Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NEkJ1qTPFk5F-f1MkJH2u6TDYeg.roa
File: NEkJ1qTPFk5F-f1MkJH2u6TDYeg.roa (raw, json)
Hash identifier: oq1u1+gXG2h8Jpca9hyQNSkuDTc1dQX1TwWU4Sute6g=
Subject key identifier: 34:49:09:D6:A4:CF:16:4E:45:F9:FD:4C:90:91:F6:BB:A4:C3:61:E8
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NEkJ1qTPFk5F-f1MkJH2u6TDYeg.roa
Signing time: Thu 15 Sep 2022 02:39:10 +0000
ROA not before: Thu 15 Sep 2022 02:39:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=344909D6A4CF164E45F9FD4C9091F6BBA4C361E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:41:b4:07:f4:2e:c1:ce:7e:99:1d:b8:c2:c7:
65:ed:bb:0e:fa:1e:3b:b0:01:4d:76:db:ab:6e:8a:
e8:a0:79:88:da:4e:78:86:f2:45:e3:d3:e5:f0:8f:
26:24:97:7f:bf:1a:9d:6b:fe:ab:4a:30:c9:14:d2:
75:ca:32:dd:4c:09:4c:4b:71:ea:86:58:61:ec:2f:
75:e9:84:6b:fb:0b:40:ac:38:0a:9c:f0:d0:20:44:
05:d5:a5:b2:22:6b:b9:6e:dd:18:b0:16:86:55:09:
08:91:5e:28:58:09:bb:c3:2d:e1:ae:78:7b:ec:2e:
40:5e:07:02:14:c7:f6:e8:e9:28:50:5b:63:d1:44:
b5:c1:0a:5c:34:62:85:09:02:1f:46:55:4e:52:06:
d1:33:f5:6c:d6:2c:19:bf:fb:66:90:26:33:97:59:
3d:9b:90:dc:24:73:55:77:a3:45:59:0e:02:f3:b5:
95:3b:4d:99:d0:d6:8e:fb:c8:ac:10:9f:51:c3:e7:
44:30:86:c6:3b:6a:18:c5:f5:66:8c:47:55:70:b3:
d6:cb:4a:62:01:c6:fe:40:ef:89:44:76:d1:35:47:
23:12:86:c2:07:5a:12:e3:a1:54:67:ed:63:5a:5d:
4b:d5:cf:bf:52:63:b8:1c:70:a2:2c:6b:51:00:5b:
6c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:49:09:D6:A4:CF:16:4E:45:F9:FD:4C:90:91:F6:BB:A4:C3:61:E8
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NEkJ1qTPFk5F-f1MkJH2u6TDYeg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.176.0/20
Signature Algorithm: sha256WithRSAEncryption
3e:7f:79:7b:9f:a6:0d:b1:0c:d7:a6:43:3e:80:23:14:62:18:
b6:e5:ab:1c:a7:7d:f9:30:c4:43:7e:39:13:8a:8b:7a:59:4c:
8c:93:d5:be:b6:0b:a9:35:f4:af:cb:54:16:ca:70:d3:90:cc:
19:e7:a4:e1:c6:aa:95:50:c8:67:55:d1:30:b0:60:59:ed:cd:
23:17:0f:24:9c:37:86:db:8d:ba:85:a9:64:52:9b:bd:9b:4c:
d0:82:70:95:0c:13:14:bf:e3:d1:c8:a5:ac:48:a0:3b:56:a7:
83:9b:f3:d1:4b:63:ae:78:5f:81:ce:68:b7:4e:94:70:72:77:
51:78:4e:64:18:6a:09:e2:b4:64:73:21:c5:80:70:c5:fd:8b:
24:2b:a1:6d:73:13:6c:16:51:a2:78:44:d0:16:78:49:79:f3:
2f:2c:a4:e0:9e:e4:7f:31:ec:9f:0d:4d:8b:cc:a8:fc:42:6f:
53:4c:89:5e:be:0d:2c:67:43:b9:0d:95:0e:77:e0:6c:d5:cf:
dc:16:2e:f9:50:1b:97:79:c8:b0:dd:13:aa:5d:32:20:fe:d3:
31:04:5d:29:d5:f2:40:27:5d:82:74:08:cd:56:ef:f4:2b:b9:
e6:2e:62:20:49:c0:d4:bf:9a:29:85:f1:c4:df:67:e4:6e:2a:
48:b8:fc:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:20 2025 by rpki-client