Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ElhaheSjWc_rV64VYt15NYtISlA.roa
File: ElhaheSjWc_rV64VYt15NYtISlA.roa (raw, json)
Hash identifier: vs9ofRGhimwsykSKXXh+HezAiSqUGfA4CKxCMAn7LVk=
Subject key identifier: 12:58:5A:85:E4:A3:59:CF:EB:57:AE:15:62:DD:79:35:8B:48:4A:50
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ElhaheSjWc_rV64VYt15NYtISlA.roa
Signing time: Thu 15 Sep 2022 02:39:20 +0000
ROA not before: Thu 15 Sep 2022 02:39:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.104.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=12585A85E4A359CFEB57AE1562DD79358B484A50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3e:c0:e4:4b:cd:76:36:28:ac:1f:47:0d:66:
b9:f6:d7:ec:05:19:4f:42:89:46:73:17:52:ed:7f:
0b:f6:2d:2a:87:68:f5:34:b5:2a:5b:fd:50:35:56:
c3:1b:fb:b5:ab:f0:f1:af:fb:39:7b:5a:78:9a:22:
6c:39:66:86:c4:b8:c7:f0:a3:a0:97:fb:7d:fb:39:
52:b6:ba:e9:d2:ea:0c:fe:d4:d5:cd:97:50:61:30:
30:2c:fe:fc:95:4e:8b:39:4e:aa:11:bc:e8:83:34:
45:5d:38:66:19:97:97:bf:0e:43:88:c5:10:db:9e:
db:00:06:60:76:c2:30:42:1d:e2:1a:ce:33:27:b3:
ee:73:e1:00:9c:a3:85:35:4c:fb:28:5e:c7:f6:34:
05:90:c6:0d:e8:95:fd:44:bc:4d:e3:20:4f:e0:ae:
aa:96:a1:00:68:f6:ea:00:2a:01:a2:ed:f0:6e:3c:
5e:e3:97:79:ba:6e:c8:50:45:2e:c4:82:fd:3d:82:
ad:57:34:85:33:5c:22:96:19:6b:8c:bc:df:0e:d3:
5f:05:28:46:22:a7:43:25:b6:09:38:e7:3f:03:81:
3c:b5:b4:18:95:d2:dc:be:c8:28:b8:2e:f7:2b:bf:
8e:77:a8:62:b7:07:4b:b8:df:20:85:bb:54:2e:bf:
ad:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:58:5A:85:E4:A3:59:CF:EB:57:AE:15:62:DD:79:35:8B:48:4A:50
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ElhaheSjWc_rV64VYt15NYtISlA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.104.0/21
Signature Algorithm: sha256WithRSAEncryption
7d:54:23:1f:cc:ee:4c:44:7e:13:2e:f8:a7:5b:85:84:78:ab:
2d:43:fe:41:d9:81:eb:b8:e8:c9:79:77:2b:c6:6e:97:53:76:
15:72:c6:e8:8c:72:d5:63:c9:2c:09:74:a1:bf:8d:ba:3a:71:
99:61:25:de:6a:ae:e2:11:8c:bf:93:8a:a3:9d:5a:db:70:b7:
d4:d6:0a:ce:2f:9d:06:47:97:33:93:20:2f:f2:85:07:8b:ab:
12:64:7a:ee:d2:7a:3f:65:ac:a6:c8:3b:72:a4:1f:25:49:66:
6c:08:90:de:7e:64:b2:94:13:52:96:34:52:f6:f0:8a:5c:2a:
0a:65:04:3f:85:b2:a2:95:25:2a:34:9b:41:46:bd:d1:9c:1d:
ad:43:7b:20:5b:1e:63:35:37:c4:2d:36:d4:46:83:40:cf:58:
be:a8:37:af:77:e5:ab:45:a9:e5:7d:71:e7:66:41:79:8c:16:
ab:1e:51:dc:c2:9d:e3:7f:3f:12:00:6e:e4:e8:6c:46:81:07:
26:29:9c:d9:b5:54:69:b9:c0:ae:31:05:21:fa:91:e3:06:fe:
15:02:49:18:52:89:fa:28:c7:e1:a0:5d:82:ff:6a:a8:44:9a:
3e:27:87:85:bb:b1:1d:24:6f:fc:92:d4:89:2c:61:58:63:db:
7b:4d:d7:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:32 2025 by rpki-client