Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AClHMaK_jJl-iZ7U5g-COBt49IA.roa
File: AClHMaK_jJl-iZ7U5g-COBt49IA.roa (raw, json)
Hash identifier: nYIFMIJsFJOYbEajXNg5QbKdnYKIqOYvZjLgp28Fweo=
Subject key identifier: 00:29:47:31:A2:BF:8C:99:7E:89:9E:D4:E6:0F:82:38:1B:78:F4:80
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 09B9
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AClHMaK_jJl-iZ7U5g-COBt49IA.roa
Signing time: Fri 04 Dec 2020 05:13:30 +0000
ROA not before: Fri 04 Dec 2020 05:13:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 141167
IP address blocks: 150.116.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2489 (0x9b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 4 05:13:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=00294731A2BF8C997E899ED4E60F82381B78F480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f2:47:94:db:3c:6a:86:e7:fa:55:6f:91:8e:
5d:cd:cb:9d:88:88:2a:ca:5c:46:14:01:e4:b0:0a:
e2:09:50:e7:44:c5:8b:d1:24:da:ba:22:4b:48:fa:
d3:15:a2:1c:48:05:2f:4f:1d:91:ff:7f:cd:0f:34:
42:a6:47:9f:5b:41:b8:e6:21:37:49:68:17:fa:ac:
c9:e0:ef:6d:0f:6e:67:ac:5f:18:ad:d2:e6:49:65:
77:26:13:70:90:4a:8d:b5:c9:83:f7:04:c6:56:a6:
14:b7:c1:eb:fa:54:b5:f0:0d:81:96:c0:c7:8a:66:
e5:ba:4b:1d:f1:9b:ec:2f:aa:ac:d9:a8:17:30:f6:
f4:aa:3f:45:60:37:6c:8d:af:b6:38:76:cb:6b:b1:
11:1d:ad:b0:f2:4c:e7:ec:47:59:5c:2b:7e:89:a4:
d9:db:2c:09:2c:f3:f0:d0:89:70:8b:c5:d2:f8:fe:
c3:05:d1:5c:16:fb:ec:dd:dc:a6:fd:bc:bb:bd:4b:
26:aa:42:81:95:f5:a4:d9:bb:8f:4b:a7:59:0b:61:
22:21:46:a8:6d:1d:af:b7:bd:d2:cf:6f:02:d5:ca:
0f:f2:91:0c:c1:a2:0c:4b:bb:9b:17:c5:84:ee:60:
3f:61:0b:9a:38:44:da:88:51:98:e0:87:0c:ee:44:
cf:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:29:47:31:A2:BF:8C:99:7E:89:9E:D4:E6:0F:82:38:1B:78:F4:80
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AClHMaK_jJl-iZ7U5g-COBt49IA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.81.0/24
Signature Algorithm: sha256WithRSAEncryption
18:fd:dd:f8:6d:01:21:19:e6:42:e9:e9:56:25:00:43:d3:96:
55:e0:3f:37:3f:c2:d7:98:4a:5e:30:0c:10:e1:8f:ae:f3:7c:
1a:25:d7:84:b5:96:88:9f:b2:f8:05:5f:4c:8d:33:eb:ac:df:
2d:f6:9e:43:96:31:72:71:16:d9:47:b4:0a:28:3b:cf:33:b7:
5f:86:75:91:ae:6f:82:ae:12:b6:8d:96:89:7c:b8:cd:42:3c:
37:3b:86:a3:3d:30:1e:17:25:15:52:68:b5:5c:c8:17:b5:d7:
c8:e8:7d:27:3a:21:f1:70:41:3d:84:f6:19:76:b2:bd:ab:09:
ce:bb:70:f1:01:9e:d8:54:84:d4:de:d4:29:ee:ab:68:38:30:
85:35:ef:5b:50:f5:5d:b6:58:c6:44:94:2a:2c:d1:4b:fa:6f:
a3:ef:d4:87:35:ad:b7:80:d6:0c:b5:7e:54:ed:c6:9b:b1:b5:
41:b4:88:9f:db:e0:fa:af:38:d6:8e:d2:c3:e4:16:34:75:35:
4d:14:03:43:5c:24:1e:03:0a:7e:a6:82:87:60:92:f2:f1:58:
a1:71:f0:06:28:79:1f:27:e2:38:15:9e:e4:e0:8e:bb:83:e3:
73:2a:1d:86:b3:fa:f9:af:ad:d0:f0:da:9c:ad:02:c3:73:31:
72:3a:91:e9
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDEyMDQw
NTEzMzBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDAwMjk0NzMxQTJCRjhD
OTk3RTg5OUVENEU2MEY4MjM4MUI3OEY0ODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCw8keU2zxqhuf6VW+Rjl3Ny52IiCrKXEYUAeSwCuIJUOdExYvR
JNq6IktI+tMVohxIBS9PHZH/f80PNEKmR59bQbjmITdJaBf6rMng720PbmesXxit
0uZJZXcmE3CQSo21yYP3BMZWphS3wev6VLXwDYGWwMeKZuW6Sx3xm+wvqqzZqBcw
9vSqP0VgN2yNr7Y4dstrsREdrbDyTOfsR1lcK36JpNnbLAks8/DQiXCLxdL4/sMF
0VwW++zd3Kb9vLu9SyaqQoGV9aTZu49Lp1kLYSIhRqhtHa+3vdLPbwLVyg/ykQzB
ogxLu5sXxYTuYD9hC5o4RNqIUZjghwzuRM8DAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUAClHMaK/jJl+iZ7U5g+COBt49IAwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9BQ2xITWFLX2pKbC1p
WjdVNWctQ09CdDQ5SUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAlnRRMA0GCSqGSIb3DQEBCwUAA4IBAQAY/d34bQEhGeZC6elWJQBD05ZV4D83
P8LXmEpeMAwQ4Y+u83waJdeEtZaIn7L4BV9MjTPrrN8t9p5DljFycRbZR7QKKDvP
M7dfhnWRrm+CrhK2jZaJfLjNQjw3O4ajPTAeFyUVUmi1XMgXtdfI6H0nOiHxcEE9
hPYZdrK9qwnOu3DxAZ7YVITU3tQp7qtoODCFNe9bUPVdtljGRJQqLNFL+m+j79SH
Na23gNYMtX5U7cabsbVBtIif2+D6rzjWjtLD5BY0dTVNFANDXCQeAwp+poKHYJLy
8VihcfAGKHkfJ+I4FZ7k4I67g+NzKh2Gs/r5r63Q8NqcrQLDczFyOpHp
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org