Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4lLOQfbKFkAor_XNBnAH33Pmy7Y.roa
File: 4lLOQfbKFkAor_XNBnAH33Pmy7Y.roa (raw, json)
Hash identifier: HeaRhWJ2bD3Y+IYMv2QVNBkJuRc3Eo38w3DOcc1rJHk=
Subject key identifier: E2:52:CE:41:F6:CA:16:40:28:AF:F5:CD:06:70:07:DF:73:E6:CB:B6
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0878
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4lLOQfbKFkAor_XNBnAH33Pmy7Y.roa
Signing time: Tue 29 Sep 2020 10:02:29 +0000
ROA not before: Tue 29 Sep 2020 10:02:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131607
IP address blocks: 150.117.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2168 (0x878)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E252CE41F6CA164028AFF5CD067007DF73E6CBB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4c:77:93:32:10:d8:ca:30:bd:ff:13:07:93:
8d:d4:5b:e5:1f:cf:36:7b:91:d9:f3:82:c8:fe:a1:
8b:e7:e1:b6:18:77:ea:65:5e:f1:c9:c0:74:47:b1:
37:a7:7c:72:10:7f:1d:1e:de:34:6f:32:fb:e4:e3:
c1:22:80:0a:f8:dd:48:74:e7:7f:80:f2:5a:c5:23:
20:22:6b:8d:46:75:2d:9e:09:02:32:34:b0:21:31:
5b:2b:c4:35:3e:f5:10:4b:a3:8d:29:81:42:d7:d4:
b2:7b:59:b7:05:6c:ca:9e:e5:58:05:e9:f0:c0:90:
15:34:50:7d:15:ea:dd:11:c2:2a:ef:b1:32:44:86:
04:06:00:15:95:85:0d:78:1f:4b:ea:63:be:8a:31:
74:0f:33:76:f4:15:18:69:27:b9:3e:1b:37:c7:7f:
4b:38:df:60:9d:c8:2b:ba:a1:aa:e3:a9:b3:f0:71:
56:31:5e:75:99:6e:ba:87:a6:e6:06:af:d0:36:2c:
8d:81:14:16:8e:f0:08:7d:08:85:ee:9a:40:4f:c5:
ed:e5:3e:00:94:c9:53:47:a7:e7:5b:fc:de:6c:44:
1f:ac:67:ba:4e:4d:01:80:1b:b0:38:96:3f:3c:b5:
a9:86:04:f6:1b:fd:de:8a:88:9f:32:31:92:ba:58:
62:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:52:CE:41:F6:CA:16:40:28:AF:F5:CD:06:70:07:DF:73:E6:CB:B6
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4lLOQfbKFkAor_XNBnAH33Pmy7Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.192.0/20
Signature Algorithm: sha256WithRSAEncryption
99:4f:16:ad:0a:86:53:45:f2:33:8a:0b:2f:55:9d:91:0a:72:
57:7b:ae:a6:1d:5a:92:98:50:82:63:c1:80:9d:b0:a9:fc:38:
3a:b4:31:14:2d:70:72:ee:a7:f2:81:32:57:59:9a:df:ce:7c:
a0:60:5d:7e:cc:63:b7:9c:f8:0f:28:bc:d5:80:7b:a8:63:cd:
ee:71:2e:16:43:5c:20:fe:9b:e3:0d:77:a0:50:aa:22:81:ed:
01:59:e3:89:90:d7:d2:67:a8:f9:12:7c:6a:ca:32:9d:56:04:
70:6b:e3:3b:09:7f:83:e8:bd:2c:dc:f0:4e:9b:38:bd:e3:d5:
12:e8:ae:f0:59:a2:e5:1b:01:c3:52:de:3d:11:f0:41:be:a7:
71:00:75:3e:f5:6f:65:b9:2f:1b:af:1b:b0:b3:74:4f:bd:85:
25:f9:a7:c1:e1:5d:cd:f1:37:a5:f7:5c:d3:78:46:ae:c3:e0:
d1:3c:8b:1e:75:c7:57:e6:91:56:0d:53:ce:c1:73:d7:2b:4d:
ea:cc:ee:12:7a:6e:43:83:c3:7f:2a:4d:b2:f9:ef:00:1c:8a:
f8:c0:52:a4:62:05:b7:d9:87:75:e1:df:cd:31:90:7f:bb:ae:
84:a2:64:c1:e3:32:d3:43:2a:6e:3d:66:b1:89:a3:99:6e:c4:
85:ba:08:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:16 2025 by rpki-client