Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GgN8zcIPo2-zo7K4ni1dfnQ5hR4.roa
File: GgN8zcIPo2-zo7K4ni1dfnQ5hR4.roa (raw, json)
Hash identifier: m5cTlleHBtGSmC2zttb60R3XPv3fXMAOBykIDKaHMMw=
Subject key identifier: 1A:03:7C:CD:C2:0F:A3:6F:B3:A3:B2:B8:9E:2D:5D:7E:74:39:85:1E
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AA4
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GgN8zcIPo2-zo7K4ni1dfnQ5hR4.roa
Signing time: Sun 07 Feb 2021 11:50:44 +0000
ROA not before: Sun 07 Feb 2021 11:50:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131607
IP address blocks: 150.117.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2724 (0xaa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:50:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1A037CCDC20FA36FB3A3B2B89E2D5D7E7439851E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:11:82:0e:3f:dc:f8:54:b4:d7:2c:bd:99:dd:
66:00:b2:f3:04:33:1c:2c:2c:bb:23:8c:c6:89:00:
49:e7:60:7a:b4:49:0f:9e:54:0a:9e:b8:a8:d9:38:
50:4e:a6:75:c5:79:b3:ec:0d:ff:b8:a6:58:55:15:
a0:37:92:18:5c:f1:b6:cc:02:a6:04:93:5b:b7:cd:
71:9b:8c:65:4a:b7:2d:b6:69:ce:c7:b7:ce:ca:19:
6f:58:24:cb:4c:87:b0:00:f5:dc:f0:e7:70:6c:37:
48:83:86:f7:04:e9:36:0b:8b:9c:a6:e1:43:86:9f:
e9:4b:3f:79:9b:44:be:8a:1b:11:fb:75:7b:fe:3f:
9e:77:04:ec:14:48:73:3e:0e:e1:d5:e3:05:9e:c7:
9e:b5:69:3b:a3:66:6a:23:e3:2a:3a:1a:0f:46:a3:
f2:06:15:2e:48:2b:f1:76:41:15:93:0d:75:d0:82:
ea:91:12:79:58:da:c4:74:c4:1e:0f:b0:c0:4d:08:
9c:6e:ec:c9:1f:06:06:89:9d:a6:a8:64:15:c4:fa:
f3:e8:89:d0:92:b6:18:bc:9c:3f:bb:e5:fc:8e:46:
1d:33:65:ea:fe:c6:56:09:14:7f:eb:e0:bc:b6:50:
42:4a:d5:dd:21:e2:12:8f:dd:f1:dd:17:4e:11:63:
ab:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:03:7C:CD:C2:0F:A3:6F:B3:A3:B2:B8:9E:2D:5D:7E:74:39:85:1E
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GgN8zcIPo2-zo7K4ni1dfnQ5hR4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.176.0/20
Signature Algorithm: sha256WithRSAEncryption
02:ac:fc:27:9c:f6:b1:4f:ed:43:fb:1f:45:5c:53:24:57:2f:
0e:16:d0:a5:ec:17:d7:b7:94:ea:17:11:0a:4c:fc:88:b6:52:
9c:8d:93:04:3d:40:0d:42:fb:67:24:c7:b9:f5:ef:6f:15:d0:
38:af:6a:5c:55:10:86:2b:2d:78:ad:10:a0:5b:d2:c7:d2:28:
a6:64:6f:a0:c7:97:d7:b6:46:58:f8:21:d5:d6:c7:d0:1b:d3:
6a:36:48:8b:d1:07:1b:5a:8c:67:de:07:3d:25:ab:4a:66:0c:
08:a0:d8:66:29:53:47:f1:51:fa:fb:05:74:ce:56:25:d9:fe:
f7:90:eb:c5:23:5d:ec:42:62:f2:1e:e1:09:41:68:b9:4a:41:
fb:41:f2:aa:7c:53:49:9b:f0:27:2b:a4:e5:92:d1:bb:86:4e:
b7:ee:a1:1c:31:d5:7a:e9:77:68:79:5b:18:67:09:71:0a:4f:
b1:c2:f0:8c:52:9a:81:6d:07:22:b0:b6:c3:ab:c9:90:78:43:
34:f8:6d:4a:59:f9:ef:ac:f5:0c:2a:f7:8d:07:b0:ca:13:6b:
64:05:53:84:38:eb:ac:73:b7:6e:2c:f1:32:f7:5c:fd:08:fe:
78:cc:b3:d4:9a:6d:75:e4:29:50:06:98:3c:8c:45:d1:fd:c8:
b8:1b:c9:82
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCqQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTAyMDcx
MTUwNDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFBMDM3Q0NEQzIwRkEz
NkZCM0EzQjJCODlFMkQ1RDdFNzQzOTg1MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNEYIOP9z4VLTXLL2Z3WYAsvMEMxwsLLsjjMaJAEnnYHq0SQ+e
VAqeuKjZOFBOpnXFebPsDf+4plhVFaA3khhc8bbMAqYEk1u3zXGbjGVKty22ac7H
t87KGW9YJMtMh7AA9dzw53BsN0iDhvcE6TYLi5ym4UOGn+lLP3mbRL6KGxH7dXv+
P553BOwUSHM+DuHV4wWex561aTujZmoj4yo6Gg9Go/IGFS5IK/F2QRWTDXXQguqR
EnlY2sR0xB4PsMBNCJxu7MkfBgaJnaaoZBXE+vPoidCSthi8nD+75fyORh0zZer+
xlYJFH/r4Ly2UEJK1d0h4hKP3fHdF04RY6tFAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUGgN8zcIPo2+zo7K4ni1dfnQ5hR4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9HZ044emNJUG8yLXpv
N0s0bmkxZGZuUTVoUjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQElnWwMA0GCSqGSIb3DQEBCwUAA4IBAQACrPwnnPaxT+1D+x9FXFMkVy8OFtCl
7BfXt5TqFxEKTPyItlKcjZMEPUANQvtnJMe59e9vFdA4r2pcVRCGKy14rRCgW9LH
0iimZG+gx5fXtkZY+CHV1sfQG9NqNkiL0QcbWoxn3gc9JatKZgwIoNhmKVNH8VH6
+wV0zlYl2f73kOvFI13sQmLyHuEJQWi5SkH7QfKqfFNJm/AnK6TlktG7hk637qEc
MdV66XdoeVsYZwlxCk+xwvCMUpqBbQcisLbDq8mQeEM0+G1KWfnvrPUMKveNB7DK
E2tkBVOEOOusc7duLPEy91z9CP54zLPUmm115ClQBpg8jEXR/ci4G8mC
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org