Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QDgztbdtZL3SEEL-JwvHad1Ty4U.roa
File: QDgztbdtZL3SEEL-JwvHad1Ty4U.roa (raw, json)
Hash identifier: SbCrpWt5d7RfCUOAo0KYkw4/PCWaU77Lmxyq2/PhYiQ=
Subject key identifier: 40:38:33:B5:B7:6D:64:BD:D2:10:42:FE:27:0B:C7:69:DD:53:CB:85
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DF2
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QDgztbdtZL3SEEL-JwvHad1Ty4U.roa
Signing time: Thu 29 Dec 2022 09:32:03 +0000
ROA not before: Thu 29 Dec 2022 09:32:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 150.117.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3570 (0xdf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=403833B5B76D64BDD21042FE270BC769DD53CB85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e4:4f:c5:52:7b:5f:83:f0:45:30:6b:95:d8:
c2:b6:b2:b9:7f:99:ac:91:19:21:e2:cf:49:9e:35:
e6:1d:d6:4a:a2:62:03:06:08:8b:fc:64:f9:a0:d4:
fe:f2:29:6b:cb:ef:c8:3e:f8:dc:06:7c:9c:90:9f:
3d:6f:6a:f3:4e:5e:2d:37:6d:34:b7:1e:3c:c4:fc:
d3:03:9b:04:73:94:61:19:b3:e1:c9:6d:e6:3c:c0:
b1:c4:a7:db:1f:72:cb:49:83:ef:8d:9f:88:91:0e:
d4:7f:de:5e:a8:1a:d8:92:13:ef:59:cf:3c:a4:b7:
b4:45:97:56:af:f1:47:f7:75:e0:d3:7b:bf:68:64:
ec:4b:80:e5:f3:f6:b3:3e:7b:32:77:d0:1f:24:76:
3e:7d:76:6c:c3:b7:f4:83:68:8d:8a:c9:f2:db:40:
69:30:f1:0f:85:af:46:10:9f:dc:89:b3:2d:34:04:
dd:7d:c0:45:c0:ea:23:de:01:af:36:38:06:30:65:
0f:2b:d7:b5:36:bd:ba:00:91:09:71:d8:5a:7d:93:
8e:ac:95:a2:06:78:4a:08:d2:81:82:9a:77:3b:d8:
bf:30:cf:e8:42:39:44:82:98:04:92:5b:5c:6c:0b:
5f:ce:3d:4a:41:54:fa:86:f8:c9:19:5e:60:5d:a9:
0e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:38:33:B5:B7:6D:64:BD:D2:10:42:FE:27:0B:C7:69:DD:53:CB:85
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QDgztbdtZL3SEEL-JwvHad1Ty4U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.64.0/20
Signature Algorithm: sha256WithRSAEncryption
57:bb:58:a4:4c:f8:a7:98:92:92:26:29:12:5a:2f:4f:49:6d:
10:17:6a:b8:9f:94:a0:c8:22:79:bc:f3:4d:39:5c:fe:02:6b:
dc:d9:a2:fe:ef:7b:ea:8e:bc:c1:98:c9:d9:8d:0e:c3:ec:7a:
ca:2b:29:a8:0c:77:00:70:94:f2:b3:db:9f:c9:77:bf:7a:be:
9a:72:32:2f:5b:19:91:0e:c2:75:54:18:01:4f:90:0b:d5:c3:
3f:09:05:45:e5:01:50:7b:3a:73:f6:32:eb:a3:30:54:bd:d3:
4f:20:c1:7d:b9:1d:d7:8f:32:25:68:ea:73:ba:c8:16:17:75:
9f:85:be:39:94:a3:99:96:17:77:30:49:05:92:49:39:68:50:
e1:a1:41:d0:46:f9:2d:7e:6f:8e:c3:ee:a3:6b:ec:81:88:c3:
ff:78:81:b6:0c:fe:b2:8f:a5:95:0b:e0:48:07:b5:f3:ff:b5:
37:ac:24:45:00:7e:61:ac:de:7c:7a:0d:5f:f6:cd:40:55:42:
7d:d9:df:2e:f9:cf:82:36:05:c3:99:44:f8:7d:a7:1c:52:38:
58:39:12:3a:2d:ed:76:2c:a3:6a:37:a4:ec:3f:92:38:c0:a0:
6d:2f:a3:f1:7d:35:51:ec:b3:cc:9e:2d:27:44:78:5e:0b:0d:
d1:0e:3d:9c
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDfIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMyMDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQwMzgzM0I1Qjc2RDY0
QkREMjEwNDJGRTI3MEJDNzY5REQ1M0NCODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDm5E/FUntfg/BFMGuV2MK2srl/mayRGSHiz0meNeYd1kqiYgMG
CIv8ZPmg1P7yKWvL78g++NwGfJyQnz1vavNOXi03bTS3HjzE/NMDmwRzlGEZs+HJ
beY8wLHEp9sfcstJg++Nn4iRDtR/3l6oGtiSE+9Zzzykt7RFl1av8Uf3deDTe79o
ZOxLgOXz9rM+ezJ30B8kdj59dmzDt/SDaI2KyfLbQGkw8Q+Fr0YQn9yJsy00BN19
wEXA6iPeAa82OAYwZQ8r17U2vboAkQlx2Fp9k46slaIGeEoI0oGCmnc72L8wz+hC
OUSCmASSW1xsC1/OPUpBVPqG+MkZXmBdqQ4nAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUQDgztbdtZL3SEEL+JwvHad1Ty4UwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9RRGd6dGJkdFpMM1NF
RUwtSnd2SGFkMVR5NFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQElnVAMA0GCSqGSIb3DQEBCwUAA4IBAQBXu1ikTPinmJKSJikSWi9PSW0QF2q4
n5SgyCJ5vPNNOVz+Amvc2aL+73vqjrzBmMnZjQ7D7HrKKymoDHcAcJTys9ufyXe/
er6acjIvWxmRDsJ1VBgBT5AL1cM/CQVF5QFQezpz9jLrozBUvdNPIMF9uR3XjzIl
aOpzusgWF3Wfhb45lKOZlhd3MEkFkkk5aFDhoUHQRvktfm+Ow+6ja+yBiMP/eIG2
DP6yj6WVC+BIB7Xz/7U3rCRFAH5hrN58eg1f9s1AVUJ92d8u+c+CNgXDmUT4facc
UjhYORI6Le12LKNqN6TsP5I4wKBtL6PxfTVR7LPMni0nRHheCw3RDj2c
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:18 2025 by rpki-client