Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/E9fDRD0aX8N3rmiqLZEDdb51ccM.roa
File: E9fDRD0aX8N3rmiqLZEDdb51ccM.roa (raw, json)
Hash identifier: pogM9CALBvHRM/RPn80pk63pG5aWZLTH0B//qAJwttc=
Subject key identifier: 13:D7:C3:44:3D:1A:5F:C3:77:AE:68:AA:2D:91:03:75:BE:75:71:C3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A60
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/E9fDRD0aX8N3rmiqLZEDdb51ccM.roa
Signing time: Sun 07 Feb 2021 11:49:33 +0000
ROA not before: Sun 07 Feb 2021 11:49:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 118.150.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2656 (0xa60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:49:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=13D7C3443D1A5FC377AE68AA2D910375BE7571C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:be:e0:cb:40:93:37:e3:29:19:52:f7:97:60:
27:98:d5:f8:e6:11:98:42:0a:4b:b9:42:bd:86:0b:
24:bf:98:c0:70:83:fd:c7:5f:61:6d:96:a7:70:19:
65:d6:51:33:a5:39:2f:71:e4:c1:06:e6:4c:c0:81:
83:b7:a9:1b:d2:9b:74:47:19:fd:dd:0b:3e:39:b8:
36:0a:b6:c3:a7:26:4e:3e:ef:f7:e0:39:04:20:1a:
63:04:c6:8e:06:c7:29:04:80:cc:fd:a8:3f:93:2b:
a5:c4:5c:fe:23:0a:83:67:3e:49:1e:ed:2a:82:e2:
56:13:bb:a0:98:5e:0c:63:45:a6:19:35:a0:ce:7b:
b8:87:34:1b:f5:b2:6d:7a:df:6d:80:c1:26:90:81:
51:1b:6c:ff:01:83:89:dc:68:cd:31:99:3f:24:c7:
4d:89:56:4b:63:9b:28:d7:26:d9:b6:9d:58:ba:ba:
b4:df:8c:24:a4:b7:78:95:bd:95:8b:1f:1b:a8:fb:
d8:b4:31:b3:8d:05:fd:b6:85:27:43:f3:2c:99:0a:
be:6e:c3:ca:34:b8:4f:af:a0:83:9c:10:4c:f5:40:
60:c8:6c:92:30:ad:5d:0f:ea:23:14:76:44:29:1b:
a3:e5:6a:66:20:b4:1a:1b:04:97:b8:35:11:b2:0d:
f1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D7:C3:44:3D:1A:5F:C3:77:AE:68:AA:2D:91:03:75:BE:75:71:C3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/E9fDRD0aX8N3rmiqLZEDdb51ccM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.128.0/18
Signature Algorithm: sha256WithRSAEncryption
17:54:5f:3f:62:d4:5c:5b:92:45:fa:00:a9:ef:5b:21:11:51:
ab:10:e1:21:dc:6b:90:7a:aa:c4:05:ed:75:59:88:87:fc:90:
31:6d:9d:7d:52:53:7d:d1:ee:6c:a2:38:50:05:38:28:a0:81:
ec:41:15:35:d3:2d:25:78:fe:e5:39:77:af:4a:58:e3:7f:d9:
89:50:54:cd:82:20:20:d3:d7:9d:23:bc:87:91:03:94:3c:8c:
58:77:e6:07:3b:4c:c5:c4:3c:1a:8d:1a:d4:d5:79:a0:84:18:
54:d1:cc:31:5e:be:e5:34:f4:e5:98:f8:1a:6a:85:b0:47:08:
1e:ea:ca:5c:f5:3e:94:32:15:65:56:8e:30:69:b4:f0:f4:a3:
22:96:0b:3c:2c:13:5b:2e:77:78:98:35:a8:c4:ba:fa:7a:50:
5d:e6:8c:db:5c:97:7c:f3:1e:78:79:e6:6c:03:55:dd:8a:2d:
40:42:87:c1:fa:3f:7d:e8:c0:aa:a7:48:dc:69:cf:f0:a5:44:
ef:48:3d:85:ec:a8:96:8e:0e:c8:e5:82:76:46:01:28:ec:dc:
b9:16:15:df:1b:89:79:62:59:68:3e:1a:10:bb:29:b5:b7:52:
6a:bc:dc:2b:71:69:a3:ee:64:8e:28:96:6e:34:5f:c2:a5:c2:
87:f7:6f:86
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTAyMDcx
MTQ5MzNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDEzRDdDMzQ0M0QxQTVG
QzM3N0FFNjhBQTJEOTEwMzc1QkU3NTcxQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNvuDLQJM34ykZUveXYCeY1fjmEZhCCku5Qr2GCyS/mMBwg/3H
X2FtlqdwGWXWUTOlOS9x5MEG5kzAgYO3qRvSm3RHGf3dCz45uDYKtsOnJk4+7/fg
OQQgGmMExo4GxykEgMz9qD+TK6XEXP4jCoNnPkke7SqC4lYTu6CYXgxjRaYZNaDO
e7iHNBv1sm16322AwSaQgVEbbP8Bg4ncaM0xmT8kx02JVktjmyjXJtm2nVi6urTf
jCSkt3iVvZWLHxuo+9i0MbONBf22hSdD8yyZCr5uw8o0uE+voIOcEEz1QGDIbJIw
rV0P6iMUdkQpG6PlamYgtBobBJe4NRGyDfEjAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUE9fDRD0aX8N3rmiqLZEDdb51ccMwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9FOWZEUkQwYVg4TjNy
bWlxTFpFRGRiNTFjY00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQGdpaAMA0GCSqGSIb3DQEBCwUAA4IBAQAXVF8/YtRcW5JF+gCp71shEVGrEOEh
3GuQeqrEBe11WYiH/JAxbZ19UlN90e5sojhQBTgooIHsQRU10y0leP7lOXevSljj
f9mJUFTNgiAg09edI7yHkQOUPIxYd+YHO0zFxDwajRrU1XmghBhU0cwxXr7lNPTl
mPgaaoWwRwge6spc9T6UMhVlVo4wabTw9KMilgs8LBNbLnd4mDWoxLr6elBd5ozb
XJd88x54eeZsA1Xdii1AQofB+j996MCqp0jcac/wpUTvSD2F7KiWjg7I5YJ2RgEo
7Ny5FhXfG4l5YlloPhoQuym1t1JqvNwrcWmj7mSOKJZuNF/CpcKH92+G
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:46:54 2025 by rpki-client