Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/3A8TUk0F2sIb-W6bnRlQvvB-vvA.roa
File: 3A8TUk0F2sIb-W6bnRlQvvB-vvA.roa (raw, json)
Hash identifier: 2oQK3G9VJY2ic8CX84m2d1rb/fnZERQz5x3IPDMkrNs=
Subject key identifier: DC:0F:13:52:4D:05:DA:C2:1B:F9:6E:9B:9D:19:50:BE:F0:7E:BE:F0
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C00
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/3A8TUk0F2sIb-W6bnRlQvvB-vvA.roa
Signing time: Wed 29 Sep 2021 02:38:56 +0000
ROA not before: Wed 29 Sep 2021 02:38:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 150.116.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3072 (0xc00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DC0F13524D05DAC21BF96E9B9D1950BEF07EBEF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9a:1c:fe:66:db:e4:be:a4:8e:d6:d4:f6:fe:
e4:4b:52:6e:42:4f:b0:9a:b7:2c:f9:d9:1d:87:30:
3f:d3:21:b1:de:1c:b1:c8:c1:fa:f6:63:68:98:19:
96:34:0f:68:c6:6b:3a:03:ad:00:38:28:8a:e3:4b:
dd:51:bf:48:07:cc:58:a5:42:8b:46:fd:0e:83:f4:
dc:59:f5:6a:ce:07:5b:34:80:e3:6a:8d:da:82:88:
53:0f:82:03:76:80:92:c0:15:2a:92:a7:b8:e4:4e:
6d:25:1a:ab:2f:af:65:53:51:ce:bc:f7:42:c5:b3:
11:db:9c:b4:fd:ed:20:7c:7a:89:0f:e9:22:4e:3e:
49:31:f9:3e:82:70:f4:95:da:94:6b:19:de:db:ff:
84:20:1b:0f:48:c5:03:e8:ca:62:fc:48:b4:9a:7d:
dc:7f:cf:24:eb:50:43:70:8d:42:33:e3:a2:b0:20:
67:cc:84:57:9d:9a:49:22:f9:2a:89:b2:ba:1e:84:
14:d9:ca:4b:14:eb:1c:f8:a5:50:74:35:f4:5b:41:
0d:fa:98:33:97:e8:e2:78:e4:8f:79:db:18:77:e7:
19:e8:41:1d:b9:aa:c9:8f:b9:49:1d:4d:c9:08:a6:
f6:c2:60:4f:26:db:7b:f4:df:70:ce:f2:ed:81:6c:
32:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:0F:13:52:4D:05:DA:C2:1B:F9:6E:9B:9D:19:50:BE:F0:7E:BE:F0
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/3A8TUk0F2sIb-W6bnRlQvvB-vvA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.239.0/24
Signature Algorithm: sha256WithRSAEncryption
09:61:77:e7:ef:b0:04:ab:45:4d:38:85:53:8a:47:97:90:54:
7f:d7:03:d5:33:2d:0c:4f:1b:4b:36:24:bb:17:24:1e:eb:cd:
85:95:b2:07:98:54:d8:02:50:0a:28:32:fd:9d:7d:ea:4f:bf:
19:97:15:22:2b:38:17:b3:24:ac:64:c4:61:71:3f:9d:b8:5d:
b5:af:58:e4:a4:07:6c:50:5a:3a:8c:18:9c:8a:96:98:6c:1f:
8d:bf:01:69:60:29:86:cc:c5:79:3a:44:29:91:24:78:e4:63:
2d:aa:4f:19:f4:59:00:b9:f5:17:8c:95:af:c4:92:9f:a6:fe:
f6:b4:cb:b3:d2:4f:75:e4:5b:78:e2:da:ed:21:57:de:36:93:
f3:29:cc:01:0f:2f:00:71:9f:36:69:60:0a:65:3d:bc:51:47:
22:c6:6d:ac:76:24:f3:14:62:78:56:e8:de:e9:60:55:c2:65:
e8:e4:92:10:43:81:28:01:ba:a4:e7:26:2b:a4:a6:e0:38:15:
01:c9:dc:f4:e5:52:05:6d:83:34:04:9d:86:95:82:89:5a:4d:
2d:19:5e:0e:0e:22:a9:55:9a:8b:91:62:0c:f4:a4:d1:e8:15:
03:bc:6f:59:f2:a7:cf:26:7e:46:d3:e7:e6:cf:bd:93:d0:7f:
d8:7d:5b:88
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDAAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM4NTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERDMEYxMzUyNEQwNURB
QzIxQkY5NkU5QjlEMTk1MEJFRjA3RUJFRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJmhz+ZtvkvqSO1tT2/uRLUm5CT7Catyz52R2HMD/TIbHeHLHI
wfr2Y2iYGZY0D2jGazoDrQA4KIrjS91Rv0gHzFilQotG/Q6D9NxZ9WrOB1s0gONq
jdqCiFMPggN2gJLAFSqSp7jkTm0lGqsvr2VTUc6890LFsxHbnLT97SB8eokP6SJO
Pkkx+T6CcPSV2pRrGd7b/4QgGw9IxQPoymL8SLSafdx/zyTrUENwjUIz46KwIGfM
hFedmkki+SqJsroehBTZyksU6xz4pVB0NfRbQQ36mDOX6OJ45I952xh35xnoQR25
qsmPuUkdTckIpvbCYE8m23v033DO8u2BbDKjAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU3A8TUk0F2sIb+W6bnRlQvvB+vvAwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8zQThUVWswRjJzSWIt
VzZiblJsUXZ2Qi12dkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAlnTvMA0GCSqGSIb3DQEBCwUAA4IBAQAJYXfn77AEq0VNOIVTikeXkFR/1wPV
My0MTxtLNiS7FyQe682FlbIHmFTYAlAKKDL9nX3qT78ZlxUiKzgXsySsZMRhcT+d
uF21r1jkpAdsUFo6jBicipaYbB+NvwFpYCmGzMV5OkQpkSR45GMtqk8Z9FkAufUX
jJWvxJKfpv72tMuz0k915Ft44trtIVfeNpPzKcwBDy8AcZ82aWAKZT28UUcixm2s
diTzFGJ4Vuje6WBVwmXo5JIQQ4EoAbqk5yYrpKbgOBUBydz05VIFbYM0BJ2GlYKJ
Wk0tGV4ODiKpVZqLkWIM9KTR6BUDvG9Z8qfPJn5G0+fmz72T0H/YfVuI
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org