Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/A5QY14YoOjPn_8qVNkQ6V1kK4yk.roa
File: A5QY14YoOjPn_8qVNkQ6V1kK4yk.roa (raw, json)
Hash identifier: /WYv9/GrUprfO9TJC3IGPe/PepLViS93/aE/06S1ycQ=
Subject key identifier: 03:94:18:D7:86:28:3A:33:E7:FF:CA:95:36:44:3A:57:59:0A:E3:29
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D78
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/A5QY14YoOjPn_8qVNkQ6V1kK4yk.roa
Signing time: Mon 17 Oct 2022 02:02:02 +0000
ROA not before: Mon 17 Oct 2022 02:02:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17651
IP address blocks: 150.116.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3448 (0xd78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Oct 17 02:02:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=039418D786283A33E7FFCA9536443A57590AE329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6b:44:7f:9a:77:ed:b8:25:b7:1a:9c:0b:b4:
3b:19:17:5a:42:ea:59:b9:55:36:f4:f5:bc:b6:69:
5d:61:1e:3a:90:73:c9:2e:4f:80:ad:88:9f:1b:58:
55:9a:38:3f:f1:50:5a:d1:d4:3a:c5:73:58:12:18:
38:b0:c1:81:00:76:06:5a:84:ce:6e:70:42:03:f5:
3b:14:79:e9:3b:32:99:95:4d:aa:bb:66:44:c2:69:
1d:0b:45:d7:72:68:62:e5:79:b0:be:5d:0a:79:3f:
84:5b:0f:a7:77:2c:29:e8:70:62:77:7a:4c:39:bf:
6c:30:6f:09:b0:40:f4:54:04:21:e6:f6:ce:a3:4a:
f7:f4:a1:6f:d4:df:3f:ae:aa:03:eb:e4:4e:47:39:
16:a5:f4:5b:f8:51:19:71:41:88:66:84:b0:0b:9e:
76:9c:08:f1:76:82:b7:4a:2a:cd:f2:32:67:a5:cb:
4f:98:00:cc:31:8c:16:98:a7:2a:80:75:7a:18:97:
2d:30:55:70:82:be:4c:1f:2c:29:8a:41:15:03:95:
fe:76:17:ed:0f:a1:b4:24:3b:a9:b3:29:d1:ed:dd:
83:4c:82:23:45:2d:c1:3f:fc:17:e7:a4:5e:ce:00:
b2:6c:48:d1:b6:c6:f2:20:48:ac:bd:49:4c:9b:85:
94:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:94:18:D7:86:28:3A:33:E7:FF:CA:95:36:44:3A:57:59:0A:E3:29
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/A5QY14YoOjPn_8qVNkQ6V1kK4yk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.116.0/24
Signature Algorithm: sha256WithRSAEncryption
86:a7:22:3c:b6:ab:08:11:37:a0:bc:3f:7b:a2:af:bf:94:d5:
5d:92:32:6c:7e:f6:1c:d4:03:af:6a:0d:65:5e:03:57:f7:d2:
37:bb:14:a3:b4:4d:30:2e:ad:f4:f5:36:0a:4f:82:e1:c0:46:
54:bc:57:69:78:bf:2b:e3:3c:4a:5a:66:aa:1e:cf:65:93:59:
84:5a:51:c9:29:2c:2e:44:66:35:38:f2:24:42:d2:05:80:0c:
e8:38:fb:65:9e:43:0d:79:f9:56:ae:5f:31:9b:98:1f:19:a1:
b3:30:68:44:43:96:a0:7e:08:dc:cd:39:08:05:a8:e3:0a:1c:
b7:80:95:4f:8b:62:5c:03:a9:6f:fa:89:9d:33:67:a5:d7:e7:
b9:b1:b1:a5:ab:4d:24:ed:21:bf:f5:c1:55:97:0b:68:ac:f8:
4e:3f:b2:c0:3e:23:24:22:99:26:34:22:42:47:4f:d3:0a:86:
61:75:0c:d7:0e:a9:61:bc:b9:4f:4c:de:a9:66:df:57:85:b8:
c4:5b:87:1c:78:c4:45:55:80:31:65:15:75:6b:37:3b:53:9c:
32:87:d1:35:55:63:3b:2e:62:14:b7:85:d9:37:f6:1b:dc:b5:
c3:51:69:97:7b:b1:5b:b2:02:9f:cb:7b:74:16:3b:02:8d:79:
d0:c1:2f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:02 2025 by rpki-client