Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/E5Wz5RzLhJ_tW_TMp3psyVpAGc8.roa
File: E5Wz5RzLhJ_tW_TMp3psyVpAGc8.roa (raw, json)
Hash identifier: LhDavoMIPa/LBGU2KD4j3Vy7aVl6qE41SmTiSbnTXEA=
Subject key identifier: 13:95:B3:E5:1C:CB:84:9F:ED:5B:F4:CC:A7:7A:6C:C9:5A:40:19:CF
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BFD
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/E5Wz5RzLhJ_tW_TMp3psyVpAGc8.roa
Signing time: Wed 29 Sep 2021 02:38:55 +0000
ROA not before: Wed 29 Sep 2021 02:38:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18046
IP address blocks: 150.116.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3069 (0xbfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1395B3E51CCB849FED5BF4CCA77A6CC95A4019CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:81:27:d8:c5:84:6f:56:0b:c9:c9:9d:2b:31:
2d:c5:cd:72:54:19:16:0a:76:a8:15:fa:10:4d:a2:
f2:d9:ba:1b:3c:08:57:76:fe:2c:9c:eb:03:43:5c:
b4:c3:c5:f5:d0:97:8c:b7:2b:f9:69:38:01:a7:10:
2f:c5:3c:cd:72:cb:1b:37:d3:b0:a7:ba:18:a4:6e:
94:75:d6:4c:1d:29:1e:09:e2:42:69:97:44:e2:e5:
17:96:a7:e2:31:4b:ad:06:10:e5:bb:31:31:6c:0f:
8b:91:ec:e3:7c:c5:3e:8b:89:4f:dc:37:3b:16:d0:
f8:5a:9b:d7:a3:83:3d:6b:c4:a0:f3:24:44:b2:43:
2c:6d:71:ff:91:f2:6f:78:6d:26:01:0b:35:13:2f:
9f:a1:16:61:d3:54:70:5a:69:d6:ab:4d:33:7a:80:
f9:1a:6d:0b:42:87:98:76:28:9a:df:3c:0f:6a:32:
90:c5:59:50:39:4c:2b:c4:3c:8e:0b:ae:da:80:0e:
48:04:f5:1d:8c:59:e5:c2:a3:e7:c9:41:a1:3b:6c:
b7:a6:37:80:45:56:e6:c9:cc:98:c3:7c:eb:0a:45:
e1:02:58:98:76:52:1e:e7:23:a7:99:90:6f:c4:dc:
3b:eb:88:12:a8:50:a5:53:ad:71:ad:a9:57:bf:2b:
cb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:95:B3:E5:1C:CB:84:9F:ED:5B:F4:CC:A7:7A:6C:C9:5A:40:19:CF
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/E5Wz5RzLhJ_tW_TMp3psyVpAGc8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.16.0/20
Signature Algorithm: sha256WithRSAEncryption
19:5e:41:8e:bc:d6:0d:f5:33:c7:5c:6c:1d:95:c4:65:90:4f:
49:52:93:83:77:66:58:ef:e8:d2:37:b0:e1:6b:0a:c2:79:2d:
46:d2:12:7d:0d:ef:af:94:b6:dc:06:6b:34:6f:93:41:74:00:
92:50:6e:b5:52:14:c0:08:b9:e6:ce:aa:c2:01:be:a7:5a:35:
70:42:e1:86:61:e7:bc:f4:24:d4:76:48:6d:9c:29:e7:19:19:
f6:62:de:8c:d6:5c:b8:55:43:ee:c3:25:c2:87:5c:20:14:19:
84:c5:d7:fd:ea:31:e2:21:c6:0a:76:4f:19:54:e5:b0:00:b8:
42:ee:92:bc:39:66:d6:6d:bb:f7:4c:b7:13:d6:3b:a5:ab:96:
92:0e:fc:d2:77:87:e5:65:3e:91:fd:8f:42:29:34:6a:48:12:
46:1e:19:e6:ee:79:c7:53:4e:bc:28:cc:9e:75:2a:3b:ae:ed:
58:85:eb:ab:1f:20:0a:8d:28:6d:e0:f0:0b:20:b5:3f:60:46:
78:bc:5f:8f:4b:bb:f6:7b:8f:21:54:43:fd:56:91:40:1b:c0:
9a:28:8d:44:99:0a:46:93:5f:90:f6:fd:c0:41:b0:4e:d6:0d:
64:78:23:73:33:7e:1a:f2:cd:3d:89:19:dc:fb:d0:96:54:70:
53:8c:98:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:04 2025 by rpki-client