Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6YUnJ1k2dRo1VKghBISIvl4gh2A.roa
File: 6YUnJ1k2dRo1VKghBISIvl4gh2A.roa (raw, json)
Hash identifier: PYomlbi1l3YpIBM9iRhI+jynCxA/aS80KWdUWYTTHMw=
Subject key identifier: E9:85:27:27:59:36:75:1A:35:54:A8:21:04:84:88:BE:5E:20:87:60
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6YUnJ1k2dRo1VKghBISIvl4gh2A.roa
Signing time: Thu 15 Sep 2022 02:39:10 +0000
ROA not before: Thu 15 Sep 2022 02:39:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 119.31.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E98527275936751A3554A821048488BE5E208760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:56:fd:fb:96:b6:26:50:59:ec:ba:fc:56:fa:
e7:e4:8f:e9:58:33:22:fb:bc:96:5a:9d:1a:d9:4c:
d0:8f:1b:e0:64:90:ff:62:77:02:65:da:2c:18:2e:
f3:51:1a:0d:19:17:33:1f:5e:84:ac:c9:04:84:ce:
d8:75:ab:86:8f:63:ed:03:0e:01:92:85:13:08:d2:
ad:2d:45:7a:79:6e:ff:ca:9e:d9:97:3f:73:eb:34:
78:61:b0:56:51:20:15:3e:d7:15:c9:7d:3d:d4:97:
fd:f5:3d:f7:f7:3a:36:db:60:1c:b9:a8:44:11:53:
4f:d5:9f:93:00:89:27:bf:fb:63:91:72:36:5f:43:
2f:6e:d3:8e:f2:ef:dc:dd:bb:1e:21:dc:7a:b0:78:
d6:90:6a:ee:d1:ef:ea:53:0b:45:88:44:24:1c:83:
db:64:44:85:2f:57:d2:a9:fb:5b:90:29:b6:5b:5b:
ac:bf:4e:70:cd:9c:cd:e8:4e:af:bf:4f:66:c9:e2:
29:7a:1c:70:ba:93:54:9a:b0:41:af:cd:d0:12:3e:
43:4d:a7:0b:14:84:d0:34:a4:45:5c:5e:10:1b:95:
6d:38:ac:45:93:34:e1:5f:e9:d9:ff:df:da:38:19:
2c:64:04:f0:c1:91:d5:38:9f:4b:9a:77:78:d4:12:
8f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:85:27:27:59:36:75:1A:35:54:A8:21:04:84:88:BE:5E:20:87:60
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6YUnJ1k2dRo1VKghBISIvl4gh2A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.31.176.0/20
Signature Algorithm: sha256WithRSAEncryption
18:54:38:73:59:d5:e1:f4:7c:1f:41:76:7c:55:80:58:3e:cb:
b2:33:b1:8c:f2:3b:56:bb:35:40:55:c1:29:a9:6e:88:aa:3f:
57:14:2e:46:d1:30:70:3f:1d:7d:a7:d1:ea:66:b4:dd:20:36:
71:0f:52:d3:b9:f4:db:c6:c9:d1:01:67:e8:b5:f5:15:07:a4:
03:73:ab:67:7d:9a:53:6a:98:1d:35:5b:d2:4c:c5:1f:49:43:
80:33:c5:26:41:31:0d:8a:0d:76:ea:22:05:b2:75:68:58:2c:
42:49:3f:05:a0:eb:fe:c4:b5:29:6a:52:0e:a7:46:8e:bc:05:
11:44:44:6a:b7:00:65:f4:90:5b:e5:73:4a:d3:70:9b:1c:0f:
68:e0:05:b2:b2:4f:90:e5:2a:a2:bc:df:ed:a5:13:1a:11:e4:
4d:a9:10:68:c2:c8:af:65:7a:8a:4a:76:01:7d:92:ec:6f:b8:
25:63:e3:63:29:dd:20:43:37:24:cd:65:eb:a8:3e:1a:ab:35:
87:fe:22:e5:77:0e:fe:12:75:1c:6d:9f:3e:ef:54:53:f5:4e:
c8:59:16:4f:30:4d:49:28:75:25:2e:4f:46:67:64:4b:3e:f9:
f6:b1:bf:bc:5e:69:5f:85:df:c9:bf:e9:86:88:aa:c5:b7:ec:
a3:b0:9c:83
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjA5MTUw
MjM5MTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU5ODUyNzI3NTkzNjc1
MUEzNTU0QTgyMTA0ODQ4OEJFNUUyMDg3NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDXVv37lrYmUFnsuvxW+ufkj+lYMyL7vJZanRrZTNCPG+BkkP9i
dwJl2iwYLvNRGg0ZFzMfXoSsyQSEzth1q4aPY+0DDgGShRMI0q0tRXp5bv/KntmX
P3PrNHhhsFZRIBU+1xXJfT3Ul/31Pff3OjbbYBy5qEQRU0/Vn5MAiSe/+2ORcjZf
Qy9u047y79zdux4h3HqweNaQau7R7+pTC0WIRCQcg9tkRIUvV9Kp+1uQKbZbW6y/
TnDNnM3oTq+/T2bJ4il6HHC6k1SasEGvzdASPkNNpwsUhNA0pEVcXhAblW04rEWT
NOFf6dn/39o4GSxkBPDBkdU4n0uad3jUEo+NAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU6YUnJ1k2dRo1VKghBISIvl4gh2AwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy82WVVuSjFrMmRSbzFW
S2doQklTSXZsNGdoMkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQEdx+wMA0GCSqGSIb3DQEBCwUAA4IBAQAYVDhzWdXh9HwfQXZ8VYBYPsuyM7GM
8jtWuzVAVcEpqW6Iqj9XFC5G0TBwPx19p9HqZrTdIDZxD1LTufTbxsnRAWfotfUV
B6QDc6tnfZpTapgdNVvSTMUfSUOAM8UmQTENig126iIFsnVoWCxCST8FoOv+xLUp
alIOp0aOvAURRERqtwBl9JBb5XNK03CbHA9o4AWysk+Q5SqivN/tpRMaEeRNqRBo
wsivZXqKSnYBfZLsb7glY+NjKd0gQzckzWXrqD4aqzWH/iLldw7+EnUcbZ8+71RT
9U7IWRZPME1JKHUlLk9GZ2RLPvn2sb+8Xmlfhd/Jv+mGiKrFt+yjsJyD
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:03 2025 by rpki-client