Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QwQtQkW6jv9khujZ2uNjkddEp_4.roa
File: QwQtQkW6jv9khujZ2uNjkddEp_4.roa (raw, json)
Hash identifier: kyy5lnP2QDtKiBDuriLT4wSbWvj1o2wNFK1Xak4tQU0=
Subject key identifier: 43:04:2D:42:45:BA:8E:FF:64:86:E8:D9:DA:E3:63:91:D7:44:A7:FE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QwQtQkW6jv9khujZ2uNjkddEp_4.roa
Signing time: Thu 15 Sep 2022 02:38:55 +0000
ROA not before: Thu 15 Sep 2022 02:38:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 150.117.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:38:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=43042D4245BA8EFF6486E8D9DAE36391D744A7FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d2:99:e3:14:12:a0:a0:4c:a4:14:14:58:30:
4e:01:4b:ef:12:7f:40:d5:c4:a7:b5:4e:24:0c:b0:
6a:95:5f:58:50:5d:56:fd:37:b4:73:14:66:5e:e5:
cb:c6:85:d1:07:ac:99:85:2a:07:a0:d5:40:b8:78:
23:0a:48:8e:a1:c9:55:fe:79:e0:5e:6a:b2:b2:c5:
6b:6f:c5:34:8c:e9:85:80:04:a7:0f:91:d5:62:18:
70:56:29:d5:8e:67:22:5d:7e:ec:4a:31:a3:93:19:
9e:3b:ec:85:93:7d:17:3c:2e:74:5e:29:c1:35:f2:
3a:81:47:ff:08:c7:0a:6d:f2:b3:35:76:b5:69:0c:
ec:37:50:f4:cb:47:e2:1b:5b:60:34:72:90:ff:6b:
bf:b5:4e:98:53:a0:09:fd:56:c8:bf:20:35:40:89:
50:f7:9b:d3:79:a4:63:26:de:34:76:56:f9:e2:a7:
87:2a:9d:8e:f1:05:4b:a8:7c:c3:bc:63:da:68:c6:
09:1e:69:3b:bb:b1:6d:78:1b:32:66:ae:c8:2a:3e:
d4:62:52:c1:e2:5a:9a:e0:96:57:df:8b:51:bb:b0:
c8:2f:e2:5b:01:d0:15:eb:df:da:ad:fb:9b:e9:e3:
19:5c:96:9f:8a:27:42:1d:da:44:57:31:34:e4:66:
72:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:04:2D:42:45:BA:8E:FF:64:86:E8:D9:DA:E3:63:91:D7:44:A7:FE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QwQtQkW6jv9khujZ2uNjkddEp_4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.48.0/21
Signature Algorithm: sha256WithRSAEncryption
b0:e4:0f:5b:a9:4e:93:31:fc:10:fa:36:eb:83:5f:2e:00:0d:
bd:ea:ae:7b:8e:07:a7:0f:f9:5c:a3:ca:81:f9:a1:58:a4:54:
15:da:20:59:61:a3:52:0d:0e:c9:7c:ad:b3:39:20:e8:77:a0:
02:02:4a:43:ab:a3:17:ae:2f:e2:c9:a3:96:dd:b8:83:78:da:
bb:36:dd:3e:1d:9b:b3:33:e9:fd:a2:67:01:6a:99:f0:dd:0d:
59:56:31:72:1f:e3:05:1e:3c:f7:a7:ec:49:62:af:0d:53:4a:
28:96:9c:58:79:f3:49:a1:12:77:23:df:da:07:eb:90:8a:60:
c3:7b:7b:ae:b8:c2:df:74:bc:85:bc:86:a5:58:94:41:1b:57:
42:3d:bc:c2:d5:84:46:3c:0a:40:bc:bd:ae:34:52:b7:ae:8a:
c8:5c:98:e1:69:cf:83:e0:ef:80:5e:88:f0:ba:10:61:a9:5a:
8b:42:6d:b5:86:17:7a:c8:b3:73:df:3f:99:22:58:db:e3:25:
cf:76:a8:1e:d5:a0:29:ac:a4:92:0a:f4:9c:47:2e:10:41:78:
41:e6:d7:41:34:cc:39:d2:3b:78:94:59:f9:6f:13:6c:96:fa:
a8:a8:b0:fc:61:e4:84:d3:82:ce:fb:77:27:bf:82:85:0c:77:
4a:cb:66:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:40 2025 by rpki-client