Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XiPI48kk7trJ4FD5L-lXRLB0pWs.roa
File: XiPI48kk7trJ4FD5L-lXRLB0pWs.roa (raw, json)
Hash identifier: 3AORt5oSbjyuzU10V7Bmyo/oyJry4D6PWvNvx6az1r8=
Subject key identifier: 5E:23:C8:E3:C9:24:EE:DA:C9:E0:50:F9:2F:E9:57:44:B0:74:A5:6B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A7E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XiPI48kk7trJ4FD5L-lXRLB0pWs.roa
Signing time: Sun 07 Feb 2021 11:49:55 +0000
ROA not before: Sun 07 Feb 2021 11:49:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2686 (0xa7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:49:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5E23C8E3C924EEDAC9E050F92FE95744B074A56B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cb:6d:76:fe:dc:88:90:32:f4:4c:1a:98:ee:
a2:8c:ce:cc:f6:10:06:0d:d0:71:07:95:09:7a:b9:
57:cc:76:70:c5:5d:16:c0:48:a7:a7:83:e7:87:65:
08:16:b8:c5:1e:f6:ae:35:3f:85:63:9d:ef:de:25:
4a:d1:03:07:e3:4a:19:d1:f6:44:cd:ff:40:b4:8f:
9c:08:61:5d:a7:ce:fc:7b:5e:f5:c7:f5:6d:d6:76:
33:bf:93:ad:d4:04:78:e0:43:cc:23:03:5f:8a:61:
b5:65:f6:03:b5:19:b6:d2:78:67:34:27:c0:3f:1c:
4a:d7:a0:e8:5b:76:0a:c0:cd:6e:c8:dc:b7:51:48:
a9:44:46:c1:f1:c7:ef:19:a8:79:cd:3d:82:e4:2c:
59:fc:d1:d8:60:1d:05:b0:26:e0:dd:28:9b:07:fc:
c2:77:16:43:cb:44:72:68:7e:78:bb:44:78:bd:09:
a1:ec:c5:19:24:7c:03:ef:b7:7c:70:b9:8a:e7:b2:
32:2d:2c:cd:d0:b6:8a:bd:55:88:e6:62:be:f8:36:
71:ff:a4:af:25:40:94:59:8a:ae:ae:48:85:ae:57:
73:1f:cf:10:65:ba:4d:e7:97:5a:e8:0c:6e:4c:9a:
4b:5c:c4:cb:13:b5:a8:de:44:c1:72:d4:72:99:a5:
2c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:23:C8:E3:C9:24:EE:DA:C9:E0:50:F9:2F:E9:57:44:B0:74:A5:6B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XiPI48kk7trJ4FD5L-lXRLB0pWs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.176.0/20
Signature Algorithm: sha256WithRSAEncryption
22:c9:f9:9e:f9:16:2f:7f:d2:4b:41:27:c5:e5:78:02:d3:dd:
aa:c2:79:89:eb:1b:e6:95:10:e3:46:cf:25:c5:e7:92:b8:80:
69:85:4d:6c:37:f2:34:8e:73:dc:c4:5b:96:5c:30:fe:b0:55:
ca:4e:44:3f:01:4a:17:bc:79:af:12:dd:e0:16:d5:f4:e0:a8:
aa:6f:af:fb:e2:6e:ab:d8:e2:c2:b4:42:8f:62:e3:3b:03:95:
06:5d:78:33:f9:76:cf:81:2b:d6:c7:d7:6a:cf:87:3d:12:09:
1a:ac:be:fe:41:ca:44:54:51:de:1d:c2:10:67:ce:d5:e6:d1:
9e:96:67:90:05:3e:72:36:f0:d9:41:a6:b9:4e:0e:36:45:d9:
ea:4e:6f:4d:f9:40:a6:e3:03:54:c4:3a:9e:33:2f:52:e7:45:
ac:43:db:2f:29:a2:c9:4c:c0:b9:16:3f:a6:27:43:00:84:3d:
b5:f9:26:a2:90:0f:ad:6d:61:06:c7:d8:9d:9b:a6:9f:c4:19:
d6:62:1b:ea:05:f4:33:ef:30:d1:f8:cf:3a:b8:66:8e:94:8c:
20:4b:69:8f:d3:57:fd:d0:a7:2c:d3:3e:7a:4f:69:a1:9d:94:
71:92:4d:d9:7b:a1:d6:80:f8:3e:c9:dd:2a:87:52:65:02:c2:
da:16:f2:ea
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCn4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTAyMDcx
MTQ5NTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDVFMjNDOEUzQzkyNEVF
REFDOUUwNTBGOTJGRTk1NzQ0QjA3NEE1NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2y212/tyIkDL0TBqY7qKMzsz2EAYN0HEHlQl6uVfMdnDFXRbA
SKeng+eHZQgWuMUe9q41P4Vjne/eJUrRAwfjShnR9kTN/0C0j5wIYV2nzvx7XvXH
9W3WdjO/k63UBHjgQ8wjA1+KYbVl9gO1GbbSeGc0J8A/HErXoOhbdgrAzW7I3LdR
SKlERsHxx+8ZqHnNPYLkLFn80dhgHQWwJuDdKJsH/MJ3FkPLRHJofni7RHi9CaHs
xRkkfAPvt3xwuYrnsjItLM3Qtoq9VYjmYr74NnH/pK8lQJRZiq6uSIWuV3MfzxBl
uk3nl1roDG5MmktcxMsTtajeRMFy1HKZpSxvAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUXiPI48kk7trJ4FD5L+lXRLB0pWswHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9YaVBJNDhrazd0cko0
RkQ1TC1sWFJMQjBwV3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQElnSwMA0GCSqGSIb3DQEBCwUAA4IBAQAiyfme+RYvf9JLQSfF5XgC092qwnmJ
6xvmlRDjRs8lxeeSuIBphU1sN/I0jnPcxFuWXDD+sFXKTkQ/AUoXvHmvEt3gFtX0
4Kiqb6/74m6r2OLCtEKPYuM7A5UGXXgz+XbPgSvWx9dqz4c9EgkarL7+QcpEVFHe
HcIQZ87V5tGelmeQBT5yNvDZQaa5Tg42RdnqTm9N+UCm4wNUxDqeMy9S50WsQ9sv
KaLJTMC5Fj+mJ0MAhD21+SaikA+tbWEGx9idm6afxBnWYhvqBfQz7zDR+M86uGaO
lIwgS2mP01f90Kcs0z56T2mhnZRxkk3Ze6HWgPg+yd0qh1JlAsLaFvLq
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:58 2023 by rpki-client on console-fra.rpki-client.org