Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2wYLqQlOi5QoiZZ-nsoDMBSFwh8.roa
File: 2wYLqQlOi5QoiZZ-nsoDMBSFwh8.roa (raw, json)
Hash identifier: hQ3Ebdp7OYpLftwaxCIZaoQj+JK2Rsu0roKotM40piM=
Subject key identifier: DB:06:0B:A9:09:4E:8B:94:28:89:96:7E:9E:CA:03:30:14:85:C2:1F
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C0F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2wYLqQlOi5QoiZZ-nsoDMBSFwh8.roa
Signing time: Wed 29 Sep 2021 02:38:59 +0000
ROA not before: Wed 29 Sep 2021 02:38:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.117.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3087 (0xc0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DB060BA9094E8B942889967E9ECA03301485C21F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:df:5b:2a:cb:09:e9:4f:25:7d:12:7b:0c:9a:
f6:7a:c8:ca:01:90:e4:2c:2d:1e:38:c1:13:1d:9b:
56:f6:cf:7d:62:0c:03:ad:b0:bf:43:ff:3f:ff:69:
8a:da:97:73:f6:6d:13:31:bc:1c:cb:ae:e6:71:84:
17:46:8c:28:15:c3:44:44:42:87:11:95:9b:be:e4:
34:38:4f:de:85:03:32:f4:c1:2a:70:12:a1:06:be:
e9:b2:92:ad:a4:5d:df:86:a4:aa:ca:31:45:38:4f:
10:a3:b9:5e:18:ae:be:01:a2:2c:a8:22:49:d7:cf:
f3:61:f0:cf:8c:28:c3:75:a2:34:54:ed:89:69:f7:
0a:7d:23:6f:3f:3d:53:c5:3f:63:63:b1:3b:36:09:
82:5e:60:dd:fe:d1:9b:2a:13:b1:7e:c3:1b:c7:3b:
03:46:10:b7:88:d5:8e:17:f3:9f:d7:a7:b1:ee:21:
74:fa:ed:a0:d7:c7:9f:92:d3:1e:45:c4:77:00:fb:
fa:c6:dc:db:d2:c1:fa:8f:a8:11:e5:6b:f7:b6:fc:
a7:c0:73:50:10:30:33:8d:f6:4a:1d:39:1c:a1:26:
b8:cb:df:a5:da:09:f0:59:33:40:47:e1:c8:e3:f7:
00:c1:ba:fb:81:d2:fc:c5:16:cd:29:19:26:65:58:
08:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:06:0B:A9:09:4E:8B:94:28:89:96:7E:9E:CA:03:30:14:85:C2:1F
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2wYLqQlOi5QoiZZ-nsoDMBSFwh8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.160.0/21
Signature Algorithm: sha256WithRSAEncryption
6c:da:24:47:86:9e:06:24:36:d8:4c:92:12:d9:d4:e4:55:ae:
64:a6:22:b6:6d:db:7c:89:92:e0:45:a6:02:23:08:ba:70:b3:
d6:82:11:cb:19:ce:64:29:f8:43:1e:54:b3:dc:36:d5:31:35:
0f:7b:ec:ab:3c:53:f3:18:f1:b0:73:d3:64:1b:1c:2e:65:dc:
eb:35:de:c5:06:f5:b1:4e:d1:1c:66:96:ae:c3:6d:30:07:30:
09:a2:08:32:4c:d6:3e:e0:c2:c7:19:cc:c4:f9:c8:48:e7:da:
1a:2e:3b:c8:9d:1c:ab:35:d9:a3:ae:a4:4b:30:10:03:2a:48:
75:74:eb:c2:22:cb:b6:81:d5:29:fd:5b:16:cd:fb:37:85:93:
c2:ec:19:58:bc:bf:8e:a1:d3:03:13:c4:07:88:01:b0:56:b7:
80:59:18:e7:93:30:6e:c1:02:a9:29:79:6c:36:eb:38:56:c3:
f1:c8:60:c3:16:d4:55:82:79:a2:50:0a:aa:21:c2:62:25:4b:
92:b4:7f:12:2a:85:60:63:19:21:54:ce:a6:82:cc:c3:89:c9:
77:a1:ad:1e:6e:d6:02:3d:d0:47:0b:f8:c8:de:a1:82:6f:14:
39:f4:ea:db:ff:87:21:72:40:87:d6:a7:82:30:6e:e9:54:1b:
fe:36:79:d0
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDA8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM4NTlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERCMDYwQkE5MDk0RThC
OTQyODg5OTY3RTlFQ0EwMzMwMTQ4NUMyMUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCt31sqywnpTyV9EnsMmvZ6yMoBkOQsLR44wRMdm1b2z31iDAOt
sL9D/z//aYral3P2bRMxvBzLruZxhBdGjCgVw0REQocRlZu+5DQ4T96FAzL0wSpw
EqEGvumykq2kXd+GpKrKMUU4TxCjuV4Yrr4BoiyoIknXz/Nh8M+MKMN1ojRU7Ylp
9wp9I28/PVPFP2NjsTs2CYJeYN3+0ZsqE7F+wxvHOwNGELeI1Y4X85/Xp7HuIXT6
7aDXx5+S0x5FxHcA+/rG3NvSwfqPqBHla/e2/KfAc1AQMDON9kodORyhJrjL36Xa
CfBZM0BH4cjj9wDBuvuB0vzFFs0pGSZlWAj/AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU2wYLqQlOi5QoiZZ+nsoDMBSFwh8wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8yd1lMcVFsT2k1UW9p
WlotbnNvRE1CU0Z3aDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDlnWgMA0GCSqGSIb3DQEBCwUAA4IBAQBs2iRHhp4GJDbYTJIS2dTkVa5kpiK2
bdt8iZLgRaYCIwi6cLPWghHLGc5kKfhDHlSz3DbVMTUPe+yrPFPzGPGwc9NkGxwu
ZdzrNd7FBvWxTtEcZpauw20wBzAJoggyTNY+4MLHGczE+chI59oaLjvInRyrNdmj
rqRLMBADKkh1dOvCIsu2gdUp/VsWzfs3hZPC7BlYvL+OodMDE8QHiAGwVreAWRjn
kzBuwQKpKXlsNus4VsPxyGDDFtRVgnmiUAqqIcJiJUuStH8SKoVgYxkhVM6mgszD
icl3oa0ebtYCPdBHC/jI3qGCbxQ59Orb/4chckCH1qeCMG7pVBv+NnnQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org