Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/7AVBvtHNmHJtpMxsm0xxq98MRy8.roa
File: 7AVBvtHNmHJtpMxsm0xxq98MRy8.roa (raw, json)
Hash identifier: NJUFXv4tFcEWHoQtr1OsUIPvi/uRtglo4mSYxpA9gJU=
Subject key identifier: EC:05:41:BE:D1:CD:98:72:6D:A4:CC:6C:9B:4C:71:AB:DF:0C:47:2F
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 088D
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/7AVBvtHNmHJtpMxsm0xxq98MRy8.roa
Signing time: Tue 29 Sep 2020 10:02:37 +0000
ROA not before: Tue 29 Sep 2020 10:02:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10133
IP address blocks: 203.163.222.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2189 (0x88d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:37 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EC0541BED1CD98726DA4CC6C9B4C71ABDF0C472F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:00:e1:94:1d:7c:fa:45:fb:dd:7d:fb:28:c1:
21:79:d1:74:2b:c4:aa:2e:ea:15:66:50:e1:b4:31:
50:a2:8e:bd:15:24:8b:14:a7:bf:aa:17:49:3e:d9:
be:ad:96:07:ac:fe:64:8a:e3:29:7b:b9:c4:97:75:
76:c0:10:f3:ab:a5:97:9e:fb:e1:52:fc:21:7d:f7:
ea:d9:ec:0a:15:47:7a:de:61:63:36:18:84:61:39:
ca:e8:0c:b0:cf:35:a6:e1:b3:dd:e2:24:be:66:03:
38:83:d0:96:be:c3:f0:83:9f:74:e0:b0:47:c3:c5:
60:56:74:2b:81:bd:64:30:8b:33:cb:7e:26:f9:4e:
3f:22:72:6d:80:e7:b7:fc:5b:8e:cf:c7:4f:aa:2d:
2d:23:75:6a:03:b2:ed:c1:3f:35:ec:c9:0f:f9:32:
bf:34:de:5f:0a:d5:2c:ff:bf:10:cd:dd:48:a5:61:
8c:ba:75:b1:4f:e4:0e:b3:21:d5:6b:b8:f8:ef:d5:
d6:e5:4a:4a:78:c1:cc:00:29:a5:66:ea:e1:c0:46:
1c:90:50:39:3a:d9:1d:93:ec:bc:1a:e8:1b:0e:9f:
f9:63:55:d4:1a:5f:13:5e:1f:b2:d6:a3:ad:a8:c2:
ec:c9:7a:2a:f3:e0:ed:d6:ce:d1:0f:cc:e5:a7:d6:
d0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:05:41:BE:D1:CD:98:72:6D:A4:CC:6C:9B:4C:71:AB:DF:0C:47:2F
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/7AVBvtHNmHJtpMxsm0xxq98MRy8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.222.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:b7:09:1e:86:74:87:89:5c:73:29:db:57:f3:06:54:f9:d8:
87:a9:17:92:c9:78:67:11:f0:7b:03:c2:15:47:71:84:fc:b3:
59:62:72:9c:9a:67:bc:72:bb:cc:25:1e:0c:46:fa:2d:ae:7e:
04:0e:43:cc:00:4e:b0:ff:9d:ff:6d:9b:2c:c7:cd:88:c5:da:
21:b4:9b:7d:c6:16:c8:8b:5b:9c:bf:37:79:11:2d:94:9a:a0:
7e:85:41:03:50:52:f5:0b:bc:a4:6c:b4:57:40:ec:34:ac:87:
d0:9d:da:97:ef:99:35:94:87:58:4d:57:d4:f4:af:6e:39:71:
09:42:06:d9:31:2d:dd:28:74:4a:60:8b:38:76:6c:93:16:23:
71:00:e6:de:38:ed:f9:4c:63:45:5e:7b:30:9d:b1:e6:c5:44:
fb:64:24:f5:46:17:e5:7a:2c:40:5f:07:85:33:0e:21:6d:6c:
5d:34:a3:bf:72:e9:9d:e8:a2:75:8e:25:0d:58:5a:f9:b5:57:
f0:91:f0:4b:90:20:4d:2a:a6:69:34:68:cb:f3:d0:76:a4:43:
b4:5e:1c:67:4b:5a:5e:ea:38:9c:32:a6:e1:bc:24:f7:8a:8d:
c4:5b:4c:46:73:ad:d6:c1:55:f7:02:28:0d:46:4d:e7:d6:c4:
c8:c2:f5:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:23 2025 by rpki-client