Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NWCMvaAyMMiuQQ9Tmm-y1WpbfJY.roa
File: NWCMvaAyMMiuQQ9Tmm-y1WpbfJY.roa (raw, json)
Hash identifier: E3PG67h0xEhcTb66QMde315INMRC9vk0xtDYDEZU7Oc=
Subject key identifier: 35:60:8C:BD:A0:32:30:C8:AE:41:0F:53:9A:6F:B2:D5:6A:5B:7C:96
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BE4
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NWCMvaAyMMiuQQ9Tmm-y1WpbfJY.roa
Signing time: Wed 29 Sep 2021 02:38:49 +0000
ROA not before: Wed 29 Sep 2021 02:38:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.116.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3044 (0xbe4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=35608CBDA03230C8AE410F539A6FB2D56A5B7C96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c4:f0:68:9c:3f:cb:ed:ca:44:1b:52:6a:36:
c9:c1:d6:36:f8:a6:34:17:9f:dd:98:67:24:40:7d:
44:01:c2:54:c0:62:72:e7:2a:2f:b6:39:4c:c5:23:
0a:1f:09:90:19:c5:df:27:d8:0b:68:b5:e5:c3:84:
d6:8d:79:51:58:18:13:f1:19:c1:1a:52:fd:02:95:
e9:46:50:14:5a:09:0d:f2:b2:24:db:ff:d8:08:60:
9e:3d:42:d7:eb:04:0a:80:f2:7d:20:e0:43:81:94:
af:c5:4a:9a:4a:9c:2c:d9:09:5e:3f:78:f3:ee:7c:
01:c0:90:ed:69:a0:e2:b5:14:94:24:a8:65:a0:a1:
59:15:3e:61:13:4c:6d:b1:5e:08:97:10:a8:59:b4:
eb:c3:93:65:13:4d:5b:96:4f:e2:34:90:de:f5:ba:
51:a9:51:40:da:37:32:0e:fe:da:0d:35:3e:86:d8:
5d:2c:85:d1:06:45:85:60:1f:dd:9c:1f:a3:97:01:
40:59:1e:dd:0c:87:39:e3:5b:f4:fa:82:8d:78:c0:
fc:68:73:7d:a7:2c:1c:f6:35:61:3a:9b:95:96:cc:
78:4c:6d:9d:7b:fe:85:31:fe:6a:b8:ad:e1:03:8c:
cf:1e:c9:f3:02:12:da:45:d2:5d:8c:d3:63:de:6d:
00:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:60:8C:BD:A0:32:30:C8:AE:41:0F:53:9A:6F:B2:D5:6A:5B:7C:96
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NWCMvaAyMMiuQQ9Tmm-y1WpbfJY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.192.0/19
Signature Algorithm: sha256WithRSAEncryption
50:be:e0:12:17:55:6e:67:58:45:fe:cf:30:d5:61:5b:67:13:
95:2e:be:a7:53:26:90:fe:b5:0c:5a:5d:9f:49:07:6c:f6:c7:
43:24:00:b1:d8:75:3f:06:83:e0:5d:00:73:7d:f1:91:ae:4b:
c4:60:7c:b6:38:02:5f:ca:e6:02:b7:ce:ed:e8:44:d3:3a:97:
2d:f0:a9:77:01:1b:cc:e3:0b:e8:6b:12:e9:64:02:91:bc:b0:
c4:a5:8d:2b:2d:54:2c:9a:31:cf:a9:42:49:d5:61:e0:54:19:
2a:d6:d9:24:4a:0a:6b:e8:3a:92:ee:ce:65:a8:9c:dd:77:73:
f3:aa:cd:07:25:50:a8:bd:2f:d4:51:a8:ee:f8:cf:49:93:88:
3a:d2:d3:df:5b:d9:a8:68:ae:6d:7f:d0:a1:38:3e:76:36:42:
a5:66:6a:6e:9c:ca:70:4a:fe:14:6b:87:bf:af:8d:40:38:ef:
18:aa:f3:75:f2:76:1b:a5:6c:35:46:5f:4a:53:cc:7a:03:b5:
da:b8:fb:33:29:a0:6b:9a:46:5d:dc:de:6e:06:8d:78:79:92:
0c:94:23:dd:09:3e:a7:6d:27:18:3f:ad:c7:7a:d0:5f:f8:e3:
3a:7a:45:97:14:cd:47:27:e9:19:b1:8f:10:fc:a4:9d:49:62:
d1:dc:f1:89
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICC+QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM4NDlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM1NjA4Q0JEQTAzMjMw
QzhBRTQxMEY1MzlBNkZCMkQ1NkE1QjdDOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCexPBonD/L7cpEG1JqNsnB1jb4pjQXn92YZyRAfUQBwlTAYnLn
Ki+2OUzFIwofCZAZxd8n2AtoteXDhNaNeVFYGBPxGcEaUv0ClelGUBRaCQ3ysiTb
/9gIYJ49QtfrBAqA8n0g4EOBlK/FSppKnCzZCV4/ePPufAHAkO1poOK1FJQkqGWg
oVkVPmETTG2xXgiXEKhZtOvDk2UTTVuWT+I0kN71ulGpUUDaNzIO/toNNT6G2F0s
hdEGRYVgH92cH6OXAUBZHt0MhznjW/T6go14wPxoc32nLBz2NWE6m5WWzHhMbZ17
/oUx/mq4reEDjM8eyfMCEtpF0l2M02PebQAdAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUNWCMvaAyMMiuQQ9Tmm+y1WpbfJYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9OV0NNdmFBeU1NaXVR
UTlUbW0teTFXcGJmSlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQFlnTAMA0GCSqGSIb3DQEBCwUAA4IBAQBQvuASF1VuZ1hF/s8w1WFbZxOVLr6n
UyaQ/rUMWl2fSQds9sdDJACx2HU/BoPgXQBzffGRrkvEYHy2OAJfyuYCt87t6ETT
Opct8Kl3ARvM4wvoaxLpZAKRvLDEpY0rLVQsmjHPqUJJ1WHgVBkq1tkkSgpr6DqS
7s5lqJzdd3Pzqs0HJVCovS/UUaju+M9Jk4g60tPfW9moaK5tf9ChOD52NkKlZmpu
nMpwSv4Ua4e/r41AOO8YqvN18nYbpWw1Rl9KU8x6A7XauPszKaBrmkZd3N5uBo14
eZIMlCPdCT6nbScYP63HetBf+OM6ekWXFM1HJ+kZsY8Q/KSdSWLR3PGJ
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:48 2023 by rpki-client on console-ams.rpki-client.org