Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/KOWfm_eBlk56uSOjHRjEVSd-sKk.roa
File: KOWfm_eBlk56uSOjHRjEVSd-sKk.roa (raw, json)
Hash identifier: JxRkvsU9tdnaOPYY97wNqnpA/WmXDmxoon65piorCvQ=
Subject key identifier: 28:E5:9F:9B:F7:81:96:4E:7A:B9:23:A3:1D:18:C4:55:27:7E:B0:A9
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0CCA
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/KOWfm_eBlk56uSOjHRjEVSd-sKk.roa
Signing time: Tue 08 Mar 2022 05:33:48 +0000
ROA not before: Tue 08 Mar 2022 05:33:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 137263
IP address blocks: 150.116.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3274 (0xcca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Mar 8 05:33:48 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=28E59F9BF781964E7AB923A31D18C455277EB0A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:67:0d:5f:5a:76:dc:bc:01:5f:37:4d:b5:3a:
53:9e:a4:44:e5:fe:ec:f6:52:12:69:47:44:2c:41:
34:9a:8d:2f:0f:09:65:30:d8:02:39:9f:2f:2d:3c:
d3:87:41:5c:a8:f2:87:de:ff:ac:f2:4b:a3:b3:9d:
64:b3:36:e7:ae:87:78:c7:27:22:5d:40:be:9a:7c:
c2:02:35:2f:e3:94:2e:28:3d:24:61:43:25:a2:1b:
c9:58:25:5a:c1:5f:de:2f:0f:10:c0:24:78:f2:a3:
b6:bb:ca:04:fa:bf:b3:ba:9b:51:ac:c3:e5:6d:5e:
aa:93:6f:04:86:ca:3b:16:76:cf:3f:20:10:4e:5d:
84:e8:e7:c4:61:8f:d0:06:cb:14:75:51:0a:a2:29:
5d:2e:5f:75:7c:88:8e:0d:fe:b2:0d:84:31:f5:b9:
a9:2c:57:9f:b9:8f:45:4b:b6:dc:63:ca:67:12:bc:
13:af:71:29:cf:fb:b1:4a:15:7b:83:ef:5c:fb:9a:
81:7c:e5:36:b6:7c:f8:51:55:45:27:21:4d:1a:43:
34:9d:5a:dd:56:ea:f3:3d:09:9e:b2:84:af:c6:bb:
84:4e:cb:a7:b3:40:10:0a:ef:4f:05:be:a3:11:00:
df:96:5b:58:89:c6:a7:61:0f:33:86:0b:96:6b:1a:
f2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:E5:9F:9B:F7:81:96:4E:7A:B9:23:A3:1D:18:C4:55:27:7E:B0:A9
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/KOWfm_eBlk56uSOjHRjEVSd-sKk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.81.0/24
Signature Algorithm: sha256WithRSAEncryption
45:46:2f:a9:6e:f1:f5:a3:2b:f1:de:04:e0:d9:3b:7d:db:37:
da:3c:25:9c:27:8a:3d:f3:bd:ef:91:93:5a:ba:58:a0:50:c3:
16:4b:2d:a0:9f:e3:c1:dc:d1:45:16:4e:04:57:74:14:ff:d3:
d9:cd:91:62:55:85:ba:42:68:12:e4:d4:69:8a:49:d4:c5:30:
77:17:e1:60:57:8f:68:27:9d:e5:91:5e:9e:33:fe:34:1d:df:
57:09:19:34:b9:3e:40:d8:1a:f6:6a:59:4f:df:14:34:bf:08:
e2:2f:f5:b2:79:f3:6e:02:62:62:5a:20:0b:6d:7f:ee:47:cd:
39:ac:11:1a:54:07:aa:b0:19:7e:8b:4d:98:7f:91:8d:54:ca:
7c:1f:fb:96:fd:9c:d6:2f:1a:0c:8c:d8:e7:2a:86:b6:81:4c:
c5:b4:fa:66:ee:68:b4:4a:1b:19:63:2d:9d:e6:11:1e:b8:25:
af:0f:b2:74:3c:e6:38:62:01:e6:b0:ed:18:b8:41:db:8e:ba:
3d:db:de:7e:1f:78:19:a3:b6:58:32:8e:4c:13:34:eb:33:88:
f5:51:df:3c:1c:ca:d6:00:26:95:37:42:0a:29:5f:a3:57:9d:
0f:18:66:57:4c:ea:1f:39:53:9f:b0:e6:b8:1e:04:c1:94:56:
7e:c8:3c:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:07 2025 by rpki-client