Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/BMRHkx76tFndFsScuzS81kRlzYc.roa
File: BMRHkx76tFndFsScuzS81kRlzYc.roa (raw, json)
Hash identifier: DUhetBxySC5sVEKqGzScZlLTKeCunkpaoM6ZrAs0DEo=
Subject key identifier: 04:C4:47:93:1E:FA:B4:59:DD:16:C4:9C:BB:34:BC:D6:44:65:CD:87
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/BMRHkx76tFndFsScuzS81kRlzYc.roa
Signing time: Thu 15 Sep 2022 02:39:13 +0000
ROA not before: Thu 15 Sep 2022 02:39:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 150.117.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=04C447931EFAB459DD16C49CBB34BCD64465CD87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:86:9a:cd:db:39:ae:c2:e5:d6:47:a8:3b:b9:
70:99:97:37:06:bc:fd:89:29:33:d4:ee:90:ad:1c:
74:e7:04:ed:08:88:13:13:28:f7:c9:87:9f:0d:18:
c3:6b:dc:b1:93:d8:b7:ad:fc:2a:4f:e6:da:d4:0d:
cf:11:bc:8c:45:6b:4b:c4:b5:0a:e3:a7:63:46:d8:
a5:82:b4:4c:89:74:f6:32:de:23:29:2a:5d:55:89:
e2:64:f4:55:0c:d6:a7:3a:b7:3b:8b:c0:b8:b8:ce:
65:92:e2:c7:12:06:f9:f4:9d:95:04:dc:3a:c2:01:
1d:6f:91:ba:62:9c:fe:d8:06:f5:ff:ff:34:63:ca:
e5:77:d7:20:ae:9c:0b:d9:61:07:70:9d:2f:7b:cb:
2a:5b:08:3a:f2:02:41:81:d2:85:44:be:b4:b9:0f:
7c:6c:5b:18:2c:9e:6f:ce:1e:60:1b:2e:99:13:62:
5c:e2:22:b4:86:c6:8a:bf:13:65:8a:c4:75:3d:f0:
8f:89:4d:c1:7c:5b:41:f0:2a:66:55:b0:65:6d:a6:
a7:2a:d9:31:b5:8e:b9:36:6d:ad:a7:d9:21:24:0e:
17:4d:88:7c:b8:c8:a5:9b:28:cf:e2:57:19:a5:dc:
b3:d7:30:76:2f:49:17:cd:9d:be:3d:d2:4e:95:60:
7f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:C4:47:93:1E:FA:B4:59:DD:16:C4:9C:BB:34:BC:D6:44:65:CD:87
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/BMRHkx76tFndFsScuzS81kRlzYc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.208.0/20
Signature Algorithm: sha256WithRSAEncryption
ad:da:2c:b0:ff:47:3c:f2:9a:c2:15:5d:35:8d:c3:e6:80:53:
55:62:68:47:6a:36:d3:56:9b:ba:46:b5:97:86:68:a6:0f:c8:
65:19:4c:54:ac:8c:16:9e:0a:12:eb:34:b5:6c:94:78:e3:c0:
5b:e3:1e:5d:d8:5d:84:2e:68:ab:b4:48:a4:6d:00:3d:a4:66:
d6:c6:45:54:06:c5:a6:d0:9f:5c:c7:c6:a2:c8:95:81:f1:99:
14:6a:7d:7a:85:8c:41:d1:b1:4c:ae:72:fc:ea:0f:a3:cf:c4:
3c:3c:db:07:f4:e6:d1:9b:83:b9:62:c9:75:12:93:c2:a9:4e:
6d:33:62:c8:2c:55:95:1b:e9:be:7b:bc:36:f1:d0:b4:1a:7e:
d9:ee:b1:22:46:94:e5:e3:f9:a5:f9:bc:3d:b9:21:56:ec:75:
00:e5:4f:f7:63:c1:14:be:54:dc:35:35:81:9a:9b:91:21:db:
2a:37:80:32:54:ad:89:67:a0:46:7e:c8:b8:e7:8b:82:83:7c:
38:a0:36:85:3f:0e:6a:2c:1a:b8:61:0e:3e:09:b1:eb:26:fe:
16:9f:0a:f0:c9:d8:a7:c1:fb:7f:ae:d7:3c:e9:e2:6d:02:b9:
ed:d7:34:b4:a3:1b:ea:89:8c:60:89:10:cd:17:8e:88:b0:ee:
e2:ab:34:4f
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjA5MTUw
MjM5MTNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDA0QzQ0NzkzMUVGQUI0
NTlERDE2QzQ5Q0JCMzRCQ0Q2NDQ2NUNEODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzhprN2zmuwuXWR6g7uXCZlzcGvP2JKTPU7pCtHHTnBO0IiBMT
KPfJh58NGMNr3LGT2Let/CpP5trUDc8RvIxFa0vEtQrjp2NG2KWCtEyJdPYy3iMp
Kl1VieJk9FUM1qc6tzuLwLi4zmWS4scSBvn0nZUE3DrCAR1vkbpinP7YBvX//zRj
yuV31yCunAvZYQdwnS97yypbCDryAkGB0oVEvrS5D3xsWxgsnm/OHmAbLpkTYlzi
IrSGxoq/E2WKxHU98I+JTcF8W0HwKmZVsGVtpqcq2TG1jrk2ba2n2SEkDhdNiHy4
yKWbKM/iVxml3LPXMHYvSRfNnb490k6VYH/XAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUBMRHkx76tFndFsScuzS81kRlzYcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9CTVJIa3g3NnRGbmRG
c1NjdXpTODFrUmx6WWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQElnXQMA0GCSqGSIb3DQEBCwUAA4IBAQCt2iyw/0c88prCFV01jcPmgFNVYmhH
ajbTVpu6RrWXhmimD8hlGUxUrIwWngoS6zS1bJR448Bb4x5d2F2ELmirtEikbQA9
pGbWxkVUBsWm0J9cx8aiyJWB8ZkUan16hYxB0bFMrnL86g+jz8Q8PNsH9ObRm4O5
Ysl1EpPCqU5tM2LILFWVG+m+e7w28dC0Gn7Z7rEiRpTl4/ml+bw9uSFW7HUA5U/3
Y8EUvlTcNTWBmpuRIdsqN4AyVK2JZ6BGfsi454uCg3w4oDaFPw5qLBq4YQ4+CbHr
Jv4Wnwrwydinwft/rtc86eJtArnt1zS0oxvqiYxgiRDNF46IsO7iqzRP
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org