Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/TFmaKcYUzzl85EXco1OsLGCLZxc.roa
File: TFmaKcYUzzl85EXco1OsLGCLZxc.roa (raw, json)
Hash identifier: dYFflzYZZ36PMmyPpVp0CbagWi2IiNK7T8jPAh9K9iM=
Subject key identifier: 4C:59:9A:29:C6:14:CF:39:7C:E4:45:DC:A3:53:AC:2C:60:8B:67:17
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C2E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/TFmaKcYUzzl85EXco1OsLGCLZxc.roa
Signing time: Wed 29 Sep 2021 02:39:07 +0000
ROA not before: Wed 29 Sep 2021 02:39:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10085
IP address blocks: 223.26.92.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3118 (0xc2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4C599A29C614CF397CE445DCA353AC2C608B6717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b1:aa:08:75:dd:92:b9:8b:76:aa:9f:53:98:
46:ea:b3:7b:b6:24:97:90:e2:87:b6:ad:ca:14:73:
a2:e2:b5:60:1b:2a:02:af:66:2c:81:95:5d:97:33:
39:6d:0d:4c:85:59:a0:eb:6b:21:ae:50:72:af:97:
cb:d7:6d:0b:b4:7d:6c:f6:f1:2c:f4:a5:e4:5c:5f:
c1:f3:cc:e2:b5:99:ff:03:7a:b8:20:2e:bc:1a:2d:
20:7e:c0:d2:fa:7b:5e:ee:7c:ca:12:83:ef:0e:39:
33:47:ca:66:a3:8b:68:a1:bf:28:f6:a7:33:50:1d:
86:cf:37:5e:11:91:bf:11:6d:e6:a3:bd:0f:48:82:
e3:13:b4:19:fc:a3:d8:0c:9b:af:b0:30:bf:c3:b4:
19:3a:9d:4f:23:36:4b:d8:ee:4f:49:b9:61:e1:18:
f5:05:b1:61:92:a3:69:66:d3:e4:ce:31:08:3b:9d:
00:83:7d:88:4e:c8:2b:cc:c9:f2:e2:11:bd:5d:d8:
93:a4:6a:6b:b4:87:0c:39:c1:ea:f1:ab:db:9e:66:
b6:87:1f:5f:10:fe:a7:28:8b:90:51:01:c1:40:31:
5c:36:1e:64:81:67:f4:7f:74:de:fb:89:75:43:0e:
84:46:ba:7a:05:07:f5:70:11:44:b9:e6:1e:4f:1c:
44:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:59:9A:29:C6:14:CF:39:7C:E4:45:DC:A3:53:AC:2C:60:8B:67:17
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/TFmaKcYUzzl85EXco1OsLGCLZxc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.92.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:b3:4d:c8:81:d7:57:4a:f6:76:01:e3:ae:65:00:18:8f:6e:
c9:fa:51:f2:11:68:3a:1c:bd:09:dc:bb:05:f4:3e:a7:ac:ed:
db:0c:30:60:f7:61:9d:1b:b5:b0:da:df:08:e2:7d:5f:68:7a:
7a:59:9c:c0:c4:c4:8e:dd:01:05:36:53:32:1a:72:88:9e:e0:
b3:a6:4e:3d:31:32:28:60:32:61:2b:fb:86:d5:65:cc:7c:c3:
1d:31:02:98:e7:a9:49:c0:46:5b:05:bb:dd:c3:77:0e:28:35:
ac:3e:6b:2b:c7:1e:77:01:c0:8d:e9:90:26:ad:52:a5:1a:67:
d6:75:1c:22:03:77:9e:34:ef:bd:7b:f6:5c:37:c1:03:a9:c7:
db:aa:c4:10:3f:d9:5c:8c:de:45:1e:71:1b:6f:0e:8b:76:74:
bf:62:50:4f:bc:f9:c6:92:05:90:74:56:e8:48:93:08:43:91:
aa:18:f6:c8:bd:a3:c1:90:88:62:f3:67:60:df:45:f0:0a:d8:
11:39:26:4a:29:42:5f:f2:b4:1a:0c:b6:ba:40:92:8b:03:16:
f5:ec:c2:19:95:85:45:77:06:92:ef:43:e8:cd:81:b7:e6:36:
23:da:20:a8:53:9d:c7:8e:d5:8a:87:83:51:3a:bf:ee:61:af:
07:82:71:bd
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDC4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM5MDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDRDNTk5QTI5QzYxNENG
Mzk3Q0U0NDVEQ0EzNTNBQzJDNjA4QjY3MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+saoIdd2SuYt2qp9TmEbqs3u2JJeQ4oe2rcoUc6LitWAbKgKv
ZiyBlV2XMzltDUyFWaDrayGuUHKvl8vXbQu0fWz28Sz0peRcX8HzzOK1mf8Dergg
LrwaLSB+wNL6e17ufMoSg+8OOTNHymaji2ihvyj2pzNQHYbPN14Rkb8RbeajvQ9I
guMTtBn8o9gMm6+wML/DtBk6nU8jNkvY7k9JuWHhGPUFsWGSo2lm0+TOMQg7nQCD
fYhOyCvMyfLiEb1d2JOkamu0hww5werxq9ueZraHH18Q/qcoi5BRAcFAMVw2HmSB
Z/R/dN77iXVDDoRGunoFB/VwEUS55h5PHESNAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUTFmaKcYUzzl85EXco1OsLGCLZxcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9URm1hS2NZVXp6bDg1
RVhjbzFPc0xHQ0xaeGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQC3xpcMA0GCSqGSIb3DQEBCwUAA4IBAQCps03IgddXSvZ2AeOuZQAYj27J+lHy
EWg6HL0J3LsF9D6nrO3bDDBg92GdG7Ww2t8I4n1faHp6WZzAxMSO3QEFNlMyGnKI
nuCzpk49MTIoYDJhK/uG1WXMfMMdMQKY56lJwEZbBbvdw3cOKDWsPmsrxx53AcCN
6ZAmrVKlGmfWdRwiA3eeNO+9e/ZcN8EDqcfbqsQQP9lcjN5FHnEbbw6LdnS/YlBP
vPnGkgWQdFboSJMIQ5GqGPbIvaPBkIhi82dg30XwCtgROSZKKUJf8rQaDLa6QJKL
Axb17MIZlYVFdwaS70PozYG35jYj2iCoU53HjtWKh4NROr/uYa8HgnG9
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org