Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/U74CuqFPvd_Iz0tKVKLspS7hMqY.roa
File: U74CuqFPvd_Iz0tKVKLspS7hMqY.roa (raw, json)
Hash identifier: kZ640oW5YoMTBKZKfifirM+n4zMcHRoX3qiRuRfXchc=
Subject key identifier: 53:BE:02:BA:A1:4F:BD:DF:C8:CF:4B:4A:54:A2:EC:A5:2E:E1:32:A6
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DC0
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/U74CuqFPvd_Iz0tKVKLspS7hMqY.roa
Signing time: Thu 29 Dec 2022 09:31:49 +0000
ROA not before: Thu 29 Dec 2022 09:31:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 118.150.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3520 (0xdc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=53BE02BAA14FBDDFC8CF4B4A54A2ECA52EE132A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1e:6c:d4:d0:db:44:74:72:a0:4a:52:36:f2:
bd:4d:0e:35:0a:5e:be:f7:39:35:eb:40:0e:ee:a1:
0e:d7:5d:03:87:c9:b3:4f:10:cf:16:63:99:23:4c:
de:80:8c:26:b8:84:6b:e9:2e:a6:77:b6:9b:75:d5:
4b:91:73:96:e0:42:18:02:da:e0:09:f3:1c:fa:d4:
ba:ff:53:17:8c:b1:53:56:ba:dd:e5:1f:c7:3c:cf:
b0:7b:ef:cd:8c:b4:69:18:e2:eb:ab:4d:96:f5:ea:
41:84:d3:99:c4:0c:8d:42:ee:c4:13:08:c7:04:e0:
1a:4b:82:a3:5b:0e:05:07:52:49:7b:4e:71:7a:56:
63:74:7f:20:6b:7c:22:5b:b4:61:7b:7b:74:8c:61:
8f:5c:e4:b9:c7:82:e9:f2:23:ea:9b:bc:1a:b2:55:
cf:a9:6b:f3:bb:e9:68:53:60:80:79:09:6a:3c:f4:
fc:ca:a5:bb:dc:7d:80:ec:02:23:ff:92:d3:0a:9b:
98:d5:aa:85:92:0b:09:48:e4:6a:d3:cc:c6:31:1e:
e2:a9:a5:c9:09:bb:9e:08:15:9c:2f:96:e9:06:da:
1e:81:cd:ec:53:84:da:5d:f5:5a:9e:1d:e5:00:a9:
3d:b0:bd:39:53:a1:e0:3f:67:5f:09:b9:5c:9c:d0:
cf:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BE:02:BA:A1:4F:BD:DF:C8:CF:4B:4A:54:A2:EC:A5:2E:E1:32:A6
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/U74CuqFPvd_Iz0tKVKLspS7hMqY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.252.0/22
Signature Algorithm: sha256WithRSAEncryption
46:3d:bd:ce:91:d6:ee:32:e7:92:88:41:db:59:2f:ce:0a:77:
a4:cd:ac:ec:5b:4f:62:dc:d7:b0:c8:06:a0:b2:49:bb:bd:07:
0a:98:e2:63:72:72:34:73:3e:12:39:14:78:7b:1c:57:b5:df:
33:22:23:4c:cb:ba:82:5c:b3:d1:6b:6a:99:32:78:2d:2d:8d:
b6:cb:ba:d5:9d:b7:bd:ce:eb:a5:df:1b:b2:a8:6e:49:23:99:
1c:de:7d:87:c8:56:79:cc:77:a9:16:08:78:92:bc:19:0d:34:
ef:8a:d3:89:aa:f1:33:b4:5a:c6:08:79:f4:2e:03:d4:78:95:
67:5a:68:20:89:3c:19:94:e4:79:86:c1:5f:09:3d:aa:7a:31:
0c:51:f7:3d:72:dd:85:69:b5:ed:3e:2d:29:c5:bb:b9:23:97:
28:22:96:21:c0:7e:bd:d4:5e:fb:59:bc:cf:29:c6:d5:65:a1:
05:0f:8b:13:c9:7e:8e:df:63:79:42:75:cd:8f:24:56:76:bc:
33:e8:e6:be:53:91:a3:34:3a:2d:ab:36:07:27:d0:02:2f:fe:
1a:3b:5c:ef:8c:fb:e6:e6:00:00:2d:da:67:29:6d:81:39:bd:
1b:11:b2:d3:55:23:39:89:ad:9f:d7:ad:81:8d:63:92:4f:88:
eb:84:48:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:02:13 2025 by rpki-client