Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ClviqiTppkUDeAzmUICv0U8H-7M.roa
File: ClviqiTppkUDeAzmUICv0U8H-7M.roa (raw, json)
Hash identifier: 2IgHP7CucZu5BV2Zn65jo3Q05Ln/Lw6n9A3FCNgGAus=
Subject key identifier: 0A:5B:E2:AA:24:E9:A6:45:03:78:0C:E6:50:80:AF:D1:4F:07:FB:B3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C15
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ClviqiTppkUDeAzmUICv0U8H-7M.roa
Signing time: Wed 29 Sep 2021 02:39:01 +0000
ROA not before: Wed 29 Sep 2021 02:39:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 223.26.68.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3093 (0xc15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0A5BE2AA24E9A64503780CE65080AFD14F07FBB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a2:57:7d:ff:85:a5:93:27:ed:78:2a:7f:05:
5c:8e:2b:ef:53:98:33:d5:d8:13:29:c0:a4:87:71:
ba:1f:53:b0:d1:79:80:a5:06:8d:7f:fb:20:58:4b:
59:d8:a5:44:55:b6:c2:97:ef:ef:86:4f:37:a5:35:
6a:9d:c3:6e:1b:d1:41:4d:49:d4:04:cb:83:c9:a3:
01:37:6d:e0:f7:75:31:38:5f:21:51:21:7b:61:c5:
c5:33:c7:61:45:ef:d8:f8:31:66:6b:af:bc:c1:3b:
73:b3:bb:51:4e:5b:7c:ae:7d:91:27:6e:00:8c:85:
b8:08:28:b1:31:11:54:39:63:41:09:89:71:df:18:
49:58:e4:1d:76:41:9f:75:e0:b9:5c:9a:e6:4e:35:
78:85:bf:7f:b1:f8:57:fb:b8:2a:f1:61:c3:5a:ac:
6d:3e:b7:bc:c1:22:b2:9f:f4:0e:25:31:3b:ac:4f:
5a:3e:e7:15:db:57:0a:c5:25:a6:d9:df:74:a3:07:
6f:33:d9:ef:4d:03:ab:e3:ce:19:e2:e3:39:b1:78:
ba:06:81:42:4a:de:68:50:4e:af:bf:4b:42:95:83:
23:a6:31:56:cb:49:e2:28:ec:74:1c:83:c0:82:84:
e7:2e:9f:0c:36:15:fc:8e:29:47:8a:35:1a:36:b2:
e7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:5B:E2:AA:24:E9:A6:45:03:78:0C:E6:50:80:AF:D1:4F:07:FB:B3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ClviqiTppkUDeAzmUICv0U8H-7M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.68.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:c0:18:29:cb:b6:70:e1:52:86:29:d1:e5:13:1a:f8:69:a2:
75:79:b4:43:89:fe:dc:37:51:04:c2:00:00:e0:e2:1a:f2:8f:
4d:6a:f3:4e:f0:1e:e9:23:26:dd:f7:f7:9e:d1:e7:3e:c8:60:
6b:4e:34:1e:80:56:41:8d:15:73:e8:2d:05:d3:9f:35:0a:dc:
30:80:a5:b4:d7:07:90:29:23:43:08:04:d3:71:8e:61:3d:d0:
86:ca:00:5e:f8:58:8a:f8:d4:d9:4a:d3:85:d6:0b:ec:d1:09:
5f:07:f7:79:80:12:37:f9:8d:b0:3a:02:f7:61:3d:53:29:00:
ec:c4:ea:3e:f0:74:6e:97:c3:33:ce:74:39:e9:e2:42:72:b5:
83:9d:bb:f2:97:f5:fd:87:89:e9:a8:5c:01:6c:da:cc:c4:fe:
5b:06:b1:35:8e:d2:a5:cc:a7:2e:ca:16:a0:23:48:a0:71:86:
67:5c:b0:b2:6a:59:1e:16:18:e4:10:de:75:85:a9:59:25:7d:
52:1d:c0:14:f5:8f:fb:14:dd:41:22:0b:dd:ef:05:a5:99:60:
40:28:15:1f:ee:33:e0:4c:e4:11:08:00:32:98:86:3b:f0:83:
d0:03:28:28:1f:cf:3f:3c:dc:e1:f7:31:c1:92:c5:83:51:38:
b9:7d:ef:dc
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDBUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM5MDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDBBNUJFMkFBMjRFOUE2
NDUwMzc4MENFNjUwODBBRkQxNEYwN0ZCQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDaold9/4WlkyfteCp/BVyOK+9TmDPV2BMpwKSHcbofU7DReYCl
Bo1/+yBYS1nYpURVtsKX7++GTzelNWqdw24b0UFNSdQEy4PJowE3beD3dTE4XyFR
IXthxcUzx2FF79j4MWZrr7zBO3Ozu1FOW3yufZEnbgCMhbgIKLExEVQ5Y0EJiXHf
GElY5B12QZ914LlcmuZONXiFv3+x+Ff7uCrxYcNarG0+t7zBIrKf9A4lMTusT1o+
5xXbVwrFJabZ33SjB28z2e9NA6vjzhni4zmxeLoGgUJK3mhQTq+/S0KVgyOmMVbL
SeIo7HQcg8CChOcunww2FfyOKUeKNRo2sueLAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUClviqiTppkUDeAzmUICv0U8H+7MwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9DbHZpcWlUcHBrVURl
QXptVUlDdjBVOEgtN00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQB3xpEMA0GCSqGSIb3DQEBCwUAA4IBAQBawBgpy7Zw4VKGKdHlExr4aaJ1ebRD
if7cN1EEwgAA4OIa8o9NavNO8B7pIybd9/ee0ec+yGBrTjQegFZBjRVz6C0F0581
CtwwgKW01weQKSNDCATTcY5hPdCGygBe+FiK+NTZStOF1gvs0QlfB/d5gBI3+Y2w
OgL3YT1TKQDsxOo+8HRul8MzznQ56eJCcrWDnbvyl/X9h4npqFwBbNrMxP5bBrE1
jtKlzKcuyhagI0igcYZnXLCyalkeFhjkEN51halZJX1SHcAU9Y/7FN1BIgvd7wWl
mWBAKBUf7jPgTOQRCAAymIY78IPQAygoH88/PNzh9zHBksWDUTi5fe/c
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:02 2025 by rpki-client