Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/55AY_irt4z1ZDfmLoHaf2MA3Yp0.roa
File: 55AY_irt4z1ZDfmLoHaf2MA3Yp0.roa (raw, json)
Hash identifier: wLpYf+e9BRmHWvuu1JRxnvwm1XXnB/lbrBVooOhMuQ4=
Subject key identifier: E7:90:18:FE:2A:ED:E3:3D:59:0D:F9:8B:A0:76:9F:D8:C0:37:62:9D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/55AY_irt4z1ZDfmLoHaf2MA3Yp0.roa
Signing time: Thu 15 Sep 2022 02:39:07 +0000
ROA not before: Thu 15 Sep 2022 02:39:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 150.117.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E79018FE2AEDE33D590DF98BA0769FD8C037629D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ee:29:bf:89:26:c7:56:82:28:4c:a0:6d:39:
b2:e3:0d:82:6d:d4:72:23:b6:0b:4b:20:a4:6a:f4:
21:e6:66:ac:29:66:20:cb:fa:7e:f3:36:4e:dd:ec:
eb:e3:74:74:09:0a:c8:2b:23:12:62:83:fc:19:1d:
4b:47:a4:82:27:1c:19:a9:8a:d4:b7:2c:8f:9b:32:
80:8c:6c:a2:c3:b0:98:5e:ec:2e:0b:e3:6c:dd:45:
f6:68:0a:f6:54:40:d9:f9:01:1a:51:f4:62:56:3d:
4b:0a:6d:d2:c0:a9:e7:b7:e9:15:49:d7:3c:48:1c:
ae:49:1b:0f:11:43:bf:7f:14:ae:ba:69:ed:0b:ed:
05:71:a6:cf:18:a9:66:f5:cf:38:b9:c3:0c:e9:a3:
07:cd:87:ee:0e:d2:ef:39:22:a7:8c:18:a8:4a:f5:
72:c9:8e:e1:17:f5:90:d5:e8:ef:e4:84:f0:8c:0b:
af:86:7c:c1:51:17:6c:4d:ab:36:fd:8c:d1:05:c3:
3e:f5:d3:76:30:50:a0:9f:68:a0:40:0c:c5:f8:c7:
0c:0d:5d:66:4c:96:b5:8e:7a:c1:51:d3:b8:43:4d:
35:b2:93:00:66:0e:0f:82:fc:75:5f:11:d3:d3:b4:
b8:f4:d6:19:09:5e:77:33:b0:d8:a8:7b:6a:3e:b1:
77:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:90:18:FE:2A:ED:E3:3D:59:0D:F9:8B:A0:76:9F:D8:C0:37:62:9D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/55AY_irt4z1ZDfmLoHaf2MA3Yp0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.128.0/19
Signature Algorithm: sha256WithRSAEncryption
8e:b0:eb:b9:70:76:c4:25:ff:0f:cd:46:f6:82:64:9f:42:11:
79:c3:c5:7f:c1:1e:7e:50:3c:23:0d:6b:a8:31:c8:20:60:bf:
f4:c0:45:a9:12:5f:75:32:11:80:c6:75:77:02:5b:84:75:dc:
eb:02:09:06:2b:6f:02:5b:0f:4a:2a:f9:6f:83:94:b0:e7:c3:
94:7d:19:8d:7e:80:45:99:a3:93:ff:cb:1e:56:a1:97:1b:84:
93:90:44:c7:5e:31:73:03:ae:bc:13:05:09:e7:2b:e0:97:3f:
72:54:5d:b8:bc:b7:bc:ba:bb:1a:b8:fe:95:db:90:90:61:2d:
23:ba:5a:13:6d:d9:f8:1f:c3:b8:39:4a:b5:9d:9d:94:e8:d0:
52:c2:ce:dd:5b:b1:9d:45:43:db:56:d9:36:bd:19:8a:cd:28:
71:e8:0c:8c:9e:43:c1:ed:65:57:a2:14:57:a5:9b:ad:95:cb:
ba:c0:b3:19:56:18:a0:71:f7:b1:0b:f5:44:37:5c:6a:c6:9b:
84:bb:9b:a4:15:54:c4:b0:30:67:9b:93:82:c4:fa:df:0a:b0:
4b:32:92:5d:9d:95:31:bb:0d:ff:80:e4:85:08:7d:81:7d:ea:
1b:5b:a4:06:ad:0d:6a:f9:bd:83:2e:37:09:0e:63:7e:80:91:
86:f7:68:93
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjA5MTUw
MjM5MDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU3OTAxOEZFMkFFREUz
M0Q1OTBERjk4QkEwNzY5RkQ4QzAzNzYyOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC97im/iSbHVoIoTKBtObLjDYJt1HIjtgtLIKRq9CHmZqwpZiDL
+n7zNk7d7OvjdHQJCsgrIxJig/wZHUtHpIInHBmpitS3LI+bMoCMbKLDsJhe7C4L
42zdRfZoCvZUQNn5ARpR9GJWPUsKbdLAqee36RVJ1zxIHK5JGw8RQ79/FK66ae0L
7QVxps8YqWb1zzi5wwzpowfNh+4O0u85IqeMGKhK9XLJjuEX9ZDV6O/khPCMC6+G
fMFRF2xNqzb9jNEFwz7103YwUKCfaKBADMX4xwwNXWZMlrWOesFR07hDTTWykwBm
Dg+C/HVfEdPTtLj01hkJXnczsNioe2o+sXfJAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU55AY/irt4z1ZDfmLoHaf2MA3Yp0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy81NUFZX2lydDR6MVpE
Zm1Mb0hhZjJNQTNZcDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQFlnWAMA0GCSqGSIb3DQEBCwUAA4IBAQCOsOu5cHbEJf8PzUb2gmSfQhF5w8V/
wR5+UDwjDWuoMcggYL/0wEWpEl91MhGAxnV3AluEddzrAgkGK28CWw9KKvlvg5Sw
58OUfRmNfoBFmaOT/8seVqGXG4STkETHXjFzA668EwUJ5yvglz9yVF24vLe8ursa
uP6V25CQYS0juloTbdn4H8O4OUq1nZ2U6NBSws7dW7GdRUPbVtk2vRmKzShx6AyM
nkPB7WVXohRXpZutlcu6wLMZVhigcfexC/VEN1xqxpuEu5ukFVTEsDBnm5OCxPrf
CrBLMpJdnZUxuw3/gOSFCH2BfeobW6QGrQ1q+b2DLjcJDmN+gJGG92iT
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:25 2025 by rpki-client