Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9NSyzN2HA2-suFgriYVnyHNewzM.roa
File: 9NSyzN2HA2-suFgriYVnyHNewzM.roa (raw, json)
Hash identifier: KSEr0YM6IH40Qysd1KDV5kKLHPa7A8Lyew1KnyY+Wh8=
Subject key identifier: F4:D4:B2:CC:DD:87:03:6F:AC:B8:58:2B:89:85:67:C8:73:5E:C3:33
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C6F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9NSyzN2HA2-suFgriYVnyHNewzM.roa
Signing time: Mon 15 Nov 2021 00:52:04 +0000
ROA not before: Mon 15 Nov 2021 00:52:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 118.150.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Nov 15 00:52:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F4D4B2CCDD87036FACB8582B898567C8735EC333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e0:48:3d:db:5e:f8:84:62:3c:23:0e:4a:27:
88:df:7f:cd:63:9d:dd:fc:58:c3:b7:c4:57:41:78:
5e:41:aa:f0:95:14:b1:a9:79:3b:0e:e0:13:41:1c:
39:32:6c:c5:1c:04:a8:75:2c:94:ab:9c:6a:f1:ed:
41:77:9b:6d:81:e1:a4:13:29:f8:0f:ca:cf:cc:e5:
8e:6f:b9:17:d9:f6:eb:71:ef:00:69:05:a1:15:4f:
36:3d:d9:99:33:49:67:c9:01:ae:df:29:c2:ef:e0:
25:5a:24:55:44:8f:28:26:56:af:d6:e5:86:54:f0:
d1:58:e1:a5:ef:ad:09:b0:bb:ac:9c:10:b5:4e:80:
ce:0d:a4:40:9f:fd:85:b2:91:09:b2:2d:22:94:9d:
dd:91:f5:66:98:df:42:ab:39:59:69:1c:81:ef:e5:
7b:9a:20:81:e0:87:85:13:24:83:ab:65:87:21:3a:
eb:9f:1a:7a:e8:09:f5:56:d9:84:00:ca:22:ec:36:
16:35:1d:5b:99:02:7d:12:00:75:7f:a0:ab:61:d7:
81:8f:55:77:6e:7c:08:bf:00:59:10:f9:30:49:57:
aa:1c:0d:44:5a:e3:10:08:f9:76:59:5c:cd:58:48:
a7:17:ab:de:d0:4b:c4:50:fe:c1:f0:cb:eb:ff:81:
43:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D4:B2:CC:DD:87:03:6F:AC:B8:58:2B:89:85:67:C8:73:5E:C3:33
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9NSyzN2HA2-suFgriYVnyHNewzM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a6:65:b0:ac:c8:75:80:43:bf:32:e1:cb:e4:97:8c:f6:ee:b1:
ba:71:78:6b:66:3d:a4:d1:5f:5a:5d:dc:b0:ed:33:da:36:09:
40:98:76:99:a6:a8:24:c0:c2:c5:b1:4c:45:f0:d7:68:3d:ec:
18:aa:a1:e0:c5:52:cc:4e:c1:a8:62:a9:da:69:95:91:b2:bc:
d7:20:7c:77:cf:dd:ba:ad:8b:92:2c:98:3c:27:7e:2a:d0:19:
d1:6a:bd:50:25:ee:e6:df:bd:03:83:cc:07:f2:89:bf:4a:97:
11:4c:15:51:88:40:cc:f7:8e:ff:c2:df:b8:12:61:72:fe:8e:
2c:8b:32:e9:ec:0a:fd:ae:8b:43:57:37:61:99:49:e5:26:62:
16:a6:f9:97:4d:5c:0a:ea:f6:18:01:c4:c1:fa:f1:ea:2e:3e:
46:ed:16:58:f0:e5:2e:4a:5b:58:19:87:b4:6a:0c:1a:70:60:
73:14:82:14:f4:82:d2:12:8c:85:b2:08:be:97:64:2e:7c:7d:
84:0d:e0:cd:84:16:57:3c:0e:d8:17:94:41:0d:ed:10:0c:8e:
d0:3f:5c:56:4e:eb:47:c6:0d:8b:4c:02:62:c3:ff:08:12:86:
d3:8c:cf:06:e3:0e:be:13:b0:19:cb:46:c2:ac:48:14:7b:07:
00:ed:2b:f5
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICDG8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTExMTUw
MDUyMDRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEY0RDRCMkNDREQ4NzAz
NkZBQ0I4NTgyQjg5ODU2N0M4NzM1RUMzMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC14Eg92174hGI8Iw5KJ4jff81jnd38WMO3xFdBeF5BqvCVFLGp
eTsO4BNBHDkybMUcBKh1LJSrnGrx7UF3m22B4aQTKfgPys/M5Y5vuRfZ9utx7wBp
BaEVTzY92ZkzSWfJAa7fKcLv4CVaJFVEjygmVq/W5YZU8NFY4aXvrQmwu6ycELVO
gM4NpECf/YWykQmyLSKUnd2R9WaY30KrOVlpHIHv5XuaIIHgh4UTJIOrZYchOuuf
GnroCfVW2YQAyiLsNhY1HVuZAn0SAHV/oKth14GPVXdufAi/AFkQ+TBJV6ocDURa
4xAI+XZZXM1YSKcXq97QS8RQ/sHwy+v/gUObAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQU9NSyzN2HA2+suFgriYVnyHNewzMwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy85TlN5ek4ySEEyLXN1
RmdyaVlWbnlITmV3ek0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF
AwMAdpYwDQYJKoZIhvcNAQELBQADggEBAKZlsKzIdYBDvzLhy+SXjPbusbpxeGtm
PaTRX1pd3LDtM9o2CUCYdpmmqCTAwsWxTEXw12g97BiqoeDFUsxOwahiqdpplZGy
vNcgfHfP3bqti5IsmDwnfirQGdFqvVAl7ubfvQODzAfyib9KlxFMFVGIQMz3jv/C
37gSYXL+jiyLMunsCv2ui0NXN2GZSeUmYham+ZdNXArq9hgBxMH68eouPkbtFljw
5S5KW1gZh7RqDBpwYHMUghT0gtISjIWyCL6XZC58fYQN4M2EFlc8DtgXlEEN7RAM
jtA/XFZO60fGDYtMAmLD/wgShtOMzwbjDr4TsBnLRsKsSBR7BwDtK/U=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org