Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9dqNewhCANq2zsiSALpcnirth3c.roa
File: 9dqNewhCANq2zsiSALpcnirth3c.roa (raw, json)
Hash identifier: 3w7NGL9jVK1fv7Snk+K6T7sNmIOWcGUA74uQZNd8Ir4=
Subject key identifier: F5:DA:8D:7B:08:42:00:DA:B6:CE:C8:92:00:BA:5C:9E:2A:ED:87:77
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C11
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9dqNewhCANq2zsiSALpcnirth3c.roa
Signing time: Wed 29 Sep 2021 02:39:00 +0000
ROA not before: Wed 29 Sep 2021 02:39:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 203.163.192.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3089 (0xc11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F5DA8D7B084200DAB6CEC89200BA5C9E2AED8777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ba:09:ab:2f:ff:40:a7:42:d2:47:c6:c6:1f:
a5:8c:e6:13:d5:6c:33:da:5f:01:79:6d:6c:51:d8:
95:09:54:54:2c:c4:c9:d9:61:15:0f:14:e7:65:f1:
0d:d9:b4:32:f5:25:c5:3f:45:aa:e2:b4:23:02:e1:
cc:9f:ed:6b:73:d1:1c:3f:c6:ba:c6:e8:b8:0e:e0:
a4:0d:0a:d0:d9:ef:e5:69:1f:50:e0:b3:54:3c:65:
75:93:81:5c:b0:62:fe:e0:12:e6:c1:92:b8:12:21:
85:d2:6e:2f:60:ff:35:1b:b5:c3:55:0c:ad:d1:b9:
ec:0b:f4:80:44:7c:42:9d:b7:59:8d:b9:29:9d:7a:
d1:ff:8e:d0:1e:9e:e2:e5:b0:66:e8:e7:ab:6f:51:
7b:d5:da:83:a5:d2:75:d9:8c:c7:dd:7b:fa:07:d7:
aa:4f:50:65:03:4f:67:4e:3e:ee:07:6f:00:d9:7b:
36:38:a4:85:e7:12:fe:23:58:c7:07:be:78:87:59:
78:75:c6:39:9a:c3:cb:1a:ff:80:66:e5:44:f0:81:
47:33:6d:2f:c7:dc:e5:b8:d1:85:e7:cc:2c:61:c4:
3c:c3:18:9f:8c:72:0c:73:29:c2:7e:fe:c0:f1:46:
17:49:7f:8f:5f:41:74:21:f2:cc:fc:b7:aa:3a:0e:
a9:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:DA:8D:7B:08:42:00:DA:B6:CE:C8:92:00:BA:5C:9E:2A:ED:87:77
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9dqNewhCANq2zsiSALpcnirth3c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.192.0/23
Signature Algorithm: sha256WithRSAEncryption
25:39:8c:2f:71:f9:d5:ea:0b:a3:72:a5:94:b5:72:38:a2:1c:
6c:fe:ad:49:23:3a:79:34:7a:ac:e1:4a:ab:61:af:92:9f:56:
95:2f:5a:98:c7:08:5f:a8:91:7c:54:28:3e:e1:eb:1c:88:b6:
e2:4d:76:ee:70:51:ed:3c:13:7a:da:37:8c:a4:21:23:b4:e5:
b2:ea:c3:88:7c:55:1d:c5:1e:a9:f7:a4:82:c3:4c:4c:8a:f9:
95:19:b1:c2:ad:d7:59:15:86:68:ed:1d:d4:c4:c0:f5:67:68:
0a:49:80:10:93:34:bb:97:3f:42:fe:d0:d4:65:c5:59:ff:83:
d8:7b:97:3c:10:ea:58:41:12:2d:c3:16:f7:dd:41:aa:02:ae:
19:ee:33:04:62:e5:03:dd:da:74:4d:4c:a2:98:14:71:3a:02:
a4:06:b9:cd:ed:50:77:d8:2c:77:4c:7e:a3:e7:c6:97:9f:91:
ce:e4:84:6f:d4:57:f1:ea:0b:44:9d:05:f7:90:76:f5:c6:d1:
e5:1d:1b:4e:ff:45:08:64:7a:50:ff:b6:11:42:38:1c:bd:05:
cc:30:a3:8a:b4:3a:73:98:6c:f8:9f:d7:8c:6e:30:62:77:c6:
7d:45:9b:74:76:bd:0a:6b:aa:a3:04:d6:1f:fa:19:bb:9b:8e:
05:d9:d5:69
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDBEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM5MDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEY1REE4RDdCMDg0MjAw
REFCNkNFQzg5MjAwQkE1QzlFMkFFRDg3NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCmugmrL/9Ap0LSR8bGH6WM5hPVbDPaXwF5bWxR2JUJVFQsxMnZ
YRUPFOdl8Q3ZtDL1JcU/RaritCMC4cyf7Wtz0Rw/xrrG6LgO4KQNCtDZ7+VpH1Dg
s1Q8ZXWTgVywYv7gEubBkrgSIYXSbi9g/zUbtcNVDK3RuewL9IBEfEKdt1mNuSmd
etH/jtAenuLlsGbo56tvUXvV2oOl0nXZjMfde/oH16pPUGUDT2dOPu4HbwDZezY4
pIXnEv4jWMcHvniHWXh1xjmaw8sa/4Bm5UTwgUczbS/H3OW40YXnzCxhxDzDGJ+M
cgxzKcJ+/sDxRhdJf49fQXQh8sz8t6o6Dql1AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU9dqNewhCANq2zsiSALpcnirth3cwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy85ZHFOZXdoQ0FOcTJ6
c2lTQUxwY25pcnRoM2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQBy6PAMA0GCSqGSIb3DQEBCwUAA4IBAQAlOYwvcfnV6gujcqWUtXI4ohxs/q1J
Izp5NHqs4UqrYa+Sn1aVL1qYxwhfqJF8VCg+4esciLbiTXbucFHtPBN62jeMpCEj
tOWy6sOIfFUdxR6p96SCw0xMivmVGbHCrddZFYZo7R3UxMD1Z2gKSYAQkzS7lz9C
/tDUZcVZ/4PYe5c8EOpYQRItwxb33UGqAq4Z7jMEYuUD3dp0TUyimBRxOgKkBrnN
7VB32Cx3TH6j58aXn5HO5IRv1Ffx6gtEnQX3kHb1xtHlHRtO/0UIZHpQ/7YRQjgc
vQXMMKOKtDpzmGz4n9eMbjBid8Z9RZt0dr0Ka6qjBNYf+hm7m44F2dVp
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:58 2023 by rpki-client on console-fra.rpki-client.org