Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/43k64PII6Umt5NxfNIZXJfnPFVo.roa
File: 43k64PII6Umt5NxfNIZXJfnPFVo.roa (raw, json)
Hash identifier: GhI+FLxSXuRzXZV4zAmVP4AjAgPCwrIcM9PGuKjqBro=
Subject key identifier: E3:79:3A:E0:F2:08:E9:49:AD:E4:DC:5F:34:86:57:25:F9:CF:15:5A
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/43k64PII6Umt5NxfNIZXJfnPFVo.roa
Signing time: Thu 15 Sep 2022 02:39:14 +0000
ROA not before: Thu 15 Sep 2022 02:39:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 150.117.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E3793AE0F208E949ADE4DC5F34865725F9CF155A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:83:27:dc:48:d6:2e:c6:b2:02:24:c5:a8:9a:
83:14:b6:ac:8e:d0:fa:aa:dd:c1:9a:e5:a7:a6:43:
af:c8:ef:e4:f1:e8:8f:ea:2b:86:bc:7e:14:c5:b6:
6f:fb:c7:40:29:91:50:b4:f4:10:ca:50:ee:c3:38:
ca:c7:97:0c:74:0f:ec:e2:1c:75:b7:92:28:77:66:
7d:3b:3b:a9:5f:e3:d8:42:68:73:a0:40:28:0c:5b:
1f:04:93:09:75:a0:08:01:6b:b3:23:f3:28:5b:61:
18:13:55:81:74:1a:be:93:ab:5d:62:d3:c9:93:0b:
10:74:a3:d1:86:53:d3:9e:55:00:0f:fb:ff:be:9a:
26:7a:77:8f:8c:d5:13:f2:25:95:86:a4:40:47:dc:
ae:d7:cb:73:21:37:cd:6d:fb:30:8a:d7:ca:d1:50:
0c:63:b5:b9:6f:3a:6e:22:a5:ff:bc:3e:43:74:a4:
a3:2a:49:8b:e6:e9:80:46:bf:d9:64:42:4b:e4:79:
45:45:29:34:d6:5f:5a:f3:8e:80:cf:f6:bd:36:af:
09:f5:55:95:56:fe:81:9e:6f:bb:f9:c3:fa:54:25:
89:aa:83:04:40:ef:0b:19:3e:9d:0f:af:20:c6:51:
da:34:eb:0f:78:51:bc:5d:a7:e7:f5:14:8b:a2:c3:
8d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:79:3A:E0:F2:08:E9:49:AD:E4:DC:5F:34:86:57:25:F9:CF:15:5A
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/43k64PII6Umt5NxfNIZXJfnPFVo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.56.0/21
Signature Algorithm: sha256WithRSAEncryption
ac:f1:6a:c6:1b:9b:75:6e:d1:23:78:b2:80:ef:36:13:e3:aa:
36:17:ee:2f:7d:0a:93:01:d6:da:da:d2:99:48:c8:5f:0a:34:
7f:66:34:b2:55:fa:31:be:97:de:38:25:d2:f2:ad:a6:85:57:
5f:9c:dd:bc:43:bf:77:d6:d7:cb:0c:54:ca:64:bb:2e:13:60:
eb:31:f0:4a:3b:e5:e9:05:88:90:d6:42:77:ef:7f:44:1a:1b:
6d:35:1f:04:33:4f:25:a3:a8:82:78:a6:d6:80:4c:6d:c1:19:
93:34:6b:33:ee:1d:fb:66:39:e4:50:47:a7:b4:d4:0d:ae:eb:
9f:53:15:15:b8:5d:7c:1b:7a:c9:04:98:26:5a:56:99:58:6c:
18:08:3d:20:6b:a1:1d:dd:12:ab:31:ed:cf:fc:82:07:e9:b5:
9f:3f:fc:29:31:50:57:fd:24:d7:00:0f:17:d2:44:01:06:19:
c6:47:b8:48:bf:48:e0:34:c4:8b:3e:f1:79:d1:ac:8e:4f:09:
36:33:e1:6b:39:5a:ec:40:f9:2b:73:d5:48:fb:b8:98:7c:42:
8d:33:22:db:47:39:b2:00:a6:f9:5e:97:e1:b2:27:ab:ea:db:
eb:5b:2c:3a:61:59:c0:58:1e:fd:c3:cd:5e:ff:b1:fc:11:48:
b0:0e:12:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:03 2025 by rpki-client