Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1aT8Zcqu96MbAgMgswfTnLtDrEQ.roa
File: 1aT8Zcqu96MbAgMgswfTnLtDrEQ.roa (raw, json)
Hash identifier: Ns+3Uf0uK56+4xcZsUL5umH7/9Vj3KC7iV4Usl3jOJA=
Subject key identifier: D5:A4:FC:65:CA:AE:F7:A3:1B:02:03:20:B3:07:D3:9C:BB:43:AC:44
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1aT8Zcqu96MbAgMgswfTnLtDrEQ.roa
Signing time: Thu 15 Sep 2022 02:39:17 +0000
ROA not before: Thu 15 Sep 2022 02:39:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 223.26.68.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D5A4FC65CAAEF7A31B020320B307D39CBB43AC44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:52:a1:92:6a:17:bc:82:8e:fd:33:1e:d1:fd:
03:b1:6d:37:ed:30:12:cb:ea:73:f8:fe:0e:66:4d:
7b:46:a9:6a:3e:72:7d:34:5a:e7:77:b6:62:5e:4d:
db:d0:47:87:dc:41:f5:03:74:90:27:c0:d5:2c:c8:
3c:ab:18:82:5b:9c:a1:9c:a6:29:8e:c4:a3:03:b2:
4e:78:ef:a9:58:58:94:a3:c7:0e:f1:5b:95:67:ad:
e9:13:82:58:ae:a2:fd:8e:aa:20:86:84:74:21:b2:
c7:d6:5e:7d:96:e0:1d:a1:9f:97:73:03:e9:07:88:
87:14:fb:65:9f:5b:45:ad:9d:48:7c:e5:fe:3b:7d:
d0:bc:08:e6:f6:92:8b:bf:33:51:45:a0:52:24:52:
40:a9:52:57:b4:ca:56:3d:0c:ce:2e:89:2a:c8:c1:
6b:a7:1d:62:2e:4a:24:b9:1c:ed:6e:70:1e:34:66:
ae:e1:8a:48:6e:33:c8:b3:05:18:80:02:67:5e:f0:
7a:9c:11:39:83:f7:60:2e:e4:2f:13:15:3f:ca:5e:
fa:8a:5f:c9:b6:ef:7c:01:31:14:cc:ec:14:a9:08:
76:36:e2:b1:8a:a6:77:9e:a2:55:65:62:ab:ae:7d:
5a:bc:53:a2:a5:3d:d7:2f:da:09:63:bf:16:57:09:
0f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:A4:FC:65:CA:AE:F7:A3:1B:02:03:20:B3:07:D3:9C:BB:43:AC:44
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1aT8Zcqu96MbAgMgswfTnLtDrEQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.68.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:65:28:b8:31:91:15:cb:4c:82:64:49:83:00:e5:9a:25:01:
fd:75:9e:ac:e5:07:59:2e:5b:ee:ae:fc:a2:e4:17:84:d6:ba:
37:4e:6c:5c:c3:5b:ea:da:19:29:f9:cf:16:8c:bb:61:56:3f:
47:0b:ce:0d:ee:5c:c5:07:05:79:fd:5f:fe:24:6e:d2:a5:e4:
1b:e2:37:77:f7:32:b1:9e:76:6f:97:03:ca:7f:2a:5c:60:bc:
79:d6:a2:00:20:75:bd:e9:b4:8a:91:1e:ed:43:fb:cb:7a:d6:
6f:fa:d8:aa:af:3c:63:c8:65:95:fd:7b:7a:6b:85:cb:f1:8c:
dd:db:be:8a:bb:b0:4f:d5:38:1e:cd:fd:11:95:7b:83:a7:33:
25:45:44:d1:27:21:2f:cb:bb:72:d8:3d:3a:98:97:c3:65:f4:
3d:1c:96:c2:a6:2f:24:ef:ef:0d:c4:23:4e:85:dc:89:a5:d2:
f9:e5:42:8a:40:08:c7:69:f3:c7:db:ec:87:30:49:e8:5e:fe:
3a:9c:35:eb:36:6e:04:29:ae:7d:08:a8:1a:42:b1:e0:ef:c0:
ca:48:3d:55:e4:94:29:05:b0:4d:30:af:07:cf:e0:93:cf:e8:
95:cf:96:5b:63:6d:56:88:02:e8:dc:d3:1b:e7:11:20:7c:ae:
0a:db:d8:42
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjA5MTUw
MjM5MTdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQ1QTRGQzY1Q0FBRUY3
QTMxQjAyMDMyMEIzMDdEMzlDQkI0M0FDNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHUqGSahe8go79Mx7R/QOxbTftMBLL6nP4/g5mTXtGqWo+cn00
Wud3tmJeTdvQR4fcQfUDdJAnwNUsyDyrGIJbnKGcpimOxKMDsk5476lYWJSjxw7x
W5VnrekTgliuov2OqiCGhHQhssfWXn2W4B2hn5dzA+kHiIcU+2WfW0WtnUh85f47
fdC8COb2kou/M1FFoFIkUkCpUle0ylY9DM4uiSrIwWunHWIuSiS5HO1ucB40Zq7h
ikhuM8izBRiAAmde8HqcETmD92Au5C8TFT/KXvqKX8m273wBMRTM7BSpCHY24rGK
pneeolVlYquufVq8U6KlPdcv2gljvxZXCQ91AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU1aT8Zcqu96MbAgMgswfTnLtDrEQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8xYVQ4WmNxdTk2TWJB
Z01nc3dmVG5MdERyRVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQB3xpEMA0GCSqGSIb3DQEBCwUAA4IBAQCpZSi4MZEVy0yCZEmDAOWaJQH9dZ6s
5QdZLlvurvyi5BeE1ro3Tmxcw1vq2hkp+c8WjLthVj9HC84N7lzFBwV5/V/+JG7S
peQb4jd39zKxnnZvlwPKfypcYLx51qIAIHW96bSKkR7tQ/vLetZv+tiqrzxjyGWV
/Xt6a4XL8Yzd276Ku7BP1Tgezf0RlXuDpzMlRUTRJyEvy7ty2D06mJfDZfQ9HJbC
pi8k7+8NxCNOhdyJpdL55UKKQAjHafPH2+yHMEnoXv46nDXrNm4EKa59CKgaQrHg
78DKSD1V5JQpBbBNMK8Hz+CTz+iVz5ZbY21WiALo3NMb5xEgfK4K29hC
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org