Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4Oyn4TiwSXK3a8Lfr94zZ4pz2OI.roa
File: 4Oyn4TiwSXK3a8Lfr94zZ4pz2OI.roa (raw, json)
Hash identifier: fIWA2k1LTlBdyVlcgYNW2I0WuD6aiPPqEi7qhQ9VLho=
Subject key identifier: E0:EC:A7:E1:38:B0:49:72:B7:6B:C2:DF:AF:DE:33:67:8A:73:D8:E2
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4Oyn4TiwSXK3a8Lfr94zZ4pz2OI.roa
Signing time: Thu 15 Sep 2022 02:39:11 +0000
ROA not before: Thu 15 Sep 2022 02:39:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E0ECA7E138B04972B76BC2DFAFDE33678A73D8E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:01:7c:13:d6:55:f4:cf:ce:b4:95:dc:d6:e7:
8c:3a:fc:05:fb:08:78:b0:9e:75:b1:1d:37:7b:9a:
35:0f:53:f6:df:e6:56:1b:19:6b:c0:c9:ab:8b:8e:
99:3f:6f:c1:ef:3b:34:d5:a8:33:a1:51:05:69:a2:
04:97:07:a1:1a:88:0f:80:00:ed:5b:c1:a3:1b:b1:
46:39:0f:70:36:55:d9:32:ad:19:b2:f4:3d:5c:67:
87:de:a4:a6:2f:c8:d9:38:af:2b:4a:af:3c:8e:0b:
6b:97:d6:33:9f:80:94:1a:f4:49:cf:6e:39:b8:15:
2c:4e:6a:4f:07:d9:2c:57:b2:fd:06:e7:2f:a4:85:
1b:e6:50:06:82:6f:f0:cc:10:bf:bd:4a:5e:a1:b6:
d7:39:27:b8:b9:35:49:f8:06:92:a6:0b:ce:54:1c:
cf:4c:ee:d6:a0:b0:f8:a5:61:0b:96:23:4b:cf:74:
0d:0f:cf:11:a4:cd:48:85:65:10:83:4a:44:a0:9a:
4c:f6:76:33:d1:52:c1:f2:98:67:27:e2:c5:4f:9a:
2f:3f:54:6a:a9:21:1d:d9:70:b1:80:ff:fa:54:74:
d3:b1:d9:68:62:bb:59:2e:d4:fa:38:bd:d1:42:34:
76:eb:d4:63:8e:cf:1f:05:b4:e4:a3:7b:3f:c8:82:
3e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:EC:A7:E1:38:B0:49:72:B7:6B:C2:DF:AF:DE:33:67:8A:73:D8:E2
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4Oyn4TiwSXK3a8Lfr94zZ4pz2OI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.172.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:d9:6a:dd:c2:23:12:52:0c:24:57:bb:21:89:cb:1a:09:05:
6c:7c:9c:c4:02:fb:72:e7:7f:1c:4a:ff:df:f7:23:7a:2c:d4:
07:71:06:e9:55:e7:98:01:08:39:a0:f8:b8:50:e6:1a:84:ee:
92:76:67:af:1e:55:b8:4e:78:b8:6d:f0:40:82:e2:fe:c3:f6:
13:90:2d:4d:bc:05:b7:32:19:3a:3d:6c:ae:ef:3f:31:49:fa:
f5:98:26:3c:34:4e:30:38:d3:f3:96:4c:2a:4a:36:ec:b8:d5:
82:a6:0c:74:24:a6:27:8b:0a:1e:6f:9a:4e:84:3a:a0:ea:81:
b7:03:80:34:54:b5:41:b7:36:07:9c:03:d0:10:39:96:ab:ff:
ef:f5:aa:0f:7c:43:34:2d:c5:35:45:7a:b7:0b:c3:05:37:2d:
a3:0e:1f:9b:cb:d9:ac:46:8a:83:53:2f:15:43:c2:59:48:cd:
15:06:65:49:ad:04:0b:9d:f7:0f:28:24:dc:14:c8:af:04:6c:
d8:49:25:6f:71:a6:cf:a8:9c:1b:c8:f2:76:41:e1:77:94:cf:
f2:6f:8c:4d:02:9d:9b:20:3b:0d:de:8a:38:94:dc:17:f7:03:
60:b9:b6:da:92:66:ac:b1:7b:42:de:55:cd:4b:6f:6e:8e:c3:
e9:2c:96:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:59 2025 by rpki-client