Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2re1UpwLAEQx2IumiRsBcyO-DBc.roa
File: 2re1UpwLAEQx2IumiRsBcyO-DBc.roa (raw, json)
Hash identifier: FdzkKC9AaPjOGfHU2MhnKO3eiz3m/2tiPMzXeGAzkSI=
Subject key identifier: DA:B7:B5:52:9C:0B:00:44:31:D8:8B:A6:89:1B:01:73:23:BE:0C:17
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DBF
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2re1UpwLAEQx2IumiRsBcyO-DBc.roa
Signing time: Thu 29 Dec 2022 09:31:48 +0000
ROA not before: Thu 29 Dec 2022 09:31:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.48.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3519 (0xdbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DAB7B5529C0B004431D88BA6891B017323BE0C17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6a:40:fc:18:d7:0a:0a:6b:5f:13:cc:38:75:
4f:a1:a1:ef:73:00:a9:ae:ca:96:99:b5:a0:24:b5:
45:ad:d5:af:69:ff:40:1c:ba:b4:97:36:b9:9b:29:
72:a9:ad:52:31:e3:2a:85:c2:82:f2:7f:2d:be:5c:
65:a2:b7:7a:94:22:c0:d9:97:51:ab:bf:e4:3d:2c:
8f:2b:3c:26:6d:06:a8:5d:00:84:a1:21:0a:63:8d:
6b:c7:22:54:df:f7:f9:dd:22:bd:5e:85:c9:7b:d4:
69:20:58:cb:2a:3f:44:0a:f2:27:4c:98:55:50:47:
e1:41:98:e7:43:6b:18:76:bb:00:7d:de:6a:7a:98:
61:e5:ec:73:f2:85:e5:ec:22:00:83:7f:19:5f:23:
6e:a0:46:f8:04:92:88:e6:88:01:de:1f:0f:c3:60:
30:90:6b:9e:3b:3d:40:dd:9b:53:9d:9e:b9:28:2d:
27:43:2f:f9:b7:18:04:3d:9e:3c:74:39:1b:77:ae:
c3:71:d5:79:69:c2:05:f2:2b:6f:b0:c6:2e:99:26:
4d:ed:36:1e:d0:16:31:b4:0e:d7:66:f7:7c:33:7a:
85:ef:b4:d8:53:aa:2d:6b:b1:16:03:df:c8:7e:11:
ed:19:67:f9:b9:78:4b:14:38:48:95:bc:a3:a3:1b:
fa:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B7:B5:52:9C:0B:00:44:31:D8:8B:A6:89:1B:01:73:23:BE:0C:17
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2re1UpwLAEQx2IumiRsBcyO-DBc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.48.0/22
Signature Algorithm: sha256WithRSAEncryption
77:22:3f:fb:d5:54:a5:5a:97:30:96:b3:5f:f0:23:f5:ca:0b:
42:6f:b0:e3:5f:b9:d9:b2:9a:83:37:6b:32:01:c5:81:04:0c:
c2:40:1b:59:5f:d2:e6:c8:56:6c:71:f2:fd:d5:92:e0:8f:1d:
58:36:a5:ef:48:93:c0:45:ba:f0:ec:65:eb:2b:99:2c:24:57:
78:67:80:d9:5e:c0:5a:8b:2b:e8:a9:c4:ad:b5:69:e9:35:84:
e0:f3:6f:1d:3c:88:6c:b5:03:11:85:d3:bd:dd:dc:df:cd:48:
9a:48:1b:7d:cb:5c:3a:c1:bb:2a:88:65:03:57:de:90:60:93:
e8:d0:b4:80:01:d6:0e:b2:31:ed:35:3a:4d:88:14:74:4e:23:
fa:a5:4d:dc:35:74:d8:94:04:fd:62:89:9e:97:71:06:49:5e:
a1:be:68:bb:1b:b1:2b:7d:2e:7d:04:45:1b:8f:c0:8f:f9:94:
23:1a:7d:a8:96:be:cc:dc:b4:40:2b:3d:a9:3f:4a:41:b7:d1:
92:71:5b:e0:a1:08:42:a3:96:f8:fb:70:77:30:ec:ea:9a:b1:
34:9f:8f:79:d0:b2:09:85:65:76:6a:7d:26:9f:2d:51:b7:d1:
24:7c:aa:1e:fd:be:0f:04:4d:3d:13:64:49:f3:88:6e:9b:b9:
1a:be:7f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:16 2025 by rpki-client