Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Kg3eDLtxzJiiUMoC3tq65SNTsLs.roa
File: Kg3eDLtxzJiiUMoC3tq65SNTsLs.roa (raw, json)
Hash identifier: T0mbWLQfAGjlyuD+WQI2Qzh6p3nOZF9qmhtdSZGgx0s=
Subject key identifier: 2A:0D:DE:0C:BB:71:CC:98:A2:50:CA:02:DE:DA:BA:E5:23:53:B0:BB
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Kg3eDLtxzJiiUMoC3tq65SNTsLs.roa
Signing time: Thu 15 Sep 2022 02:39:06 +0000
ROA not before: Thu 15 Sep 2022 02:39:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131600
IP address blocks: 150.117.120.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2A0DDE0CBB71CC98A250CA02DEDABAE52353B0BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b5:99:3f:9f:fb:58:98:4a:f9:11:56:3a:e1:
95:00:3e:47:0b:5e:14:88:48:19:2a:18:19:58:d2:
9b:c9:40:14:b4:ea:73:d0:6e:56:3f:a3:77:f0:be:
5a:9b:fd:0b:22:04:57:ca:07:d1:ba:5d:cf:dc:3f:
36:04:8e:64:a4:cf:22:e8:50:77:62:c1:40:22:6e:
8f:68:82:c1:3e:f9:d1:7a:21:95:62:04:81:a7:e4:
b3:fd:57:9a:7e:e4:0a:bd:46:bb:9e:da:48:f5:56:
cc:c4:eb:04:cb:4a:03:bb:4e:1c:61:76:8a:03:f6:
f0:fe:0a:a7:ca:ac:c3:0d:02:81:a9:01:d9:cc:3a:
58:95:97:a8:e5:60:51:f6:f4:93:19:7e:15:1e:16:
cb:5b:27:46:99:7b:67:c0:a6:45:62:d7:32:8c:56:
4b:0c:ba:d4:ea:54:4b:d9:40:28:db:29:89:86:2a:
2b:7c:7d:8a:2b:c4:f9:9e:07:8c:24:9e:b1:98:07:
95:2e:5a:f0:07:aa:e2:d7:8b:87:c2:28:8b:d6:5f:
35:8b:59:31:23:77:d9:78:41:b6:00:16:81:8b:18:
36:a3:0d:fb:d0:77:5c:e3:f0:a6:25:65:a6:9e:66:
53:23:9d:8c:db:58:99:1f:ce:6e:bc:79:99:fc:91:
58:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:0D:DE:0C:BB:71:CC:98:A2:50:CA:02:DE:DA:BA:E5:23:53:B0:BB
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Kg3eDLtxzJiiUMoC3tq65SNTsLs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.120.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:eb:23:d0:da:04:32:17:e2:14:7f:3c:d6:56:62:81:9e:58:
ed:a1:c1:c0:1d:9d:45:b3:48:ba:d8:ea:75:d2:69:b7:2b:5a:
48:0e:b7:39:c6:ca:4b:4e:31:f3:bb:bc:1d:83:61:27:d5:4e:
a7:4b:46:e5:9f:14:92:d4:ce:7f:32:01:0e:80:2f:36:dc:80:
1c:b1:51:3b:dc:e6:13:6f:59:28:54:60:3f:2c:b1:ef:c5:04:
71:a7:78:3b:49:25:68:1a:c0:16:3c:bd:7a:cc:96:88:f0:38:
86:4b:b1:73:0f:71:0b:d2:1a:44:65:cd:8f:d9:49:b2:ac:ca:
03:65:6d:2e:67:82:ff:b2:92:44:a2:ff:6f:2c:20:49:bf:b5:
86:bf:e5:8d:da:1a:c6:d3:6b:25:ae:ac:0e:f7:e8:a7:d1:85:
7f:04:37:2c:c3:b4:d8:f6:15:d0:f0:3f:f8:83:2d:d4:60:c3:
e6:08:12:5d:73:d0:4b:03:c2:d6:94:08:c5:4d:47:92:b0:55:
6b:93:0f:ea:f9:d4:11:b3:3e:10:68:70:c0:55:bb:5c:c7:53:
5f:16:2f:5d:8d:f4:5f:03:56:0c:7d:dc:e2:66:93:82:1a:25:
99:a3:f7:38:ca:12:91:72:e2:2f:f4:50:ba:eb:c8:da:5a:a2:
5f:75:67:06
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjA5MTUw
MjM5MDZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDJBMERERTBDQkI3MUND
OThBMjUwQ0EwMkRFREFCQUU1MjM1M0IwQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEtZk/n/tYmEr5EVY64ZUAPkcLXhSISBkqGBlY0pvJQBS06nPQ
blY/o3fwvlqb/QsiBFfKB9G6Xc/cPzYEjmSkzyLoUHdiwUAibo9ogsE++dF6IZVi
BIGn5LP9V5p+5Aq9Rrue2kj1VszE6wTLSgO7ThxhdooD9vD+CqfKrMMNAoGpAdnM
OliVl6jlYFH29JMZfhUeFstbJ0aZe2fApkVi1zKMVksMutTqVEvZQCjbKYmGKit8
fYorxPmeB4wknrGYB5UuWvAHquLXi4fCKIvWXzWLWTEjd9l4QbYAFoGLGDajDfvQ
d1zj8KYlZaaeZlMjnYzbWJkfzm68eZn8kVgpAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUKg3eDLtxzJiiUMoC3tq65SNTsLswHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9LZzNlREx0eHpKaWlV
TW9DM3RxNjVTTlRzTHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDlnV4MA0GCSqGSIb3DQEBCwUAA4IBAQCd6yPQ2gQyF+IUfzzWVmKBnljtocHA
HZ1Fs0i62Op10mm3K1pIDrc5xspLTjHzu7wdg2En1U6nS0blnxSS1M5/MgEOgC82
3IAcsVE73OYTb1koVGA/LLHvxQRxp3g7SSVoGsAWPL16zJaI8DiGS7FzD3EL0hpE
Zc2P2UmyrMoDZW0uZ4L/spJEov9vLCBJv7WGv+WN2hrG02slrqwO9+in0YV/BDcs
w7TY9hXQ8D/4gy3UYMPmCBJdc9BLA8LWlAjFTUeSsFVrkw/q+dQRsz4QaHDAVbtc
x1NfFi9djfRfA1YMfdziZpOCGiWZo/c4yhKRcuIv9FC668jaWqJfdWcG
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:19 2025 by rpki-client