Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FhEM4V5TM9b_7i6u2zxCBRLMJCc.roa
File: FhEM4V5TM9b_7i6u2zxCBRLMJCc.roa (raw, json)
Hash identifier: nuFJlOphmO4MEzMU4JVcc8o0Mkpm2EFKHBxJb7tAX1o=
Subject key identifier: 16:11:0C:E1:5E:53:33:D6:FF:EE:2E:AE:DB:3C:42:05:12:CC:24:27
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BF8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FhEM4V5TM9b_7i6u2zxCBRLMJCc.roa
Signing time: Wed 29 Sep 2021 02:38:54 +0000
ROA not before: Wed 29 Sep 2021 02:38:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131607
IP address blocks: 150.117.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3064 (0xbf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:54 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=16110CE15E5333D6FFEE2EAEDB3C420512CC2427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:39:24:d9:ce:64:2b:5c:27:b7:e4:1c:92:e3:
2e:32:9d:d9:12:be:44:f1:76:c9:7b:e6:b9:55:61:
d4:c8:a3:11:a4:7f:ab:5c:f1:cb:e6:cb:21:de:51:
e7:16:8a:f0:a1:8a:ee:86:c9:e9:76:90:54:ad:26:
0f:dd:65:9b:51:7b:11:44:ab:55:7f:b8:a9:6e:75:
b7:e9:74:74:e0:b7:cc:8d:a2:d9:f5:48:e7:aa:7b:
fe:e0:9b:a6:f8:95:ed:52:1f:b8:d3:d5:12:5f:18:
f2:72:7c:16:9d:11:d6:03:0d:0b:3b:95:0f:6d:e8:
fd:74:79:a7:c1:2c:84:a6:8d:e3:6d:bd:d1:bb:f8:
58:5e:ba:eb:b7:f3:56:9f:1a:ac:d0:81:f5:6a:79:
97:27:51:e5:e8:74:c7:2f:28:13:3e:a6:86:3e:8d:
3e:20:0d:ef:3b:d2:58:3b:73:14:91:15:d7:46:50:
ff:b0:bc:22:cd:02:7e:da:9e:9a:c5:65:17:28:65:
34:e6:0c:78:1a:1c:51:e0:e9:c2:d6:38:62:da:20:
a5:2d:31:7c:fd:1e:8c:7c:2e:72:5b:d9:25:28:55:
a6:64:9e:4f:cf:1f:fa:c6:2d:f9:44:ea:fb:2c:7b:
21:27:37:ee:23:18:1b:e2:f7:c7:d9:c6:77:cc:52:
3f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:11:0C:E1:5E:53:33:D6:FF:EE:2E:AE:DB:3C:42:05:12:CC:24:27
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FhEM4V5TM9b_7i6u2zxCBRLMJCc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.192.0/20
Signature Algorithm: sha256WithRSAEncryption
41:4a:2b:ef:b9:c6:ec:bb:a5:2b:55:e3:d3:be:98:95:39:4a:
c3:2b:96:2b:4f:1f:27:e2:f8:18:23:99:ee:58:a3:ec:f1:3a:
98:38:ae:fd:f9:1f:44:2d:42:9f:cd:8d:b0:58:78:d8:0c:3e:
0c:91:f7:32:f5:7c:a5:40:43:d8:02:17:39:e9:e5:d2:54:52:
3b:ae:bd:2c:47:13:3c:15:74:1d:87:b3:17:de:ff:7a:b1:c0:
04:02:90:a9:58:44:3b:70:c2:c1:d4:97:8c:91:28:6d:e6:f8:
53:6d:dd:24:8f:27:45:45:ca:7c:3b:1e:19:09:1d:e4:b1:f4:
0b:32:89:f8:b1:b3:85:6a:fb:8f:51:e4:61:f8:af:2c:a1:9c:
33:9c:3a:1f:d6:cb:bc:7c:26:8c:c2:cd:53:3f:6f:d6:32:db:
d2:af:bc:4f:1b:28:6f:7f:69:44:d7:12:e2:a3:31:39:21:24:
a4:fc:14:5e:d9:de:88:a9:20:b8:c3:15:99:23:1b:1f:a9:91:
b1:48:2b:fa:27:42:47:f6:22:b2:25:3e:71:a5:c3:0e:88:c8:
97:5c:aa:33:3b:f0:cf:55:86:a3:d0:b8:ce:9a:0a:a5:ae:2c:
08:0c:54:e8:a5:33:0c:8b:61:03:a1:54:8b:b2:cf:62:7b:a9:
d3:c6:3e:a1
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICC/gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM4NTRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDE2MTEwQ0UxNUU1MzMz
RDZGRkVFMkVBRURCM0M0MjA1MTJDQzI0MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCkOSTZzmQrXCe35ByS4y4yndkSvkTxdsl75rlVYdTIoxGkf6tc
8cvmyyHeUecWivChiu6Gyel2kFStJg/dZZtRexFEq1V/uKludbfpdHTgt8yNotn1
SOeqe/7gm6b4le1SH7jT1RJfGPJyfBadEdYDDQs7lQ9t6P10eafBLISmjeNtvdG7
+Fheuuu381afGqzQgfVqeZcnUeXodMcvKBM+poY+jT4gDe870lg7cxSRFddGUP+w
vCLNAn7anprFZRcoZTTmDHgaHFHg6cLWOGLaIKUtMXz9Hox8LnJb2SUoVaZknk/P
H/rGLflE6vsseyEnN+4jGBvi98fZxnfMUj/NAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUFhEM4V5TM9b/7i6u2zxCBRLMJCcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9GaEVNNFY1VE05Yl83
aTZ1Mnp4Q0JSTE1KQ2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQElnXAMA0GCSqGSIb3DQEBCwUAA4IBAQBBSivvucbsu6UrVePTvpiVOUrDK5Yr
Tx8n4vgYI5nuWKPs8TqYOK79+R9ELUKfzY2wWHjYDD4Mkfcy9XylQEPYAhc56eXS
VFI7rr0sRxM8FXQdh7MX3v96scAEApCpWEQ7cMLB1JeMkSht5vhTbd0kjydFRcp8
Ox4ZCR3ksfQLMon4sbOFavuPUeRh+K8soZwznDof1su8fCaMws1TP2/WMtvSr7xP
Gyhvf2lE1xLiozE5ISSk/BRe2d6IqSC4wxWZIxsfqZGxSCv6J0JH9iKyJT5xpcMO
iMiXXKozO/DPVYaj0LjOmgqlriwIDFTopTMMi2EDoVSLss9ie6nTxj6h
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org