Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6fUe9MU35qyEPo-xgDIG5mRiw20.roa
File: 6fUe9MU35qyEPo-xgDIG5mRiw20.roa (raw, json)
Hash identifier: FgrmaZsd8gLrsdxKhSitFcWPLapr8STfpDXxiVqr+PQ=
Subject key identifier: E9:F5:1E:F4:C5:37:E6:AC:84:3E:8F:B1:80:32:06:E6:64:62:C3:6D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DDB
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6fUe9MU35qyEPo-xgDIG5mRiw20.roa
Signing time: Thu 29 Dec 2022 09:31:56 +0000
ROA not before: Thu 29 Dec 2022 09:31:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63199
IP address blocks: 203.163.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3547 (0xddb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E9F51EF4C537E6AC843E8FB1803206E66462C36D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f1:aa:dc:66:66:b8:d2:8d:26:69:cc:a9:59:
28:dd:c5:37:93:f1:dc:c5:0c:a0:08:08:c0:8b:59:
2a:8a:0e:2f:3c:80:a0:46:b7:a1:7d:93:94:54:32:
88:42:95:c9:ea:e3:0d:ea:8d:a7:43:7f:d3:0c:23:
82:46:2e:79:a7:30:a2:93:c6:fb:47:7c:15:04:7a:
9f:4b:76:d5:7f:62:10:46:74:a4:06:42:30:6c:ee:
ae:38:76:4d:79:c3:31:66:6d:18:e7:c9:a8:64:24:
c7:7d:7e:a1:3e:7d:10:3d:38:e7:e0:7d:4b:45:4a:
6e:6f:43:a3:93:a8:21:e4:cb:91:1f:0f:19:9a:f6:
9b:ce:7d:98:44:8b:11:0e:58:90:da:d8:56:8f:03:
b9:3c:6b:12:75:7f:0d:71:ab:74:ce:50:85:98:d1:
ec:39:51:15:b9:96:7a:5c:b0:fa:de:34:5d:a8:69:
fd:ce:e9:f9:27:53:b9:8e:c1:e7:d4:6e:1b:be:5b:
2d:e4:70:12:9f:3d:c2:0e:ec:3b:90:8f:8e:4a:dc:
a7:9b:16:51:02:41:40:df:f3:fd:d4:31:66:8e:05:
db:ca:d7:a7:0c:3c:19:4d:d8:fb:03:3b:a6:4e:79:
81:44:ad:18:8b:85:4f:f3:2a:e5:30:dc:86:3b:da:
cd:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F5:1E:F4:C5:37:E6:AC:84:3E:8F:B1:80:32:06:E6:64:62:C3:6D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6fUe9MU35qyEPo-xgDIG5mRiw20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.216.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:0b:d9:eb:f2:d9:a8:24:7e:75:82:84:1f:d6:4b:a6:8f:1f:
c5:ba:a3:37:cd:b4:52:d7:d6:e2:f1:09:1a:bc:e3:6a:5a:7d:
c7:46:3a:e2:da:3e:8e:37:cd:b9:c1:ab:3c:59:17:fe:b2:f5:
43:6d:b8:5c:83:62:65:71:d6:c7:be:f6:22:21:d6:59:d1:53:
9e:36:1f:d4:3f:64:f0:96:7d:c7:15:4e:f5:7c:61:f3:ec:ef:
9d:f2:69:a7:ee:6b:89:9f:7d:2a:98:2c:8b:d4:de:2e:71:ef:
64:65:83:56:db:a1:e7:80:9f:85:43:5d:b8:1c:7b:4a:6f:20:
4c:4a:c5:91:26:87:58:d5:b6:1e:64:9f:fd:2c:68:11:24:ed:
43:44:8e:02:fc:69:7b:6b:43:2b:68:c6:37:37:86:1c:dc:16:
27:42:dd:d4:2b:81:3b:a8:9b:5e:d0:dd:61:bd:d3:3d:1b:c4:
75:b4:34:d6:c8:cd:7c:7b:35:e6:e6:1b:58:68:1e:e9:15:a5:
b5:8d:ee:a6:f8:bd:ef:de:c6:87:1b:91:9d:db:7d:ee:cc:9c:
7d:7e:3a:63:95:e6:7d:c4:27:8e:0f:8d:cb:d4:a7:7c:66:8b:
71:c5:91:e0:8d:a0:fe:ff:eb:44:b1:5b:e6:eb:e8:71:fb:0e:
b6:78:c2:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:43 2025 by rpki-client