Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LbvedjDIqm330Z1WAksRslfIJgk.roa
File: LbvedjDIqm330Z1WAksRslfIJgk.roa (raw, json)
Hash identifier: XzRYzVSaAOXK58lyvLdDJ1IITJc2eNs638/f8k0JtYs=
Subject key identifier: 2D:BB:DE:76:30:C8:AA:6D:F7:D1:9D:56:02:4B:11:B2:57:C8:26:09
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0890
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LbvedjDIqm330Z1WAksRslfIJgk.roa
Signing time: Tue 29 Sep 2020 10:02:38 +0000
ROA not before: Tue 29 Sep 2020 10:02:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 118.150.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2192 (0x890)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2DBBDE7630C8AA6DF7D19D56024B11B257C82609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:14:77:09:80:40:a9:64:b1:83:56:cc:90:f0:
c9:cb:c9:bc:45:27:b6:7c:45:52:ea:06:cd:84:f3:
cd:b1:cd:4f:63:d8:19:b1:40:fe:b9:3f:54:6e:a2:
b6:45:7f:82:ed:a7:63:b6:43:bc:8a:7b:b1:e4:3b:
91:77:6b:36:ab:94:04:b0:de:72:53:3d:1b:00:4e:
aa:3e:3d:aa:73:67:42:42:7c:29:ff:fd:a0:26:e1:
a6:c2:8f:80:be:31:27:f1:f9:4b:b1:75:7a:58:c6:
af:af:8c:1a:2b:6c:9d:0d:2a:ff:85:b8:56:9e:fd:
aa:d0:b2:10:37:09:f4:24:34:ae:8e:08:6e:9e:0d:
42:e5:66:0f:52:40:67:ad:d6:cf:04:fc:30:1f:88:
d7:99:14:96:3b:61:4c:55:22:68:e8:7d:ba:9b:49:
7d:8f:2b:d3:9b:4f:56:01:e7:ce:4e:42:ec:13:25:
93:10:56:65:a9:41:c1:52:9b:9c:31:e4:87:e8:fb:
48:39:14:bd:17:6f:95:70:d1:88:2d:d5:76:a3:b3:
9d:ed:3c:b3:39:f4:b5:3a:d4:94:b3:4b:d5:33:f1:
19:e7:dc:5c:22:63:9d:7f:67:2a:db:a5:46:b3:45:
4e:a1:50:3c:15:e7:15:64:98:0c:1f:60:46:62:68:
3c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:BB:DE:76:30:C8:AA:6D:F7:D1:9D:56:02:4B:11:B2:57:C8:26:09
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LbvedjDIqm330Z1WAksRslfIJgk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.0.0/17
Signature Algorithm: sha256WithRSAEncryption
7c:17:25:e5:54:6d:51:03:c7:e8:70:24:68:73:ba:a0:fd:99:
0d:ad:2d:27:4f:fa:ef:e0:69:90:f4:fd:4c:91:63:d9:47:3b:
cb:8b:18:31:ae:75:5a:cd:8f:8a:64:53:36:8b:47:bc:13:0e:
5c:0c:61:ff:45:65:29:6f:f9:f9:f3:b8:0c:03:37:12:4e:b4:
65:ac:49:99:3e:6c:6a:98:80:60:ca:36:6b:14:06:32:4c:d6:
6d:ed:b4:22:e0:4d:81:5f:1a:f8:27:d0:6d:d2:40:cc:fe:0c:
a8:e0:7b:ae:43:30:e5:bf:f6:b1:16:88:17:d9:92:03:ec:35:
1d:21:3d:a5:a7:ec:c0:f8:d8:3d:b7:2f:fe:ab:5a:ef:b1:73:
fd:20:02:44:f2:dd:c5:bc:7e:a9:9f:75:d5:ac:e9:07:ff:98:
ba:96:ad:ec:9a:62:ca:b0:c0:14:d3:d7:91:b2:8f:8e:81:98:
17:47:c9:c1:d9:f0:c4:71:25:46:94:57:b8:a8:56:51:96:66:
be:88:a9:39:d3:b1:18:c0:aa:a8:d1:70:32:80:10:0b:b1:eb:
4e:98:e4:a3:2f:3c:e5:6c:6e:e7:fd:14:db:4d:c0:b9:f5:fa:
90:f3:87:bd:cb:77:a5:a1:74:35:b4:dc:48:58:b7:60:ca:89:
22:a3:6e:bb
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDA5Mjkx
MDAyMzhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDJEQkJERTc2MzBDOEFB
NkRGN0QxOUQ1NjAyNEIxMUIyNTdDODI2MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8FHcJgECpZLGDVsyQ8MnLybxFJ7Z8RVLqBs2E882xzU9j2Bmx
QP65P1RuorZFf4Ltp2O2Q7yKe7HkO5F3azarlASw3nJTPRsATqo+PapzZ0JCfCn/
/aAm4abCj4C+MSfx+UuxdXpYxq+vjBorbJ0NKv+FuFae/arQshA3CfQkNK6OCG6e
DULlZg9SQGet1s8E/DAfiNeZFJY7YUxVImjofbqbSX2PK9ObT1YB585OQuwTJZMQ
VmWpQcFSm5wx5Ifo+0g5FL0Xb5Vw0Ygt1Xajs53tPLM59LU61JSzS9Uz8Rnn3Fwi
Y51/ZyrbpUazRU6hUDwV5xVkmAwfYEZiaDybAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQULbvedjDIqm330Z1WAksRslfIJgkwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9MYnZlZGpESXFtMzMw
WjFXQWtzUnNsZklKZ2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQHdpYAMA0GCSqGSIb3DQEBCwUAA4IBAQB8FyXlVG1RA8focCRoc7qg/ZkNrS0n
T/rv4GmQ9P1MkWPZRzvLixgxrnVazY+KZFM2i0e8Ew5cDGH/RWUpb/n587gMAzcS
TrRlrEmZPmxqmIBgyjZrFAYyTNZt7bQi4E2BXxr4J9Bt0kDM/gyo4HuuQzDlv/ax
FogX2ZID7DUdIT2lp+zA+Ng9ty/+q1rvsXP9IAJE8t3FvH6pn3XVrOkH/5i6lq3s
mmLKsMAU09eRso+OgZgXR8nB2fDEcSVGlFe4qFZRlma+iKk507EYwKqo0XAygBAL
setOmOSjLzzlbG7n/RTbTcC59fqQ84e9y3eloXQ1tNxIWLdgyokio267
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org