Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/TpXPSwoXGNbKilge6limytebe3E.roa
File: TpXPSwoXGNbKilge6limytebe3E.roa (raw, json)
Hash identifier: aoEd9qaK3kxkFGBrI+zXdpRBiyJD1bHe5rWnaichLe0=
Subject key identifier: 4E:95:CF:4B:0A:17:18:D6:CA:8A:58:1E:EA:58:A6:CA:D7:9B:7B:71
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/TpXPSwoXGNbKilge6limytebe3E.roa
Signing time: Thu 15 Sep 2022 02:39:11 +0000
ROA not before: Thu 15 Sep 2022 02:39:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 150.116.112.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4E95CF4B0A1718D6CA8A581EEA58A6CAD79B7B71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:29:5f:82:58:5a:a5:3b:76:50:1c:4e:ff:aa:
70:01:fa:34:35:76:bb:24:34:f1:81:28:d0:a7:ee:
1b:b6:4c:17:52:00:5e:a4:38:16:ac:dc:a7:07:db:
ac:96:5e:ac:a0:56:d0:8e:1f:62:df:59:24:81:8f:
af:a2:08:77:a9:ad:56:e7:9c:ef:97:41:52:c3:90:
21:8f:60:75:22:57:81:3c:5e:f3:e0:0d:e1:fe:98:
a0:04:d5:5e:72:06:0f:3d:e1:ed:01:f0:84:26:18:
2b:7c:9f:e1:94:42:17:a6:83:1e:da:26:79:f1:f5:
30:fa:f3:93:9b:a8:b5:14:75:e9:8a:3d:d4:40:03:
d3:55:ae:db:ae:e3:fb:00:9e:9c:d1:9a:b2:db:b7:
b6:c7:e8:55:5e:25:48:51:b8:3d:b1:28:30:5e:5e:
0a:82:6d:8c:af:e9:4b:2b:f3:72:eb:65:eb:7f:1c:
5d:5d:d7:9f:34:22:d0:bd:2f:6c:91:80:78:9a:b3:
e8:ad:09:70:96:4f:4d:ed:be:e7:da:39:a1:41:d6:
a3:75:ce:6e:ac:bd:75:49:2f:89:9f:39:9f:59:b3:
b1:87:ff:2e:ab:38:9e:37:ca:38:c5:ec:2b:2e:11:
20:7e:78:56:de:90:b4:aa:e2:f0:c8:12:3e:cd:0a:
75:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:95:CF:4B:0A:17:18:D6:CA:8A:58:1E:EA:58:A6:CA:D7:9B:7B:71
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/TpXPSwoXGNbKilge6limytebe3E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.112.0/22
Signature Algorithm: sha256WithRSAEncryption
76:2a:9c:ff:82:fe:e5:6b:c4:45:01:c1:38:91:e0:08:52:9b:
30:92:b4:73:04:13:df:82:a2:d6:f1:be:89:5e:ad:34:bf:e1:
b8:2d:5c:40:ab:cb:2a:95:64:34:00:19:23:79:31:6e:6b:1c:
c2:88:c1:87:bd:de:b2:a2:98:f0:8e:ca:ce:f0:d9:96:bb:9a:
05:7c:e1:9c:bf:4f:dc:ca:08:b0:d2:69:0a:c9:c4:d8:f3:f0:
a7:85:6c:49:39:14:35:de:b7:b2:f8:7d:b0:52:c5:36:f5:7c:
49:10:9f:71:7e:4d:ed:43:fa:7c:97:64:df:a9:59:9c:4e:f6:
de:b5:8d:be:55:aa:a2:cd:6a:2f:c9:7c:8d:26:10:77:18:e1:
33:ee:46:a4:d1:29:ee:36:9e:99:3c:f6:a6:20:93:2c:3f:02:
d1:e6:c4:94:82:9d:d2:7c:11:0a:b7:44:30:8f:ab:41:02:82:
e8:d9:79:06:72:75:32:89:c0:b7:e4:e1:50:1c:96:3d:fa:4e:
d9:17:0a:2c:c1:13:1c:87:a0:dd:80:be:ff:85:5b:b1:80:80:
3e:f2:7b:d2:02:93:35:84:f8:e2:96:2f:0e:54:0a:72:db:d1:
ef:39:54:43:7f:ee:f5:3b:4e:7c:25:6a:44:5f:35:e2:b7:1c:
ab:99:7b:1f
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjA5MTUw
MjM5MTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDRFOTVDRjRCMEExNzE4
RDZDQThBNTgxRUVBNThBNkNBRDc5QjdCNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpKV+CWFqlO3ZQHE7/qnAB+jQ1drskNPGBKNCn7hu2TBdSAF6k
OBas3KcH26yWXqygVtCOH2LfWSSBj6+iCHeprVbnnO+XQVLDkCGPYHUiV4E8XvPg
DeH+mKAE1V5yBg894e0B8IQmGCt8n+GUQhemgx7aJnnx9TD685ObqLUUdemKPdRA
A9NVrtuu4/sAnpzRmrLbt7bH6FVeJUhRuD2xKDBeXgqCbYyv6Usr83LrZet/HF1d
1580ItC9L2yRgHias+itCXCWT03tvufaOaFB1qN1zm6svXVJL4mfOZ9Zs7GH/y6r
OJ43yjjF7CsuESB+eFbekLSq4vDIEj7NCnXHAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUTpXPSwoXGNbKilge6limytebe3EwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9UcFhQU3dvWEdOYktp
bGdlNmxpbXl0ZWJlM0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQClnRwMA0GCSqGSIb3DQEBCwUAA4IBAQB2Kpz/gv7la8RFAcE4keAIUpswkrRz
BBPfgqLW8b6JXq00v+G4LVxAq8sqlWQ0ABkjeTFuaxzCiMGHvd6yopjwjsrO8NmW
u5oFfOGcv0/cygiw0mkKycTY8/CnhWxJORQ13rey+H2wUsU29XxJEJ9xfk3tQ/p8
l2TfqVmcTvbetY2+VaqizWovyXyNJhB3GOEz7kak0SnuNp6ZPPamIJMsPwLR5sSU
gp3SfBEKt0Qwj6tBAoLo2XkGcnUyicC35OFQHJY9+k7ZFwoswRMch6DdgL7/hVux
gIA+8nvSApM1hPjili8OVApy29HvOVRDf+71O058JWpEXzXitxyrmXsf
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org