Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AXxZc4ZuIpQhoJqBMyJIE3o4JRo.roa
File: AXxZc4ZuIpQhoJqBMyJIE3o4JRo.roa (raw, json)
Hash identifier: jVJlBqUumUjjbEbpVsZkKTlah7QwCmO8BIbiFplF1Kw=
Subject key identifier: 01:7C:59:73:86:6E:22:94:21:A0:9A:81:33:22:48:13:7A:38:25:1A
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BD3
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AXxZc4ZuIpQhoJqBMyJIE3o4JRo.roa
Signing time: Wed 29 Sep 2021 02:38:43 +0000
ROA not before: Wed 29 Sep 2021 02:38:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 119.31.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3027 (0xbd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=017C5973866E229421A09A81332248137A38251A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fc:e5:9f:d1:68:96:ec:2e:da:f3:a5:02:43:
42:38:a7:3c:5b:a0:3e:fc:b1:d5:0b:eb:d2:86:19:
c5:02:a4:79:60:3b:fd:3d:e5:af:16:32:68:1e:07:
b3:3f:5a:98:a3:20:4d:cb:a8:c0:fa:f7:a3:ec:f2:
5a:dc:dd:0a:eb:35:7b:eb:37:f1:dd:76:4e:b5:d5:
c1:d8:95:e7:91:7c:26:65:72:41:d4:97:d8:3a:b2:
c5:3c:e5:83:be:73:75:30:cb:bc:26:99:84:4e:c2:
62:71:b8:d6:0e:6f:e0:1a:49:70:68:58:89:8b:96:
c4:b2:ea:cf:21:88:a6:d9:18:6b:89:d1:65:12:87:
80:54:52:ab:31:be:6e:d1:13:7c:79:f7:4b:b8:61:
b8:7f:cc:ad:a2:d3:60:b4:54:2c:24:8a:6d:37:88:
c8:b6:85:f3:18:01:d1:2e:98:5f:3c:13:0f:4f:e6:
0c:44:e7:d5:74:3d:66:07:5e:1e:75:07:eb:1e:56:
87:f5:40:d8:e6:4e:c4:8e:b5:da:7a:01:b4:77:cd:
8a:f8:23:07:04:2e:ef:81:04:6c:0e:9a:53:8e:72:
fb:fa:48:90:5a:d7:46:46:0d:8e:16:c9:7b:5e:4d:
e7:25:1a:ab:db:cf:de:f9:59:19:bf:ff:9e:e0:8f:
8b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:7C:59:73:86:6E:22:94:21:A0:9A:81:33:22:48:13:7A:38:25:1A
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AXxZc4ZuIpQhoJqBMyJIE3o4JRo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.31.176.0/20
Signature Algorithm: sha256WithRSAEncryption
64:5f:3a:ca:c8:c5:2e:81:be:6b:39:fe:5e:5b:16:a0:88:c8:
74:ea:27:f0:dc:f8:d5:50:45:13:0d:bc:c7:75:b4:bd:fd:bc:
c6:94:0f:df:2f:2a:01:18:ed:6b:01:b2:88:ac:39:ce:d8:a7:
9e:69:00:da:0c:b3:3a:ab:0b:a3:67:3e:1e:ca:6f:75:d2:a2:
be:65:79:17:b4:c2:fd:99:b8:e7:f8:16:6d:4e:22:3c:c2:73:
91:f3:e9:bc:5d:e2:46:36:3a:d9:a3:b5:9c:27:85:23:d1:75:
6e:45:30:99:43:52:65:e2:ec:fa:90:84:f9:1e:74:13:e8:59:
e2:77:ea:f8:2d:a8:9f:4e:bd:ce:ac:0f:ce:18:27:fe:b3:28:
a0:b5:3c:49:52:d6:17:9e:8d:6f:d6:2e:1e:a9:48:8e:e2:d2:
74:21:44:a3:e4:a2:f3:fe:11:11:ea:20:62:74:7d:36:d2:a8:
d8:18:42:03:0b:09:75:e2:ad:a8:7c:be:a8:a5:52:ae:67:05:
d1:48:f9:9e:a2:31:70:2d:14:be:f1:c9:9e:b0:14:bf:f7:2d:
b2:f4:85:84:87:c7:d1:67:0f:c6:74:8a:f0:5f:47:54:8a:c0:
c5:f1:96:f9:9e:71:19:5d:e1:27:cf:15:f7:cc:19:f4:06:ef:
ec:b3:d6:56
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICC9MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM4NDNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDAxN0M1OTczODY2RTIy
OTQyMUEwOUE4MTMzMjI0ODEzN0EzODI1MUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDL/OWf0WiW7C7a86UCQ0I4pzxboD78sdUL69KGGcUCpHlgO/09
5a8WMmgeB7M/WpijIE3LqMD696Ps8lrc3QrrNXvrN/Hddk611cHYleeRfCZlckHU
l9g6ssU85YO+c3Uwy7wmmYROwmJxuNYOb+AaSXBoWImLlsSy6s8hiKbZGGuJ0WUS
h4BUUqsxvm7RE3x590u4Ybh/zK2i02C0VCwkim03iMi2hfMYAdEumF88Ew9P5gxE
59V0PWYHXh51B+seVof1QNjmTsSOtdp6AbR3zYr4IwcELu+BBGwOmlOOcvv6SJBa
10ZGDY4WyXteTeclGqvbz975WRm//57gj4tZAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUAXxZc4ZuIpQhoJqBMyJIE3o4JRowHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9BWHhaYzRadUlwUWhv
SnFCTXlKSUUzbzRKUm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQEdx+wMA0GCSqGSIb3DQEBCwUAA4IBAQBkXzrKyMUugb5rOf5eWxagiMh06ifw
3PjVUEUTDbzHdbS9/bzGlA/fLyoBGO1rAbKIrDnO2KeeaQDaDLM6qwujZz4eym91
0qK+ZXkXtML9mbjn+BZtTiI8wnOR8+m8XeJGNjrZo7WcJ4Uj0XVuRTCZQ1Jl4uz6
kIT5HnQT6Fnid+r4LaifTr3OrA/OGCf+syigtTxJUtYXno1v1i4eqUiO4tJ0IUSj
5KLz/hER6iBidH020qjYGEIDCwl14q2ofL6opVKuZwXRSPmeojFwLRS+8cmesBS/
9y2y9IWEh8fRZw/GdIrwX0dUisDF8Zb5nnEZXeEnzxX3zBn0Bu/ss9ZW
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org