Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/W9YuFEcR56KUc_o8f7TJIFsFmcU.roa
File: W9YuFEcR56KUc_o8f7TJIFsFmcU.roa (raw, json)
Hash identifier: /EipIYW0w6aAhgeRGsnmoRbxU26oGMBvKS9eksNR9K8=
Subject key identifier: 5B:D6:2E:14:47:11:E7:A2:94:73:FA:3C:7F:B4:C9:20:5B:05:99:C5
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DD1
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/W9YuFEcR56KUc_o8f7TJIFsFmcU.roa
Signing time: Thu 29 Dec 2022 09:31:53 +0000
ROA not before: Thu 29 Dec 2022 09:31:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 118.150.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3537 (0xdd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5BD62E144711E7A29473FA3C7FB4C9205B0599C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:99:65:19:f6:1b:cf:8a:83:bc:80:f0:c8:22:
17:de:8a:dd:4f:86:52:ea:a6:e5:80:80:b0:35:ce:
de:d6:f9:14:33:58:95:e9:d1:20:50:89:2f:95:7f:
66:1e:14:44:f2:a8:b0:78:04:56:c1:68:40:1c:30:
90:78:73:f6:d9:3f:de:5c:5a:ef:62:e2:f5:14:bd:
91:bf:19:0d:23:cc:20:21:fe:da:de:e4:f6:8a:c3:
74:3d:89:51:b1:de:4f:cf:38:e3:88:2e:67:f1:d8:
7e:de:62:5c:c7:4d:14:94:9e:fc:83:8c:ad:0e:d2:
df:38:46:10:ae:a3:b0:96:f2:88:0a:d0:d4:18:07:
0f:8e:cc:cd:d2:ce:bf:be:9a:ef:54:65:ef:cc:05:
67:6a:50:d3:7f:ae:b9:07:52:ff:a2:cc:d9:01:f8:
7f:18:54:67:cb:f7:02:55:e6:57:69:6a:ff:77:6b:
76:39:22:be:f6:8c:76:98:01:ac:dd:a7:6c:cc:0e:
b2:e8:ed:67:73:cc:1b:d6:44:77:6a:d4:a9:c7:40:
c1:b9:f8:fd:5d:85:c9:fe:a1:03:36:c7:ae:73:79:
f0:58:0f:96:18:40:86:6b:62:bd:4c:c5:69:82:f0:
01:79:d6:10:d0:84:92:97:4f:2c:a2:95:a3:89:cf:
71:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:D6:2E:14:47:11:E7:A2:94:73:FA:3C:7F:B4:C9:20:5B:05:99:C5
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/W9YuFEcR56KUc_o8f7TJIFsFmcU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.0.0/17
Signature Algorithm: sha256WithRSAEncryption
3b:8e:aa:8b:36:76:6d:4d:8f:b5:3c:34:0a:89:32:2d:2a:c9:
e0:8a:9e:3a:37:a3:c1:6a:22:cb:07:36:54:cb:91:37:d8:35:
76:62:ab:fb:ad:14:bc:40:cd:b1:1c:95:c4:0a:fb:c1:68:83:
1a:29:4f:ed:7e:cb:1c:f5:81:8c:73:42:da:9a:30:a6:10:ac:
eb:41:2b:d4:5f:f6:ad:35:70:26:f3:f0:58:2f:b9:a9:5c:62:
61:ce:4a:bb:36:73:93:bd:9b:07:8a:aa:b2:74:38:51:72:da:
f8:7f:03:8c:c5:a0:3c:d0:15:80:22:75:64:05:e5:51:e5:6d:
ec:3f:54:5e:0a:0e:51:83:78:fc:3b:b5:89:a5:bd:5f:16:cf:
0a:b4:22:ad:fd:85:d4:d6:5c:61:7a:e9:b7:1b:66:9f:ad:ef:
96:40:6b:05:61:79:08:af:4b:ce:d9:26:0c:72:58:70:1d:a3:
08:30:03:26:07:c1:75:1a:19:d7:7d:70:da:6f:54:7b:44:91:
e8:03:3c:5e:f8:64:91:a2:cf:98:d3:00:a9:aa:d2:c8:6e:ea:
0c:b6:ba:ad:10:44:5e:ed:28:ea:87:33:00:b7:ae:d8:97:ab:
be:42:c8:b4:f0:66:c2:e7:b7:f7:08:4d:58:ac:a5:d0:3f:5c:
0c:4a:11:f9
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDdEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMxNTNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDVCRDYyRTE0NDcxMUU3
QTI5NDczRkEzQzdGQjRDOTIwNUIwNTk5QzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDImWUZ9hvPioO8gPDIIhfeit1PhlLqpuWAgLA1zt7W+RQzWJXp
0SBQiS+Vf2YeFETyqLB4BFbBaEAcMJB4c/bZP95cWu9i4vUUvZG/GQ0jzCAh/tre
5PaKw3Q9iVGx3k/POOOILmfx2H7eYlzHTRSUnvyDjK0O0t84RhCuo7CW8ogK0NQY
Bw+OzM3Szr++mu9UZe/MBWdqUNN/rrkHUv+izNkB+H8YVGfL9wJV5ldpav93a3Y5
Ir72jHaYAazdp2zMDrLo7WdzzBvWRHdq1KnHQMG5+P1dhcn+oQM2x65zefBYD5YY
QIZrYr1MxWmC8AF51hDQhJKXTyyilaOJz3FhAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUW9YuFEcR56KUc/o8f7TJIFsFmcUwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9XOVl1RkVjUjU2S1Vj
X284ZjdUSklGc0ZtY1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQHdpYAMA0GCSqGSIb3DQEBCwUAA4IBAQA7jqqLNnZtTY+1PDQKiTItKsngip46
N6PBaiLLBzZUy5E32DV2Yqv7rRS8QM2xHJXECvvBaIMaKU/tfssc9YGMc0LamjCm
EKzrQSvUX/atNXAm8/BYL7mpXGJhzkq7NnOTvZsHiqqydDhRctr4fwOMxaA80BWA
InVkBeVR5W3sP1ReCg5Rg3j8O7WJpb1fFs8KtCKt/YXU1lxheum3G2afre+WQGsF
YXkIr0vO2SYMclhwHaMIMAMmB8F1GhnXfXDab1R7RJHoAzxe+GSRos+Y0wCpqtLI
buoMtrqtEERe7SjqhzMAt67Yl6u+Qsi08GbC57f3CE1YrKXQP1wMShH5
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org