Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IcEA97pEJmBQe4vLk5xJGUgwHBk.roa
File: IcEA97pEJmBQe4vLk5xJGUgwHBk.roa (raw, json)
Hash identifier: qkwqn4ow9WC9fvVH3GntNH7KqQCZ1bZ8ziN8Ol67VO8=
Subject key identifier: 21:C1:00:F7:BA:44:26:60:50:7B:8B:CB:93:9C:49:19:48:30:1C:19
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IcEA97pEJmBQe4vLk5xJGUgwHBk.roa
Signing time: Thu 15 Sep 2022 02:39:24 +0000
ROA not before: Thu 15 Sep 2022 02:39:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 203.163.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=21C100F7BA442660507B8BCB939C491948301C19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:dc:b5:e8:1c:1e:39:25:8f:e8:67:af:66:b5:
ee:c2:62:49:d2:eb:d7:95:de:76:e7:17:16:34:9d:
3e:c1:70:1a:37:5a:4c:e4:c0:4e:f2:4e:3f:b5:c8:
c6:cf:ff:e3:8a:b9:50:8b:a3:79:a7:6f:e7:66:73:
4c:a2:54:9c:3e:55:06:b0:6a:a8:8e:5e:37:5b:7b:
2a:ee:c2:34:f3:d6:f9:ce:73:bd:5c:b2:64:52:68:
d4:35:26:c8:1c:69:fe:bb:74:57:79:7b:55:d0:5e:
4c:7e:2a:37:bf:1f:52:e3:ba:a1:c7:1c:41:30:e5:
98:0f:23:9b:11:14:75:6e:dc:9d:e3:3d:2b:f2:3a:
a8:c0:e2:e4:a4:a3:61:eb:5a:74:4b:27:7c:56:67:
4e:42:17:ac:94:c5:54:89:88:ff:d6:94:38:2c:0a:
d9:35:ff:82:1b:e6:fb:bb:92:63:3c:14:2e:9b:92:
2a:64:28:c8:6b:43:1c:85:27:ad:47:d7:a5:eb:a5:
9e:5f:7a:74:dc:19:f3:d5:02:b2:18:7a:a1:a9:82:
c8:1e:57:29:ea:24:75:49:d9:31:ef:b8:d4:c5:1c:
f4:f4:5f:7a:0c:c0:62:bd:26:bb:dc:93:4c:6e:3b:
bd:25:d1:47:d2:a2:5b:4f:3e:c1:7f:e3:ff:4a:66:
01:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:C1:00:F7:BA:44:26:60:50:7B:8B:CB:93:9C:49:19:48:30:1C:19
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IcEA97pEJmBQe4vLk5xJGUgwHBk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.220.0/23
Signature Algorithm: sha256WithRSAEncryption
94:3b:b4:23:09:a6:74:25:38:53:d1:d8:3b:96:39:70:85:fc:
d7:b6:3e:0e:fb:49:3f:b8:3e:65:b2:f8:5a:27:aa:05:31:41:
d5:40:f3:00:51:54:f5:8c:44:a6:ca:f4:bf:9a:b6:7f:03:09:
b3:54:e5:e2:80:fb:24:0c:98:fb:7f:20:c9:14:ef:d7:30:4e:
d3:17:de:e7:6b:d9:f6:28:05:c3:d2:ce:c7:2c:7a:40:b1:0c:
7a:af:05:63:43:72:22:45:c7:66:68:0a:1d:1a:88:8b:a2:ce:
b0:b1:c0:6d:79:83:bb:bd:b9:04:49:6b:71:8a:71:6d:31:c9:
68:f9:0c:a8:38:57:e0:80:6a:16:c9:29:b7:7f:12:4c:d8:ce:
e3:a4:3d:e1:f0:00:46:ee:e1:8a:5f:4a:9e:39:82:08:80:74:
28:8f:9b:27:2f:00:cd:5e:a1:07:d3:96:36:62:f8:da:b0:cb:
4f:bb:de:c6:96:b1:68:c1:37:33:58:d3:c8:ca:d2:80:c7:40:
fe:a5:77:d0:20:b9:f4:ca:07:f1:58:27:b9:ad:93:76:01:68:
e2:e0:e2:dc:9f:9d:01:6f:87:61:b1:03:0b:bf:20:8e:12:60:
40:4a:ed:60:ad:49:d3:4b:50:ed:44:e2:04:46:ba:7f:01:db:
a7:73:b0:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:26 2025 by rpki-client