Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/M084ozgP3hST1wyvFcqyb-raKcU.roa
File: M084ozgP3hST1wyvFcqyb-raKcU.roa (raw, json)
Hash identifier: xpVDyTlRAVfELzw+vXHZJ7o2kB0yc9S5KQTjHDYOmEM=
Subject key identifier: 33:4F:38:A3:38:0F:DE:14:93:D7:0C:AF:15:CA:B2:6F:EA:DA:29:C5
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A72
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/M084ozgP3hST1wyvFcqyb-raKcU.roa
Signing time: Sun 07 Feb 2021 11:49:48 +0000
ROA not before: Sun 07 Feb 2021 11:49:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17213
IP address blocks: 150.116.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2674 (0xa72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:49:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=334F38A3380FDE1493D70CAF15CAB26FEADA29C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e1:81:a0:30:7c:a9:3f:86:dc:0b:ee:e5:71:
33:1f:1c:6a:8b:13:e1:1b:20:7a:6d:bb:67:81:ac:
34:4b:c1:65:cc:22:de:59:91:85:15:7f:97:23:dc:
c3:16:64:00:4d:fd:fe:3e:6f:49:ed:b2:09:b0:d4:
89:58:b9:e4:2f:a6:62:9c:2e:7d:f0:85:53:57:c8:
f9:96:54:00:e1:2a:05:83:c3:53:a2:cb:74:a3:9b:
00:e7:da:3d:fa:ad:f2:74:be:f7:b7:71:f9:d0:b8:
da:9f:39:c6:64:f5:b1:b7:a6:c4:88:4a:3d:11:95:
68:da:1f:00:ac:02:49:7a:f0:b6:0d:fd:65:98:d2:
5a:f0:f7:44:a0:34:96:2b:b8:fc:7b:6f:c3:49:09:
29:c4:24:07:11:60:2f:81:45:11:eb:0d:ae:2f:a9:
7d:47:35:b2:f8:39:88:64:3f:e4:87:bb:08:5e:fe:
c3:ff:63:b9:7a:7b:01:37:d5:0b:07:0e:90:76:c7:
cd:e2:3d:00:84:88:0d:80:93:61:08:53:5a:09:8c:
e4:1d:b2:dd:a7:49:eb:9d:12:c9:86:fe:32:fc:9d:
b9:1c:ee:d5:29:f8:de:9b:6b:ba:fe:67:a0:3b:f4:
d7:b4:96:8a:07:86:3a:28:a6:41:b3:eb:7b:a2:78:
73:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4F:38:A3:38:0F:DE:14:93:D7:0C:AF:15:CA:B2:6F:EA:DA:29:C5
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/M084ozgP3hST1wyvFcqyb-raKcU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.88.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:48:eb:f5:27:72:4f:06:a9:08:9d:86:98:02:90:d3:06:be:
c7:29:67:e0:e2:68:68:b3:c7:2d:f3:2d:42:02:cb:85:78:5b:
2b:2e:02:14:8a:98:45:7b:64:d4:33:22:a9:f3:9f:65:19:ae:
8e:d6:b5:f5:ec:12:60:9c:3c:bb:6a:cd:0d:51:71:f1:79:27:
a7:1a:94:8c:51:8b:af:9e:90:4c:23:02:32:d5:0f:46:87:e4:
e8:1c:4e:11:9b:0d:ae:fb:e0:91:51:d6:ee:09:81:5a:21:70:
ff:fd:7b:4c:23:13:d3:10:d3:5a:ba:77:41:f7:d9:1a:bb:d5:
5b:fe:ab:b5:86:e0:8a:63:90:bb:15:94:c6:9a:51:36:18:06:
ac:65:ac:c2:fb:57:f9:d1:1b:ac:9d:5e:38:d3:be:84:27:fe:
fc:d8:f1:4c:75:75:b6:16:82:99:00:40:7a:cf:e1:27:c5:43:
bd:9b:fc:41:09:6d:1b:6a:58:2f:d9:12:7d:b9:4b:4e:c5:a4:
5d:62:01:50:53:e2:64:13:1d:84:18:72:1a:81:d5:20:c2:83:
98:43:95:c2:6f:f7:c8:6d:b4:03:84:dc:43:dc:9a:8b:73:cf:
cb:ad:ed:21:2b:37:c7:c9:02:31:0f:d3:95:78:da:f9:8e:7f:
fc:45:87:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:19 2025 by rpki-client