Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JUtbiRAXrPh1FFn4Sjrv1mCWbZc.roa
File: JUtbiRAXrPh1FFn4Sjrv1mCWbZc.roa (raw, json)
Hash identifier: 5m1LuOx9l3Vo2aSpt68rNTYBhLt3E1mLRpg1NW3lES8=
Subject key identifier: 25:4B:5B:89:10:17:AC:F8:75:14:59:F8:4A:3A:EF:D6:60:96:6D:97
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BF9
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JUtbiRAXrPh1FFn4Sjrv1mCWbZc.roa
Signing time: Wed 29 Sep 2021 02:38:54 +0000
ROA not before: Wed 29 Sep 2021 02:38:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131607
IP address blocks: 150.117.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3065 (0xbf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:54 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=254B5B891017ACF8751459F84A3AEFD660966D97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f5:65:3d:28:ca:b1:10:2b:4f:71:7e:ba:7d:
8f:56:03:e5:a2:3b:bc:b0:e4:ac:0c:09:09:2b:a2:
93:e9:2f:e8:2d:1b:ac:6c:f5:fb:6f:15:0d:41:fd:
d5:02:12:94:39:ce:80:e1:9a:d7:99:a8:46:0e:c8:
48:0d:ac:80:d5:f0:f4:9c:af:65:6f:74:8a:79:92:
8a:4f:7d:7a:bc:b4:21:b5:13:36:66:c5:c2:0f:9f:
0c:d3:4f:a2:b1:db:76:d3:d0:a2:7f:ce:ba:14:2d:
f1:45:45:e6:6e:36:34:d2:69:1e:aa:87:ca:44:60:
44:1b:ec:8f:58:22:47:ae:3a:d0:5a:55:4f:5a:48:
86:63:f9:23:9d:b5:95:c7:af:b7:f3:26:d7:ba:dd:
7e:78:80:66:51:db:ff:f1:a3:ba:92:46:45:54:3f:
29:b1:14:56:5f:9d:f5:8f:0e:a1:78:2f:f0:28:c6:
16:0a:ea:bc:3f:9b:92:02:4f:b3:58:03:e6:28:c7:
f6:25:da:40:ff:41:55:94:9b:12:f4:30:01:9d:50:
96:dd:ac:30:b9:5f:fd:e0:89:25:b2:dc:d3:23:85:
c4:a0:ea:26:38:27:a2:ba:89:85:5b:af:78:07:37:
52:c1:72:41:20:fb:e4:d8:af:ed:01:9a:f3:cc:10:
c9:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:4B:5B:89:10:17:AC:F8:75:14:59:F8:4A:3A:EF:D6:60:96:6D:97
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JUtbiRAXrPh1FFn4Sjrv1mCWbZc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.208.0/20
Signature Algorithm: sha256WithRSAEncryption
94:41:09:c5:14:7c:85:d9:2d:5e:df:77:28:fd:c6:10:46:fe:
4a:44:e0:1d:cb:ec:b3:5b:f3:30:9d:4c:15:2b:57:75:68:56:
e3:ba:d7:10:0b:a3:bb:65:16:84:a2:3c:ea:19:2d:84:2f:33:
6a:af:7b:5d:2e:40:5e:f7:bd:bc:4e:fb:fb:6f:05:04:67:41:
f6:0b:ed:f3:b0:06:d3:ef:fa:78:48:ed:3d:c3:21:23:26:25:
17:59:22:45:09:55:fb:bb:24:12:9c:98:6e:51:93:10:60:2d:
06:2a:92:07:89:cf:12:96:99:66:1e:1c:0e:9a:e7:56:e0:b4:
14:a5:a4:b4:2b:f4:d0:ce:42:95:2b:17:6b:1a:a6:9b:63:81:
5e:08:5a:c6:9e:6a:6d:ad:49:0f:ff:9f:4a:b3:6e:78:8d:ae:
46:7e:ec:46:ef:53:66:72:08:a0:5e:14:eb:10:a4:ab:c9:53:
5d:74:dd:b8:de:11:1a:3b:3e:ee:87:fa:d2:63:92:06:5b:cb:
c9:e0:73:f6:54:a9:b3:3f:e1:bf:d8:66:56:62:4d:91:1a:b8:
d6:d4:19:38:f3:a3:81:6c:ab:7f:1d:17:53:65:f6:62:1a:55:
70:51:31:32:3d:c2:cc:be:4e:83:d6:37:ae:25:16:85:8e:8b:
b6:29:c0:e2
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICC/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM4NTRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDI1NEI1Qjg5MTAxN0FD
Rjg3NTE0NTlGODRBM0FFRkQ2NjA5NjZEOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDI9WU9KMqxECtPcX66fY9WA+WiO7yw5KwMCQkropPpL+gtG6xs
9ftvFQ1B/dUCEpQ5zoDhmteZqEYOyEgNrIDV8PScr2VvdIp5kopPfXq8tCG1EzZm
xcIPnwzTT6Kx23bT0KJ/zroULfFFReZuNjTSaR6qh8pEYEQb7I9YIkeuOtBaVU9a
SIZj+SOdtZXHr7fzJte63X54gGZR2//xo7qSRkVUPymxFFZfnfWPDqF4L/AoxhYK
6rw/m5ICT7NYA+Yox/Yl2kD/QVWUmxL0MAGdUJbdrDC5X/3giSWy3NMjhcSg6iY4
J6K6iYVbr3gHN1LBckEg++TYr+0BmvPMEMmPAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUJUtbiRAXrPh1FFn4Sjrv1mCWbZcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9KVXRiaVJBWHJQaDFG
Rm40U2pydjFtQ1diWmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQElnXQMA0GCSqGSIb3DQEBCwUAA4IBAQCUQQnFFHyF2S1e33co/cYQRv5KROAd
y+yzW/MwnUwVK1d1aFbjutcQC6O7ZRaEojzqGS2ELzNqr3tdLkBe9728Tvv7bwUE
Z0H2C+3zsAbT7/p4SO09wyEjJiUXWSJFCVX7uyQSnJhuUZMQYC0GKpIHic8Slplm
HhwOmudW4LQUpaS0K/TQzkKVKxdrGqabY4FeCFrGnmptrUkP/59Ks254ja5GfuxG
71NmcgigXhTrEKSryVNddN243hEaOz7uh/rSY5IGW8vJ4HP2VKmzP+G/2GZWYk2R
GrjW1Bk486OBbKt/HRdTZfZiGlVwUTEyPcLMvk6D1jeuJRaFjou2KcDi
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org