Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4BbwRsp--9dONZB660Sxza49Rhk.roa
File: 4BbwRsp--9dONZB660Sxza49Rhk.roa (raw, json)
Hash identifier: YXRJ9GHYgw4VUywPHz6lyLrGSs4eoYTnzVSd/nte6mo=
Subject key identifier: E0:16:F0:46:CA:7E:FB:D7:4E:35:90:7A:EB:44:B1:CD:AE:3D:46:19
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4BbwRsp--9dONZB660Sxza49Rhk.roa
Signing time: Thu 15 Sep 2022 02:38:57 +0000
ROA not before: Thu 15 Sep 2022 02:38:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131273
IP address blocks: 150.116.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:38:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E016F046CA7EFBD74E35907AEB44B1CDAE3D4619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:13:8f:70:44:5a:0e:76:ce:32:d1:1d:72:6f:
4e:2a:25:ac:11:e1:cc:cc:3c:de:5b:29:a2:9c:8a:
b9:12:93:e8:84:06:37:6e:ea:7d:e2:48:ce:c1:a4:
77:df:d4:e6:8c:a2:52:f1:f6:1b:a3:c2:fe:5c:50:
df:38:93:54:46:a0:9a:39:74:71:11:83:c5:77:be:
98:77:5d:98:96:73:98:6f:7b:46:c6:50:5b:65:4a:
5c:37:06:b7:19:12:53:b0:da:92:1c:bc:b6:c2:da:
fa:f1:90:54:89:e7:7d:b4:56:f6:13:e5:17:3c:f3:
27:e0:bd:f6:45:fa:bb:e7:e1:63:91:87:e7:c0:fb:
b8:bb:5c:07:25:c9:95:69:8c:42:06:cd:c3:06:c7:
2f:c8:89:ac:4e:fe:97:b9:da:b4:e9:65:0f:4b:b1:
ae:c4:00:7d:bc:ff:37:58:ec:1f:78:75:53:d1:aa:
d4:1c:f4:e0:06:fd:da:10:d6:05:d4:8e:13:2b:ad:
21:9f:76:f1:00:7e:22:2a:2c:86:b2:c9:5d:96:d8:
30:db:36:d9:11:36:9a:6d:24:19:b0:79:44:b0:4d:
1b:2a:9e:01:1c:18:46:09:10:4b:44:90:b5:bc:e6:
ab:f9:10:35:0a:91:41:b8:54:30:77:8f:8d:e5:f9:
fd:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:16:F0:46:CA:7E:FB:D7:4E:35:90:7A:EB:44:B1:CD:AE:3D:46:19
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4BbwRsp--9dONZB660Sxza49Rhk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.53.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:7f:31:58:50:d9:65:84:ca:03:14:e6:6f:7b:05:cf:13:98:
bf:97:9c:34:1d:dd:72:b0:ba:9e:bb:18:b9:ff:a0:d5:a7:dd:
9d:dd:c3:df:28:a1:13:b4:bd:2c:18:4c:1e:41:17:7e:20:ca:
45:fc:8c:5c:1c:46:ce:a8:19:b6:fa:7c:8f:55:68:d0:4b:c2:
59:69:e7:3c:ba:52:da:62:6b:e4:90:4e:8f:29:99:de:c2:a1:
12:67:5c:08:63:15:15:9d:65:a9:1c:17:8d:0d:b2:a3:e4:e9:
c4:63:29:7b:09:35:7f:2a:33:bb:f8:2c:29:5d:d5:ae:40:65:
6a:3a:e2:50:51:f2:61:81:50:6a:ea:9c:93:58:c3:ff:2a:27:
94:ce:c2:18:1b:51:ec:bb:a7:d6:a3:f7:91:e4:07:c1:f4:11:
2b:e1:7d:ff:5d:22:51:7e:3e:fd:93:41:16:6c:aa:69:2f:c1:
20:2f:31:ca:a6:46:46:e3:be:9a:12:2e:20:d4:57:ee:33:8a:
35:c4:bf:a5:5f:af:25:8a:02:94:73:17:97:e5:88:31:7a:b7:
14:fd:15:52:b4:44:c7:42:ea:05:1a:4f:60:bc:e5:bd:3b:35:
72:55:e1:fb:cc:c3:b1:8a:b5:30:49:43:d3:06:98:32:cd:6e:
51:70:20:73
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjA5MTUw
MjM4NTdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEUwMTZGMDQ2Q0E3RUZC
RDc0RTM1OTA3QUVCNDRCMUNEQUUzRDQ2MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCYE49wRFoOds4y0R1yb04qJawR4czMPN5bKaKcirkSk+iEBjdu
6n3iSM7BpHff1OaMolLx9hujwv5cUN84k1RGoJo5dHERg8V3vph3XZiWc5hve0bG
UFtlSlw3BrcZElOw2pIcvLbC2vrxkFSJ5320VvYT5Rc88yfgvfZF+rvn4WORh+fA
+7i7XAclyZVpjEIGzcMGxy/IiaxO/pe52rTpZQ9Lsa7EAH28/zdY7B94dVPRqtQc
9OAG/doQ1gXUjhMrrSGfdvEAfiIqLIayyV2W2DDbNtkRNpptJBmweUSwTRsqngEc
GEYJEEtEkLW85qv5EDUKkUG4VDB3j43l+f1tAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU4BbwRsp++9dONZB660Sxza49RhkwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy80QmJ3UnNwLS05ZE9O
WkI2NjBTeHphNDlSaGsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAlnQ1MA0GCSqGSIb3DQEBCwUAA4IBAQAdfzFYUNllhMoDFOZvewXPE5i/l5w0
Hd1ysLqeuxi5/6DVp92d3cPfKKETtL0sGEweQRd+IMpF/IxcHEbOqBm2+nyPVWjQ
S8JZaec8ulLaYmvkkE6PKZnewqESZ1wIYxUVnWWpHBeNDbKj5OnEYyl7CTV/KjO7
+CwpXdWuQGVqOuJQUfJhgVBq6pyTWMP/KieUzsIYG1Hsu6fWo/eR5AfB9BEr4X3/
XSJRfj79k0EWbKppL8EgLzHKpkZG476aEi4g1FfuM4o1xL+lX68ligKUcxeX5Ygx
ercU/RVStETHQuoFGk9gvOW9OzVyVeH7zMOxirUwSUPTBpgyzW5RcCBz
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:40 2025 by rpki-client