Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4ZQUzCeCaYH7yJIlx55qjvepjs8.roa
File: 4ZQUzCeCaYH7yJIlx55qjvepjs8.roa (raw, json)
Hash identifier: vqSaN77hvS8FcSdEepz/GZKW6opPnT37oLT9nE+IDS8=
Subject key identifier: E1:94:14:CC:27:82:69:81:FB:C8:92:25:C7:9E:6A:8E:F7:A9:8E:CF
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DE0
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4ZQUzCeCaYH7yJIlx55qjvepjs8.roa
Signing time: Thu 29 Dec 2022 09:31:58 +0000
ROA not before: Thu 29 Dec 2022 09:31:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3552 (0xde0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E19414CC27826981FBC89225C79E6A8EF7A98ECF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:98:0e:be:93:b0:57:51:a0:b1:c4:b8:38:b2:
24:a8:a5:a6:83:9a:bf:33:e6:83:ed:35:7f:3a:52:
b3:52:4b:9a:88:72:c3:87:e1:d6:68:b4:7e:7e:50:
c6:af:ee:58:15:83:70:c9:03:3d:c4:37:c0:c6:a9:
a1:4b:cb:92:65:ef:a6:cd:04:6b:7d:4c:eb:24:f8:
d3:dc:90:cd:be:7a:7a:09:97:a2:ea:d6:d8:f5:0d:
c0:7d:5a:17:a4:37:58:98:37:33:d1:a5:a8:bd:cf:
74:51:50:86:dc:a8:b7:79:5c:9f:80:a9:58:78:19:
48:74:10:23:9b:24:e1:a6:e1:1c:9b:9d:d0:92:9f:
2c:0d:9a:f9:7e:62:8b:bd:5c:bb:15:2f:54:12:dd:
ae:c9:c3:e8:f4:2d:a0:8b:7a:5c:72:f5:4a:1f:da:
70:f2:94:66:1b:c2:df:b1:a9:41:3d:90:03:93:41:
c5:8e:c2:08:6c:8b:86:d6:1e:d5:38:ef:b4:6e:88:
50:0f:d6:f2:f1:16:a4:00:b6:c4:f2:1b:a9:b0:d0:
7e:26:51:63:b7:8f:76:2c:8f:32:30:a8:02:ed:3d:
6c:eb:22:ff:4e:90:65:33:bb:bb:40:74:e5:b7:32:
b4:79:bb:02:8d:fc:cf:e9:53:51:9a:fd:64:9c:22:
90:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:94:14:CC:27:82:69:81:FB:C8:92:25:C7:9E:6A:8E:F7:A9:8E:CF
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4ZQUzCeCaYH7yJIlx55qjvepjs8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.224.0/21
Signature Algorithm: sha256WithRSAEncryption
72:6a:19:33:7a:f7:7e:1e:75:b0:d9:eb:45:e9:63:bd:60:5f:
67:67:53:23:88:eb:27:12:b5:31:4f:df:76:33:6c:d2:11:58:
9e:3e:63:71:30:ef:a2:40:68:8e:b3:dd:91:5a:23:41:15:26:
0a:7f:60:ea:81:89:97:ea:1d:ee:09:9a:94:1f:d3:01:3e:95:
26:b0:f0:90:ab:e9:32:23:d1:94:0f:82:af:62:87:ad:27:39:
f8:cc:36:7c:c7:9d:08:06:54:17:04:44:92:ae:1b:eb:44:ef:
65:e8:18:fa:ea:42:0b:c5:19:23:0b:7e:ed:13:fe:99:f6:50:
40:f1:01:b3:32:a8:55:7b:b1:09:8d:79:af:57:67:c6:db:46:
7c:58:84:fd:fe:7a:97:db:1c:51:12:2f:dd:95:b9:98:22:5f:
85:1d:2a:72:3a:a3:52:fc:b6:02:68:19:07:59:ba:be:4b:4e:
96:1d:50:5b:4c:6f:c5:f2:49:7c:31:2e:d7:b0:fa:84:f3:c8:
b0:c8:d4:45:cf:95:f0:e5:6e:7d:55:84:0e:b2:75:52:96:75:
88:80:a4:d6:6a:3f:99:85:f3:78:c2:f9:a2:90:bd:1a:7f:cf:
83:8e:f5:5f:6a:15:ef:14:c3:de:5e:58:08:4a:62:5c:64:39:
18:45:41:d8
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDeAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMxNThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEUxOTQxNENDMjc4MjY5
ODFGQkM4OTIyNUM3OUU2QThFRjdBOThFQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGmA6+k7BXUaCxxLg4siSopaaDmr8z5oPtNX86UrNSS5qIcsOH
4dZotH5+UMav7lgVg3DJAz3EN8DGqaFLy5Jl76bNBGt9TOsk+NPckM2+enoJl6Lq
1tj1DcB9WhekN1iYNzPRpai9z3RRUIbcqLd5XJ+AqVh4GUh0ECObJOGm4RybndCS
nywNmvl+You9XLsVL1QS3a7Jw+j0LaCLelxy9Uof2nDylGYbwt+xqUE9kAOTQcWO
wghsi4bWHtU477RuiFAP1vLxFqQAtsTyG6mw0H4mUWO3j3YsjzIwqALtPWzrIv9O
kGUzu7tAdOW3MrR5uwKN/M/pU1Ga/WScIpDVAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU4ZQUzCeCaYH7yJIlx55qjvepjs8wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy80WlFVekNlQ2FZSDd5
SklseDU1cWp2ZXBqczgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDlnTgMA0GCSqGSIb3DQEBCwUAA4IBAQByahkzevd+HnWw2etF6WO9YF9nZ1Mj
iOsnErUxT992M2zSEViePmNxMO+iQGiOs92RWiNBFSYKf2DqgYmX6h3uCZqUH9MB
PpUmsPCQq+kyI9GUD4KvYoetJzn4zDZ8x50IBlQXBESSrhvrRO9l6Bj66kILxRkj
C37tE/6Z9lBA8QGzMqhVe7EJjXmvV2fG20Z8WIT9/nqX2xxREi/dlbmYIl+FHSpy
OqNS/LYCaBkHWbq+S06WHVBbTG/F8kl8MS7XsPqE88iwyNRFz5Xw5W59VYQOsnVS
lnWIgKTWaj+ZhfN4wvmikL0af8+DjvVfahXvFMPeXlgISmJcZDkYRUHY
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:55 2025 by rpki-client