Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AyJwKNeixW9E4Z2LM19SfRF9lGU.roa
File: AyJwKNeixW9E4Z2LM19SfRF9lGU.roa (raw, json)
Hash identifier: jC7O9eXJ79LtaMJYX0DV0Mtt8ynsPD2j2FWhVb69wZQ=
Subject key identifier: 03:22:70:28:D7:A2:C5:6F:44:E1:9D:8B:33:5F:52:7D:11:7D:94:65
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0899
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AyJwKNeixW9E4Z2LM19SfRF9lGU.roa
Signing time: Tue 29 Sep 2020 10:02:40 +0000
ROA not before: Tue 29 Sep 2020 10:02:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131607
IP address blocks: 150.117.168.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2201 (0x899)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=03227028D7A2C56F44E19D8B335F527D117D9465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:68:2e:ce:14:33:8b:ce:39:85:f1:5b:2e:25:
2b:be:7c:7f:28:97:24:00:74:5a:37:a3:1b:98:58:
e9:0a:df:73:5f:ad:d6:e5:ac:14:a7:e0:05:76:ff:
9c:82:98:9a:65:ab:dc:f3:57:50:66:f1:b0:cd:5f:
5e:3f:25:2a:5b:c3:eb:4a:74:57:19:f8:f3:8f:82:
69:1f:24:3a:10:99:77:20:7e:67:97:ee:71:df:82:
cd:ba:4d:3b:a9:14:93:1b:38:5a:81:e4:5a:57:99:
89:33:ae:f3:4b:14:9c:77:0b:3d:81:18:9b:e2:19:
47:58:f1:c1:e7:e6:93:1b:12:d4:29:f1:f2:2e:1f:
3b:ce:66:a2:7e:0d:21:8d:39:48:c6:2c:92:86:8e:
bf:a5:db:ac:2a:45:12:cb:61:bd:f5:c9:e3:58:a5:
29:e7:3c:c5:f4:3a:da:e6:ac:24:7e:0a:b3:3d:8c:
db:d7:d5:1e:9d:f7:9a:4b:ca:f1:09:80:43:7c:d0:
b8:26:37:6c:16:64:c0:b6:9c:2a:d7:b6:3b:e2:a3:
f5:82:03:b7:c3:41:98:2a:e5:87:5a:1d:72:e3:b1:
a7:a8:87:f6:0e:39:8b:38:b6:97:b7:00:59:24:1e:
f8:34:b7:06:4c:4c:a2:c4:6c:f8:56:b5:4a:93:ff:
9d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:22:70:28:D7:A2:C5:6F:44:E1:9D:8B:33:5F:52:7D:11:7D:94:65
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AyJwKNeixW9E4Z2LM19SfRF9lGU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.168.0/21
Signature Algorithm: sha256WithRSAEncryption
55:85:42:fd:75:6d:66:99:db:9e:82:a9:cb:38:8f:d9:ca:67:
3f:29:e4:6a:e3:ee:19:d1:b7:e8:7c:7e:92:66:bd:5c:67:18:
a7:f0:fd:9a:c6:2f:53:ef:03:50:00:f1:c6:4b:8f:eb:d0:9e:
66:c2:1f:43:98:bb:20:68:cd:8a:a6:14:10:41:39:c0:9c:95:
91:bc:83:a0:23:8f:14:a4:8a:fa:48:1e:09:7b:a2:9c:c0:64:
74:1a:8a:99:65:84:2e:b4:55:16:92:5c:09:ba:14:6b:0a:5f:
00:c8:1e:20:05:f0:0f:2c:7c:c8:b0:76:3c:13:70:ca:39:2d:
c6:91:f5:79:57:bd:47:55:fd:2c:75:df:e5:30:d5:70:97:19:
b4:9b:61:42:ff:cd:e3:07:8f:a7:d7:11:48:a8:73:c4:53:71:
c1:67:85:f5:2b:81:b1:cf:08:24:9c:33:6e:3f:c9:81:a4:d3:
64:9e:ef:7c:2c:84:b2:31:64:80:33:9e:b4:86:fc:87:d1:f0:
7c:e6:bf:7d:1a:d5:8a:ee:14:2c:ae:67:53:4a:d9:cf:02:82:
b0:5a:d5:14:bd:91:5d:21:8d:33:e9:c0:87:a2:d8:72:2e:25:
46:17:14:c5:ae:64:f3:31:73:00:83:d0:12:64:56:f5:dd:0a:
73:87:cb:14
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCJkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDA5Mjkx
MDAyNDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDAzMjI3MDI4RDdBMkM1
NkY0NEUxOUQ4QjMzNUY1MjdEMTE3RDk0NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCZaC7OFDOLzjmF8VsuJSu+fH8olyQAdFo3oxuYWOkK33Nfrdbl
rBSn4AV2/5yCmJplq9zzV1Bm8bDNX14/JSpbw+tKdFcZ+POPgmkfJDoQmXcgfmeX
7nHfgs26TTupFJMbOFqB5FpXmYkzrvNLFJx3Cz2BGJviGUdY8cHn5pMbEtQp8fIu
HzvOZqJ+DSGNOUjGLJKGjr+l26wqRRLLYb31yeNYpSnnPMX0OtrmrCR+CrM9jNvX
1R6d95pLyvEJgEN80LgmN2wWZMC2nCrXtjvio/WCA7fDQZgq5YdaHXLjsaeoh/YO
OYs4tpe3AFkkHvg0twZMTKLEbPhWtUqT/50ZAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUAyJwKNeixW9E4Z2LM19SfRF9lGUwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9BeUp3S05laXhXOUU0
WjJMTTE5U2ZSRjlsR1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDlnWoMA0GCSqGSIb3DQEBCwUAA4IBAQBVhUL9dW1mmduegqnLOI/Zymc/KeRq
4+4Z0bfofH6SZr1cZxin8P2axi9T7wNQAPHGS4/r0J5mwh9DmLsgaM2KphQQQTnA
nJWRvIOgI48UpIr6SB4Je6KcwGR0GoqZZYQutFUWklwJuhRrCl8AyB4gBfAPLHzI
sHY8E3DKOS3GkfV5V71HVf0sdd/lMNVwlxm0m2FC/83jB4+n1xFIqHPEU3HBZ4X1
K4GxzwgknDNuP8mBpNNknu98LISyMWSAM560hvyH0fB85r99GtWK7hQsrmdTStnP
AoKwWtUUvZFdIY0z6cCHothyLiVGFxTFrmTzMXMAg9ASZFb13Qpzh8sU
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:30 2025 by rpki-client