Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OifuZKyauGBJZ1oZRd5P7dVfNNo.roa
File: OifuZKyauGBJZ1oZRd5P7dVfNNo.roa (raw, json)
Hash identifier: leJ1DwArSSaIldHhhuVnclNzeM2grPSVI1ODnUabBr0=
Subject key identifier: 3A:27:EE:64:AC:9A:B8:60:49:67:5A:19:45:DE:4F:ED:D5:5F:34:DA
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C23
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OifuZKyauGBJZ1oZRd5P7dVfNNo.roa
Signing time: Wed 29 Sep 2021 02:39:04 +0000
ROA not before: Wed 29 Sep 2021 02:39:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 118.150.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3107 (0xc23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3A27EE64AC9AB86049675A1945DE4FEDD55F34DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c2:8f:fe:a6:11:45:be:53:6f:c0:8c:cb:df:
24:eb:8b:be:c0:37:26:3f:81:5f:1a:6f:35:56:b6:
37:d2:44:46:72:5b:39:01:4d:13:e2:32:63:35:0e:
5f:c9:12:1c:82:26:1e:f3:bc:63:41:d5:b3:e6:d6:
7e:6c:72:4e:ea:a3:39:27:0b:64:5e:62:c3:88:b8:
b6:ce:20:f0:83:06:1c:7b:06:b7:49:33:de:c7:24:
c7:64:c6:d2:0e:a8:3b:74:d7:14:86:aa:4c:07:32:
e6:d3:59:f8:dd:3d:75:96:d1:3e:aa:d9:37:48:9e:
38:5b:a1:32:1e:d3:3b:69:8a:1d:61:f5:db:fc:45:
ca:f9:3b:7a:d7:37:0d:37:93:da:15:8a:df:dd:5a:
40:c9:ed:60:e1:37:30:2a:5b:5c:8a:0d:9c:cf:87:
d0:a6:d3:a0:07:1d:a5:6b:d8:bf:0b:88:2a:3b:38:
3a:33:d7:62:89:4f:bf:78:f2:84:a6:65:a5:e3:b5:
8a:a0:14:01:79:02:61:6f:5a:44:c6:18:dd:cc:b7:
b8:72:ce:26:b9:f1:72:20:88:6f:32:ff:64:40:57:
d0:25:64:f3:76:ce:10:44:cc:9c:8a:61:72:99:ca:
76:d4:71:cc:db:f9:12:54:d8:c4:8d:c1:32:6a:7d:
f0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:27:EE:64:AC:9A:B8:60:49:67:5A:19:45:DE:4F:ED:D5:5F:34:DA
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OifuZKyauGBJZ1oZRd5P7dVfNNo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.248.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:f5:61:47:53:c9:1e:af:90:08:f9:e9:00:8e:00:2e:18:9c:
f0:6b:8f:6c:0e:cf:cf:a2:ee:f3:c3:c9:5a:ed:5e:6f:0d:83:
d1:ea:e6:00:bf:b8:8a:97:0d:67:41:3a:43:dd:c9:d3:81:9c:
13:7f:df:12:0d:0a:34:91:e6:b3:a4:c1:92:6a:2e:b9:8f:77:
cb:c5:2e:30:48:ab:0b:d4:86:ba:a8:94:bd:74:9e:97:ee:f5:
76:64:91:25:bf:97:32:da:e3:d1:11:48:87:74:df:e1:0f:1d:
e9:ae:19:f4:f9:6d:30:77:3e:5a:e1:6c:b5:b0:10:3c:9e:43:
f5:d2:47:96:06:e5:78:34:d9:68:99:71:cb:26:df:a8:d8:dc:
b0:e4:89:37:a2:21:ad:27:65:11:7f:de:60:c1:8b:04:02:47:
23:3a:df:68:cf:53:01:7c:f1:11:27:86:27:41:e0:ee:e1:e1:
93:6a:27:6a:f8:48:7b:99:35:94:98:01:7e:a9:2f:9b:e6:37:
f9:d3:ee:7c:7f:9e:4c:50:8b:1e:48:ac:5a:a4:34:ed:82:e9:
de:b8:9d:d0:f5:fc:2f:ea:2f:d9:a9:86:33:09:b2:89:92:d2:
e7:1c:63:7b:d7:58:3c:cd:dc:fa:14:a0:8b:f2:d9:78:44:02:
c8:36:ef:72
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDCMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM5MDRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDNBMjdFRTY0QUM5QUI4
NjA0OTY3NUExOTQ1REU0RkVERDU1RjM0REEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCvwo/+phFFvlNvwIzL3yTri77ANyY/gV8abzVWtjfSREZyWzkB
TRPiMmM1Dl/JEhyCJh7zvGNB1bPm1n5sck7qozknC2ReYsOIuLbOIPCDBhx7BrdJ
M97HJMdkxtIOqDt01xSGqkwHMubTWfjdPXWW0T6q2TdInjhboTIe0ztpih1h9dv8
Rcr5O3rXNw03k9oVit/dWkDJ7WDhNzAqW1yKDZzPh9Cm06AHHaVr2L8LiCo7ODoz
12KJT7948oSmZaXjtYqgFAF5AmFvWkTGGN3Mt7hyzia58XIgiG8y/2RAV9AlZPN2
zhBEzJyKYXKZynbUcczb+RJU2MSNwTJqffBFAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUOifuZKyauGBJZ1oZRd5P7dVfNNowHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9PaWZ1Wkt5YXVHQkpa
MW9aUmQ1UDdkVmZOTm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCdpb4MA0GCSqGSIb3DQEBCwUAA4IBAQBt9WFHU8ker5AI+ekAjgAuGJzwa49s
Ds/Pou7zw8la7V5vDYPR6uYAv7iKlw1nQTpD3cnTgZwTf98SDQo0keazpMGSai65
j3fLxS4wSKsL1Ia6qJS9dJ6X7vV2ZJElv5cy2uPREUiHdN/hDx3prhn0+W0wdz5a
4Wy1sBA8nkP10keWBuV4NNlomXHLJt+o2Nyw5Ik3oiGtJ2URf95gwYsEAkcjOt9o
z1MBfPERJ4YnQeDu4eGTaidq+Eh7mTWUmAF+qS+b5jf50+58f55MUIseSKxapDTt
guneuJ3Q9fwv6i/ZqYYzCbKJktLnHGN711g8zdz6FKCL8tl4RALINu9y
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org