:2d:fc:a4:a4:98:e1:d1:3a:f9:b3:be:74:
e8:15:71:7f:b0:50:e6:83:ff:e5:b6:33:63:4d:34:c4:02:20:
37:3f:a9:cf:76:b3:de:c8:c1:f6:a1:b3:43:9d:d6:a1:0f:8e:
12:aa:f4:36:49:46:0c:16:25:fb:92:14:9b:2a:12:50:94:76:
4b:e9:83:04:74:ce:9b:7d:27:07:03:5c:40:5f:e2:ba:a5:bb:
93:01:d1:62:b8:c4:86:78:fe:1f:cb:6d:0b:8b:c1:88:2e:5a:
95:31:ca:ee:94:03:0b:3a:09:2a:fb:99:f6:9a:84:24:90:fa:
e8:6c:01:d0:7e:22:87:1f:b0:64:6a:22:53:29:f1:39:9e:06:
73:eb:fa:ac:09:5e:d4:40:04:d9:70:4b:1b:da:bd:d9:4d:66:
a2:63:d9:a9:f2:b5:4e:26:4c:75:93:03:c7:2c:cf:ac:53:a3:
5e:35:a8:81:10:f7:e1:63:f9:21:6a:71:8d:33:83:8d:59:a4:
ee:d5:e5:0a:b5:99:86:dd:98:1b:90:24:c6:83:1f:7f:fb:41:
a0:9e:f1:a8:26:d8:65:d9:d7:9a:f5:14:bf:bb:83:0d:9a:c1:
a7:60:29:5d:55:da:a6:4a:72:9d:9c:18:3c:3f:a3:3e:55:a4:
a0:4f:8a:87
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDgowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMyMDlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEZCNDk3RUMyRjI5Nzk1
RjAzMTk3N0EwOEJBREVDRDVGMzBERTE0NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCkDVSkwhVhnXVLPo+12psXyhpcu2EpZ2NI79CWmbQdCceImUAj
d7pIR4MfDDcgr9qv8pUH7g1eyawC3LiN6FrfqZEXhLuTsqlYuhWwPcW4KL05wVNV
J9M3jpJM4+BueYzcK3dvfln+XQ1HSQefEafwe1T+DqUTbt5JwRU6swcUxNVIIGTh
2NLR5yl+QWkk5Q0y+KrVH1zfciFq6sFb9MiCOFAN9xCH2tlyPjbLwnkt4HQiVXGI
cNY86vQk3bO+TGcXQo2vNhLPOyIZOmWkhjbkG2QAHIxXo9aFWiv2GbxxEcLEXMCY
rwj6GgX4yq1Mxx7cRhGQu5Sofl5PorzdTD77AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU+0l+wvKXlfAxl3oIut7NXzDeFGkwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8tMGwtd3ZLWGxmQXhs
M29JdXQ3Tlh6RGVGR2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQBy6PKMA0GCSqGSIb3DQEBCwUAA4IBAQBYBxV60Fwt/KSkmOHROvmzvnToFXF/
sFDmg//ltjNjTTTEAiA3P6nPdrPeyMH2obNDndahD44SqvQ2SUYMFiX7khSbKhJQ
lHZL6YMEdM6bfScHA1xAX+K6pbuTAdFiuMSGeP4fy20Li8GILlqVMcrulAMLOgkq
+5n2moQkkProbAHQfiKHH7BkaiJTKfE5ngZz6/qsCV7UQATZcEsb2r3ZTWaiY9mp
8rVOJkx1kwPHLM+sU6NeNaiBEPfhY/khanGNM4ONWaTu1eUKtZmG3ZgbkCTGgx9/
+0GgnvGoJthl2dea9RS/u4MNmsGnYCldVdqmSnKdnBg8P6M+VaSgT4qH
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:10 2025 by rpki-client