Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FPYn6wo-A7sW9uclNG2epiRCEt8.roa
File: FPYn6wo-A7sW9uclNG2epiRCEt8.roa (raw, json)
Hash identifier: /8fQg2o8IzUTijYb+iCVtD6PQ/yGxB2hDLy2PhT07Pc=
Subject key identifier: 14:F6:27:EB:0A:3E:03:BB:16:F6:E7:25:34:6D:9E:A6:24:42:12:DF
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DC3
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FPYn6wo-A7sW9uclNG2epiRCEt8.roa
Signing time: Thu 29 Dec 2022 09:31:50 +0000
ROA not before: Thu 29 Dec 2022 09:31:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 150.117.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3523 (0xdc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=14F627EB0A3E03BB16F6E725346D9EA6244212DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7e:f5:11:4b:af:67:01:ad:7c:77:bc:84:25:
44:5e:4e:01:3a:f2:64:e1:1d:53:0b:03:1c:60:19:
c8:d0:18:df:4d:2b:78:fa:8d:72:24:e2:6f:23:91:
b7:1f:44:27:31:b3:ce:54:4f:0b:3f:13:2c:7b:c5:
aa:f5:9f:91:e1:94:76:e2:34:bf:27:19:b2:fe:69:
71:42:3c:91:bf:63:df:6b:03:43:4a:45:64:ca:72:
9f:9c:4e:4a:07:99:79:43:0f:5e:04:38:06:74:a3:
be:1b:93:25:52:d2:66:68:cd:9c:32:40:12:17:a8:
7d:74:1b:3e:60:76:b7:5a:5f:59:9b:44:95:02:56:
3b:50:44:8a:d0:c6:a2:57:82:c6:d6:80:33:c7:3e:
0b:bd:a3:33:2b:97:99:9e:df:15:e4:fe:fa:ff:b0:
64:9a:43:55:07:c6:b7:f8:a2:2a:0f:18:9e:37:71:
ce:55:46:63:27:12:ad:1b:fa:b5:4c:38:19:35:39:
7d:58:69:ca:32:e9:4d:b7:a8:66:71:57:b8:86:26:
80:fd:c5:5e:d4:17:73:63:57:f0:2c:32:63:5e:db:
53:d3:10:78:c4:b5:22:9d:88:10:bb:b7:81:10:c9:
f7:7e:e9:a2:74:d9:03:53:c7:c0:b7:8a:6b:92:bb:
fe:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F6:27:EB:0A:3E:03:BB:16:F6:E7:25:34:6D:9E:A6:24:42:12:DF
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FPYn6wo-A7sW9uclNG2epiRCEt8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.224.0/21
Signature Algorithm: sha256WithRSAEncryption
39:c4:05:82:7d:3f:b9:8e:f9:f0:5c:d2:d3:cc:72:56:ec:e4:
08:a9:ff:ac:4d:cf:5c:34:64:62:dd:cb:e5:82:b7:f4:c8:c4:
16:d7:b6:ee:20:0a:ee:ae:df:ce:ae:98:c6:68:b9:43:ce:91:
4a:0f:49:78:cc:ef:c4:ab:c9:cb:85:51:42:74:8f:97:9d:16:
b5:40:ec:07:70:64:09:f7:50:f9:e8:c7:88:6b:4b:0c:26:08:
45:9c:83:52:e3:53:bd:48:f9:e6:72:ba:1b:76:25:05:03:33:
2c:5d:7a:89:dc:74:0a:50:e2:a5:5e:31:98:a7:63:3d:67:13:
88:dd:a0:f8:87:bf:2c:8c:f8:7c:f9:97:0f:a7:eb:c8:6d:e9:
b5:d7:64:e0:73:9f:89:a2:c3:99:ef:e7:68:bb:cb:54:da:1c:
28:41:05:81:61:39:a5:60:a4:10:24:a5:9f:4e:69:0c:05:50:
2f:7d:00:bc:b0:9c:73:c6:52:8c:72:e0:a5:9e:ea:d2:2f:ba:
5b:4d:d0:f1:2b:89:11:22:33:b2:71:d5:df:d6:3e:18:29:d8:
de:17:25:df:01:37:78:2f:44:3d:23:6c:73:cc:5b:2c:5f:df:
7a:4b:f6:af:67:e8:34:0d:9c:8e:49:ff:a9:cf:2f:45:47:74:
2a:bd:0f:68
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDcMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMxNTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDE0RjYyN0VCMEEzRTAz
QkIxNkY2RTcyNTM0NkQ5RUE2MjQ0MjEyREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpfvURS69nAa18d7yEJUReTgE68mThHVMLAxxgGcjQGN9NK3j6
jXIk4m8jkbcfRCcxs85UTws/Eyx7xar1n5HhlHbiNL8nGbL+aXFCPJG/Y99rA0NK
RWTKcp+cTkoHmXlDD14EOAZ0o74bkyVS0mZozZwyQBIXqH10Gz5gdrdaX1mbRJUC
VjtQRIrQxqJXgsbWgDPHPgu9ozMrl5me3xXk/vr/sGSaQ1UHxrf4oioPGJ43cc5V
RmMnEq0b+rVMOBk1OX1Yacoy6U23qGZxV7iGJoD9xV7UF3NjV/AsMmNe21PTEHjE
tSKdiBC7t4EQyfd+6aJ02QNTx8C3imuSu/73AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUFPYn6wo+A7sW9uclNG2epiRCEt8wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9GUFluNndvLUE3c1c5
dWNsTkcyZXBpUkNFdDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDlnXgMA0GCSqGSIb3DQEBCwUAA4IBAQA5xAWCfT+5jvnwXNLTzHJW7OQIqf+s
Tc9cNGRi3cvlgrf0yMQW17buIArurt/OrpjGaLlDzpFKD0l4zO/Eq8nLhVFCdI+X
nRa1QOwHcGQJ91D56MeIa0sMJghFnINS41O9SPnmcrobdiUFAzMsXXqJ3HQKUOKl
XjGYp2M9ZxOI3aD4h78sjPh8+ZcPp+vIbem112Tgc5+JosOZ7+dou8tU2hwoQQWB
YTmlYKQQJKWfTmkMBVAvfQC8sJxzxlKMcuClnurSL7pbTdDxK4kRIjOycdXf1j4Y
KdjeFyXfATd4L0Q9I2xzzFssX996S/avZ+g0DZyOSf+pzy9FR3QqvQ9o
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:21 2025 by rpki-client