Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ma_bOMIVEyF-HpnNUIjf5ee_beo.roa
File: Ma_bOMIVEyF-HpnNUIjf5ee_beo.roa (raw, json)
Hash identifier: WtzDyEWgfbi2nS6UfdcbhgJeUklBolMNgySOeCeLMZY=
Subject key identifier: 31:AF:DB:38:C2:15:13:21:7E:1E:99:CD:50:88:DF:E5:E7:BF:6D:EA
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DF8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ma_bOMIVEyF-HpnNUIjf5ee_beo.roa
Signing time: Thu 29 Dec 2022 09:32:05 +0000
ROA not before: Thu 29 Dec 2022 09:32:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 138915
IP address blocks: 150.116.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3576 (0xdf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:05 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=31AFDB38C21513217E1E99CD5088DFE5E7BF6DEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:63:9d:79:ac:d7:73:54:93:fc:87:8b:de:99:
2d:d9:8b:bd:67:3b:df:8e:5f:6c:45:57:0d:60:20:
6c:2b:01:58:f4:91:a6:6c:a1:a2:86:7e:80:04:7a:
50:03:92:4a:2a:40:39:7d:f1:58:da:63:3a:ca:a1:
47:a4:f3:94:96:af:02:2c:3b:bc:b2:26:76:19:1e:
47:50:16:18:3c:f0:83:df:04:e9:29:8f:6d:b3:2d:
fe:b7:f8:4c:70:31:a9:cd:e7:4b:0f:0d:20:20:2e:
c5:97:28:4e:f5:92:18:c1:6c:55:47:3a:ff:93:ac:
16:18:bc:1d:df:f5:a4:a8:ab:58:54:01:8e:45:70:
90:2f:3d:24:66:4f:5d:11:ff:43:dc:14:22:fd:e8:
27:43:34:a6:5b:4d:dd:67:75:2d:1e:f2:f0:77:6d:
00:ca:c2:fc:ae:2c:67:f6:fc:3e:d7:59:9d:89:ed:
da:4c:ad:c5:f2:1e:a4:e4:9d:0b:b8:e6:80:91:93:
66:01:4b:66:99:a3:b8:9a:6a:e7:b3:cb:de:b5:62:
c8:bc:18:d6:da:92:38:51:a4:39:1e:8d:1a:fc:c7:
4b:bc:03:4b:ae:06:61:76:73:2c:81:82:cd:b2:d1:
2c:00:c2:66:34:95:b8:64:5b:1d:4b:43:59:c7:4e:
6d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AF:DB:38:C2:15:13:21:7E:1E:99:CD:50:88:DF:E5:E7:BF:6D:EA
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ma_bOMIVEyF-HpnNUIjf5ee_beo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.117.0/24
Signature Algorithm: sha256WithRSAEncryption
56:43:6f:c8:4f:d6:03:ad:65:87:30:2b:1e:9f:35:37:56:ab:
c1:3f:b5:b4:9d:a1:dc:f8:80:3d:0c:9e:84:0a:80:df:d2:de:
2b:fe:ee:8b:e5:40:9d:1c:de:0b:30:c7:b3:eb:f6:19:32:09:
ca:80:4c:2a:4e:2b:ad:4d:34:b1:7a:e1:1a:f1:4f:9e:e0:5c:
b3:f4:b3:d0:08:7e:09:14:bd:5d:54:ca:be:b8:93:06:67:27:
00:6e:4c:7e:61:de:01:82:93:61:07:f7:32:8d:82:b7:84:63:
7e:0f:90:3d:94:7e:75:c1:1e:57:a9:7a:44:90:bf:24:c6:e0:
2c:22:c7:4c:f0:58:f4:d2:05:50:a3:75:1e:83:4c:98:08:cf:
16:11:d2:86:6e:e2:28:bb:ca:88:fb:e1:3e:e9:97:b9:d1:ba:
9a:28:73:f5:0e:0b:00:eb:3f:e8:af:cd:1e:8e:2b:a2:2f:68:
03:34:80:fe:04:d2:0c:61:51:4b:3f:95:2e:bf:57:ab:33:c8:
45:4a:34:93:63:34:f9:9a:4d:5e:b3:ec:8b:ce:53:c1:ed:04:
a5:4d:58:5b:51:71:9c:b7:17:17:7b:3f:8d:5d:4d:88:d7:6e:
54:e7:d9:6d:4a:bf:8b:ff:1e:87:e4:02:20:78:a6:55:cf:c9:
c4:06:56:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:54 2025 by rpki-client