Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MlHNnWSW3MmrxdhzFb-CYdqaJqE.roa
File: MlHNnWSW3MmrxdhzFb-CYdqaJqE.roa (raw, json)
Hash identifier: C68f6+8wE36oCpNSPWFj1ztYNipa5I/glh+qW1pz1TE=
Subject key identifier: 32:51:CD:9D:64:96:DC:C9:AB:C5:D8:73:15:BF:82:61:DA:9A:26:A1
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AA8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MlHNnWSW3MmrxdhzFb-CYdqaJqE.roa
Signing time: Sun 07 Feb 2021 11:50:47 +0000
ROA not before: Sun 07 Feb 2021 11:50:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131607
IP address blocks: 150.117.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2728 (0xaa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:50:47 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3251CD9D6496DCC9ABC5D87315BF8261DA9A26A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bd:00:3e:36:60:0f:5d:08:19:5e:b6:25:27:
4d:66:b6:11:53:be:c5:46:9e:e3:0a:e0:b2:dd:cb:
d5:75:71:6e:71:2b:d8:97:03:af:11:79:1b:9d:a5:
bb:b9:ce:08:7a:97:15:01:57:45:59:04:26:ab:3c:
11:7b:ef:b1:80:0b:30:06:f1:bb:b7:65:84:7a:25:
6b:b0:f3:4f:c3:95:1b:93:c7:04:7e:31:00:49:61:
f2:a1:30:d9:7d:67:54:32:b0:a8:95:62:b4:79:74:
e8:1b:7d:85:65:dc:20:35:3c:c0:e2:72:4b:30:9e:
1e:43:8b:e2:13:dd:3f:3d:d8:7c:6b:61:cd:e7:f4:
d8:33:93:22:a5:94:5f:27:f9:7d:52:ca:fa:b8:5c:
0e:5c:3f:4f:70:66:c4:5b:ea:af:5f:ca:0d:ef:46:
44:33:d3:ce:99:62:92:92:29:fa:77:aa:4d:cb:94:
3d:d6:eb:b5:30:40:d1:6a:c6:a0:af:f4:53:20:7a:
e1:d4:9e:ab:e8:02:b3:98:d9:b3:46:7c:c8:50:ab:
0c:0a:5e:83:b1:17:fe:65:fd:3f:33:92:07:74:53:
ac:9b:0c:60:56:5d:cb:50:55:65:d4:b5:1f:4e:4f:
f2:29:b9:6b:bf:39:4a:bf:e3:50:88:4d:1b:18:46:
78:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:51:CD:9D:64:96:DC:C9:AB:C5:D8:73:15:BF:82:61:DA:9A:26:A1
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MlHNnWSW3MmrxdhzFb-CYdqaJqE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.192.0/20
Signature Algorithm: sha256WithRSAEncryption
6f:ad:fa:05:a0:e2:50:25:cf:ea:66:fe:8d:16:4b:8a:ab:e9:
a3:44:36:47:ec:15:62:1f:fd:70:5e:dc:9b:82:4a:ba:3b:22:
55:eb:90:a4:89:a9:4a:22:9a:83:49:c3:ed:9f:7a:ef:5c:36:
e4:33:28:55:56:55:88:ca:9e:e1:a9:80:de:7a:47:8e:45:2c:
a9:e3:cc:60:2f:15:33:87:70:6e:a6:f8:8e:56:25:45:63:17:
fd:79:09:19:98:3d:97:53:f9:12:e0:33:35:dc:71:d8:a8:b2:
87:97:67:e3:53:c5:f7:c8:42:8d:79:e9:05:63:48:0d:47:f1:
77:9e:7b:48:28:78:85:dd:2d:85:7e:58:48:f6:48:fe:f5:10:
f9:8b:35:fe:e9:ac:c3:e8:9e:e5:2e:8b:38:c1:06:7d:88:35:
64:d4:3f:32:b7:44:9a:08:94:a4:64:af:19:f8:1d:d8:3d:d0:
16:e0:fe:0f:c2:41:57:54:f2:c1:00:3b:13:01:93:05:50:e8:
ae:c0:99:c0:c3:00:56:2d:ec:c0:db:e1:13:86:68:09:33:f5:
e7:78:dd:14:f5:de:11:4f:e2:4c:a3:3d:89:89:83:aa:35:73:
e1:8b:a0:06:4d:87:cd:db:34:76:11:8b:c4:bf:49:52:6e:7f:
d2:d8:82:db
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCqgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTAyMDcx
MTUwNDdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDMyNTFDRDlENjQ5NkRD
QzlBQkM1RDg3MzE1QkY4MjYxREE5QTI2QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/vQA+NmAPXQgZXrYlJ01mthFTvsVGnuMK4LLdy9V1cW5xK9iX
A68ReRudpbu5zgh6lxUBV0VZBCarPBF777GACzAG8bu3ZYR6JWuw80/DlRuTxwR+
MQBJYfKhMNl9Z1QysKiVYrR5dOgbfYVl3CA1PMDickswnh5Di+IT3T892HxrYc3n
9NgzkyKllF8n+X1Syvq4XA5cP09wZsRb6q9fyg3vRkQz086ZYpKSKfp3qk3LlD3W
67UwQNFqxqCv9FMgeuHUnqvoArOY2bNGfMhQqwwKXoOxF/5l/T8zkgd0U6ybDGBW
XctQVWXUtR9OT/IpuWu/OUq/41CITRsYRnjTAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUMlHNnWSW3MmrxdhzFb+CYdqaJqEwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9NbEhObldTVzNNbXJ4
ZGh6RmItQ1lkcWFKcUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQElnXAMA0GCSqGSIb3DQEBCwUAA4IBAQBvrfoFoOJQJc/qZv6NFkuKq+mjRDZH
7BViH/1wXtybgkq6OyJV65CkialKIpqDScPtn3rvXDbkMyhVVlWIyp7hqYDeekeO
RSyp48xgLxUzh3BupviOViVFYxf9eQkZmD2XU/kS4DM13HHYqLKHl2fjU8X3yEKN
eekFY0gNR/F3nntIKHiF3S2FflhI9kj+9RD5izX+6azD6J7lLos4wQZ9iDVk1D8y
t0SaCJSkZK8Z+B3YPdAW4P4PwkFXVPLBADsTAZMFUOiuwJnAwwBWLezA2+EThmgJ
M/XneN0U9d4RT+JMoz2JiYOqNXPhi6AGTYfN2zR2EYvEv0lSbn/S2ILb
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org