Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JTIB5vXTXsYcG7RCuMS13mf3pms.roa
File: JTIB5vXTXsYcG7RCuMS13mf3pms.roa (raw, json)
Hash identifier: 2aNmCNHueWeuAIS0HDXOTZvtZ7e5DT9gdjZA1uAqY1Q=
Subject key identifier: 25:32:01:E6:F5:D3:5E:C6:1C:1B:B4:42:B8:C4:B5:DE:67:F7:A6:6B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 088C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JTIB5vXTXsYcG7RCuMS13mf3pms.roa
Signing time: Tue 29 Sep 2020 10:02:36 +0000
ROA not before: Tue 29 Sep 2020 10:02:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131607
IP address blocks: 150.117.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2188 (0x88c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=253201E6F5D35EC61C1BB442B8C4B5DE67F7A66B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:54:64:fb:07:75:e0:8b:f4:20:a9:bf:54:d6:
e7:37:0f:dc:c4:df:34:15:db:f2:bc:5c:5b:05:6a:
01:53:3d:9b:f6:ea:ee:22:e8:d0:b8:01:11:84:08:
23:c8:97:85:de:62:81:86:b5:81:8c:ec:db:39:77:
ef:d1:e7:d2:27:82:e9:77:85:5d:10:a3:09:4c:ff:
3a:03:21:5f:02:9a:84:fe:c0:13:0e:55:0b:b4:15:
cf:97:a7:ab:bf:57:46:d8:67:a8:40:f3:59:d8:ec:
84:79:db:21:f2:fc:21:2d:71:e3:c9:8c:51:64:2b:
2f:0c:10:5f:9e:8f:4f:7c:1c:c4:71:d1:22:31:a6:
7d:3f:1a:2c:ef:47:39:dd:cf:66:63:f9:a4:70:74:
f7:41:82:25:73:d8:c8:9f:1d:85:f5:b4:3e:28:16:
f6:a8:3b:d7:3f:42:f0:37:7a:4c:ea:8c:fd:78:08:
be:fc:d6:6c:09:b1:71:fc:7c:9d:58:a3:dc:27:01:
93:61:80:80:0e:14:bb:3e:03:0d:d9:ed:b7:05:7e:
7b:2f:fc:2c:43:4f:ab:10:03:c9:d7:5a:d4:4f:8f:
89:10:fc:59:0e:c0:27:c7:0a:50:06:d7:e8:17:20:
b9:ef:65:5f:89:5c:b8:53:fe:70:0c:6c:10:e8:50:
64:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:32:01:E6:F5:D3:5E:C6:1C:1B:B4:42:B8:C4:B5:DE:67:F7:A6:6B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JTIB5vXTXsYcG7RCuMS13mf3pms.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.176.0/20
Signature Algorithm: sha256WithRSAEncryption
aa:b5:ca:df:a4:76:76:c4:46:4a:5f:b6:35:03:f8:4b:ea:96:
1e:a3:db:ee:3d:5d:d0:4d:2c:92:ce:bd:d5:4d:d8:98:64:80:
dd:2b:f1:f0:07:72:5c:a1:c7:61:ff:a2:f0:dc:1d:6d:6b:b2:
da:e3:8f:b6:dd:27:23:9d:21:ba:27:01:41:79:c2:09:46:37:
57:20:ce:29:df:8a:4b:70:fc:62:57:98:56:6d:ea:ad:15:c7:
6d:ea:2e:f2:a9:96:0e:7e:ec:df:7b:ef:ad:1e:a1:a7:fa:3b:
a4:8b:8e:51:26:9d:48:ac:5b:e3:ba:fa:94:cd:b6:14:de:38:
d1:90:e5:08:26:f3:03:79:9b:4c:b0:64:7e:46:6e:f0:0e:59:
aa:29:c4:7e:fb:32:58:d1:99:42:44:79:42:18:7d:e9:57:2a:
f4:3a:1d:9f:9b:da:0f:7d:67:05:20:99:31:81:ed:53:1c:f6:
b1:b0:00:09:47:de:a9:0f:9e:de:6c:4b:6c:a6:b1:84:47:8b:
08:a8:13:ed:09:a1:f5:7c:40:8d:3e:2c:b7:43:a7:5e:5f:37:
69:4c:3a:c8:9d:80:49:72:91:c4:6e:c0:4b:c0:dd:40:02:dc:
10:bc:11:63:e8:43:3b:72:13:96:ca:61:47:70:a0:45:ba:3f:
81:4f:43:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:54 2025 by rpki-client