Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4O2gHmy1VeqOznldHoZ-137pkOY.roa
File: 4O2gHmy1VeqOznldHoZ-137pkOY.roa (raw, json)
Hash identifier: VlUxGLWqeDDNmy7YPzi1TVDtAQYFs32RR+bRzNTj448=
Subject key identifier: E0:ED:A0:1E:6C:B5:55:EA:8E:CE:79:5D:1E:86:7E:D7:7E:E9:90:E6
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F73
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4O2gHmy1VeqOznldHoZ-137pkOY.roa
Signing time: Fri 01 Sep 2023 08:29:09 +0000
ROA not before: Fri 01 Sep 2023 08:29:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131607
IP address blocks: 150.117.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3955 (0xf73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E0EDA01E6CB555EA8ECE795D1E867ED77EE990E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b9:64:19:c2:eb:41:59:1b:9b:de:4a:29:66:
43:c6:cd:47:d5:b8:70:e6:4c:46:51:9b:16:97:9b:
b2:13:f8:7c:00:ee:99:de:3e:2d:9e:8f:b8:05:8d:
e0:39:45:09:d4:2e:b6:58:20:8f:3b:e9:a0:e1:27:
5b:b2:4f:bb:c2:c8:19:f4:7b:91:e0:87:c8:fb:80:
45:cd:2a:89:39:0c:7e:72:ba:84:91:59:7f:e1:cb:
d9:64:0d:ba:3f:3c:0b:93:ae:c7:31:e7:5e:5d:71:
29:93:af:b2:6e:fc:96:1f:0e:2f:27:37:e9:4d:17:
ce:6c:e2:bc:98:49:e0:66:36:8e:73:62:41:35:43:
1e:c6:c9:e0:cf:87:d2:ce:ea:48:24:59:cb:7f:d5:
64:b8:46:97:77:0d:a4:f5:99:42:c4:c7:5e:6e:9b:
58:b3:40:bf:c1:04:12:6c:3f:52:f8:c7:df:7d:ec:
22:22:80:f2:03:3a:31:63:0e:a7:c5:7a:69:29:bd:
6d:41:40:9d:ec:78:37:c3:28:ac:98:b7:d1:1d:1c:
7e:da:62:d9:1e:fe:09:21:33:04:54:dc:8e:18:79:
72:34:96:ce:66:a6:79:cf:c9:c0:d8:0b:85:0b:be:
09:94:69:34:03:de:a0:53:c4:bc:bb:25:9d:95:ca:
c9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:ED:A0:1E:6C:B5:55:EA:8E:CE:79:5D:1E:86:7E:D7:7E:E9:90:E6
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4O2gHmy1VeqOznldHoZ-137pkOY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.192.0/20
Signature Algorithm: sha256WithRSAEncryption
3d:64:2a:a3:0a:fe:3f:30:7c:f4:64:c8:1c:26:64:96:2a:dd:
63:22:b8:ec:ee:8e:7a:1e:1d:78:2b:40:9b:ae:1a:39:f3:49:
25:20:af:94:e4:32:5e:9b:49:3d:68:f1:c0:6e:42:25:07:f6:
7b:4d:44:fe:9a:69:f9:36:1f:32:db:92:e3:02:a0:ff:09:18:
b0:77:91:34:bb:0c:cd:ca:20:9c:a6:69:50:50:98:b7:a2:45:
df:8c:3e:72:ec:f3:7a:8a:98:b3:fb:f1:c9:ae:e9:1a:84:0f:
f6:5e:0b:e9:bf:7b:f9:43:ac:69:5f:2f:e6:dd:ef:bd:d1:f0:
06:58:71:3a:ec:9a:62:d2:b6:e7:40:43:29:df:cd:10:84:ce:
2a:b9:4e:55:1d:e7:2a:28:ef:1f:31:69:f0:45:a3:88:bf:2d:
b8:e0:cb:a2:e9:0d:43:2a:0d:81:71:1b:be:14:78:73:69:14:
5d:27:f7:c2:0e:d3:cd:26:87:78:a5:fa:ec:9f:52:86:3e:91:
73:6a:eb:44:a0:68:ca:23:06:38:84:28:a3:7b:07:37:76:bb:
43:06:9c:3d:07:4e:f7:6a:de:df:17:48:09:eb:44:d0:46:a5:
29:be:38:71:a6:54:77:0b:55:17:77:2c:18:94:ba:c7:45:a8:
aa:d6:02:44
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICD3MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw
ODI5MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEUwRURBMDFFNkNCNTU1
RUE4RUNFNzk1RDFFODY3RUQ3N0VFOTkwRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTuWQZwutBWRub3kopZkPGzUfVuHDmTEZRmxaXm7IT+HwA7pne
Pi2ej7gFjeA5RQnULrZYII876aDhJ1uyT7vCyBn0e5Hgh8j7gEXNKok5DH5yuoSR
WX/hy9lkDbo/PAuTrscx515dcSmTr7Ju/JYfDi8nN+lNF85s4ryYSeBmNo5zYkE1
Qx7GyeDPh9LO6kgkWct/1WS4Rpd3DaT1mULEx15um1izQL/BBBJsP1L4x9997CIi
gPIDOjFjDqfFemkpvW1BQJ3seDfDKKyYt9EdHH7aYtke/gkhMwRU3I4YeXI0ls5m
pnnPycDYC4ULvgmUaTQD3qBTxLy7JZ2Vysk/AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU4O2gHmy1VeqOznldHoZ+137pkOYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy80TzJnSG15MVZlcU96
bmxkSG9aLTEzN3BrT1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQElnXAMA0GCSqGSIb3DQEBCwUAA4IBAQA9ZCqjCv4/MHz0ZMgcJmSWKt1jIrjs
7o56Hh14K0Cbrho580klIK+U5DJem0k9aPHAbkIlB/Z7TUT+mmn5Nh8y25LjAqD/
CRiwd5E0uwzNyiCcpmlQUJi3okXfjD5y7PN6ipiz+/HJrukahA/2Xgvpv3v5Q6xp
Xy/m3e+90fAGWHE67Jpi0rbnQEMp380QhM4quU5VHecqKO8fMWnwRaOIvy244Mui
6Q1DKg2BcRu+FHhzaRRdJ/fCDtPNJod4pfrsn1KGPpFzautEoGjKIwY4hCijewc3
drtDBpw9B073at7fF0gJ60TQRqUpvjhxplR3C1UXdywYlLrHRaiq1gJE
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:46:55 2025 by rpki-client