Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/UlEcMh9ABYmcuuit0vNkgT1U83c.roa
File: UlEcMh9ABYmcuuit0vNkgT1U83c.roa (raw, json)
Hash identifier: OE4Ud24PMMG8ELWxf1zjVI9RPlA6QoRBE4NGlu4cZ9I=
Subject key identifier: 52:51:1C:32:1F:40:05:89:9C:BA:E8:AD:D2:F3:64:81:3D:54:F3:77
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F81
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/UlEcMh9ABYmcuuit0vNkgT1U83c.roa
Signing time: Fri 01 Sep 2023 08:29:13 +0000
ROA not before: Fri 01 Sep 2023 08:29:13 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 63199
IP address blocks: 203.163.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3969 (0xf81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:13 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=52511C321F4005899CBAE8ADD2F364813D54F377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8c:6d:1b:54:51:5f:ee:ab:90:03:22:07:51:
9b:28:83:0e:e6:a4:b6:16:c7:38:a7:d6:16:0b:fe:
f9:7c:ce:fe:79:96:f0:57:56:b0:e5:19:d0:1f:30:
83:89:4f:1c:e1:5e:07:1f:35:7b:92:90:ea:44:52:
82:42:30:d2:96:65:4c:f4:86:b7:8b:23:65:d9:e6:
47:58:9b:b5:2f:58:41:a2:68:7c:b2:bd:77:e4:25:
94:a2:cc:8a:47:fb:11:09:1d:5c:3b:40:7e:85:d6:
3f:f3:d2:11:76:26:d8:40:02:9c:23:b4:8b:30:27:
f3:7b:af:02:11:2b:03:ef:fb:be:3b:f1:ad:2f:88:
5f:1d:a1:e6:26:40:4e:0c:2a:a9:da:88:33:9d:90:
18:ad:02:6e:60:04:4d:3b:7e:cc:a0:6f:eb:32:ae:
4f:64:b9:e6:7b:0b:c0:ae:a2:b5:4b:73:9b:e7:58:
d0:78:b4:01:2b:61:bb:ae:fb:a9:26:48:4c:12:0c:
73:a1:e0:e4:46:c8:b9:d0:ed:25:87:81:da:89:62:
ca:d3:55:5c:bb:a6:48:ad:3f:14:67:d6:b5:60:1d:
7f:bb:dc:3d:f8:70:73:73:7d:50:b0:9f:7a:56:ef:
d0:44:9a:44:25:e4:5e:a7:83:e7:f5:3e:d9:1a:e2:
33:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:51:1C:32:1F:40:05:89:9C:BA:E8:AD:D2:F3:64:81:3D:54:F3:77
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/UlEcMh9ABYmcuuit0vNkgT1U83c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.216.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:9c:b9:72:a5:de:d1:e2:23:86:e7:76:5e:45:de:4f:24:eb:
21:4b:6f:19:0f:8c:bf:18:9e:32:aa:ab:58:06:c2:0a:73:14:
2d:de:8a:58:4d:fe:1f:ca:03:7b:71:48:4d:af:36:79:bc:d2:
c1:2e:64:8e:05:82:cf:a0:c4:cb:93:75:8f:1b:34:8d:67:e4:
cb:39:a5:2f:44:48:6f:54:75:ba:83:5b:cc:90:a8:8a:83:30:
1f:f5:fb:6d:61:37:ee:7b:38:ab:99:fd:94:1c:b1:7f:c2:b3:
b9:58:15:4b:17:54:0a:9b:9e:2b:e1:97:4e:cf:e4:b7:07:48:
5f:fe:56:9e:16:9e:bb:46:c6:a0:17:de:06:b1:9b:8d:4f:7e:
4c:89:ae:26:bd:08:ea:3f:26:40:6e:08:b4:6c:54:9b:c4:ca:
74:78:cf:3a:67:3c:db:e8:a1:a6:35:12:44:8c:03:68:85:f3:
3e:e6:20:de:41:ab:5e:4e:67:a8:67:ce:fc:3c:88:ba:82:d9:
a6:1f:d9:e2:e9:a8:c5:64:a1:41:1e:c1:7d:ac:66:08:1f:37:
58:93:55:a2:14:fb:01:7b:6f:2d:b0:3c:fd:32:a0:19:0a:85:
c2:7a:d3:b2:3d:5c:7b:2f:1e:79:ca:b7:a9:1e:75:41:e4:89:
85:8a:9b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:14 2025 by rpki-client