Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XkS1lzp4dmGJ1sNqK3Qdmh7c_ZQ.roa
File: XkS1lzp4dmGJ1sNqK3Qdmh7c_ZQ.roa (raw, json)
Hash identifier: fCfeqGMXzQ0lwzTZRymA1Cb1N/dQnLT7Zo0lq/wD0+s=
Subject key identifier: 5E:44:B5:97:3A:78:76:61:89:D6:C3:6A:2B:74:1D:9A:1E:DC:FD:94
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0CFB
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XkS1lzp4dmGJ1sNqK3Qdmh7c_ZQ.roa
Signing time: Thu 28 Apr 2022 05:25:42 +0000
ROA not before: Thu 28 Apr 2022 05:25:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 134176
IP address blocks: 150.116.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3323 (0xcfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Apr 28 05:25:42 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5E44B5973A78766189D6C36A2B741D9A1EDCFD94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:6e:57:d9:87:ee:7c:14:89:af:73:2a:6d:ea:
66:03:a9:70:e1:b8:34:4a:10:12:0e:69:68:0c:1f:
f2:58:fe:f3:b4:f1:18:2e:7a:51:e7:c1:2f:94:9f:
2c:23:2a:7a:df:23:e6:0d:b0:b1:aa:29:c8:3e:35:
c7:89:e6:cb:12:99:41:40:5c:8b:d0:c3:6b:c4:3e:
f4:dc:28:ee:56:ca:23:da:ed:bb:0f:8c:86:95:fd:
90:c5:2f:35:a2:cd:25:2a:5a:75:0f:e5:ea:13:34:
13:0d:3d:4d:63:48:a5:2e:45:7d:32:4b:45:b4:8d:
56:ca:ca:c5:38:b9:89:bf:95:21:f1:d6:49:1e:7a:
ab:ad:b2:a9:6a:b3:04:d6:6c:b5:18:08:c9:0e:8c:
dc:d4:4b:70:a6:5f:71:8a:80:07:85:f2:e1:02:d0:
ad:84:9a:fc:b4:11:84:ce:84:bb:fb:09:55:d5:2b:
ec:25:fe:59:8a:76:d1:be:8b:d9:41:d7:5d:7b:36:
8d:4d:a4:fe:9b:ac:12:f4:4e:3c:98:bc:a3:de:84:
df:1d:c3:65:28:cc:75:00:fa:d6:15:b7:6d:b6:10:
63:40:c3:bc:2a:be:22:75:1a:13:b6:6e:1b:af:36:
59:7b:f8:3f:9e:7d:c8:4c:d3:65:46:7b:82:e9:57:
cb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:44:B5:97:3A:78:76:61:89:D6:C3:6A:2B:74:1D:9A:1E:DC:FD:94
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XkS1lzp4dmGJ1sNqK3Qdmh7c_ZQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.5.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:d0:94:83:06:97:f5:1f:9c:f3:03:da:09:91:df:fe:7f:6b:
b4:f8:87:d1:cb:1e:e3:b5:60:bc:54:08:c6:c2:d1:57:fc:ce:
23:ec:b9:70:6d:83:cf:07:f9:d8:7b:71:7a:56:d2:2d:3f:ca:
1a:34:0c:4e:43:87:a2:e2:42:46:85:f3:6b:f6:48:dd:a7:74:
f2:24:44:66:bf:d5:93:3f:63:6e:bb:9e:55:49:ea:99:36:67:
80:08:84:68:28:00:9e:b6:59:a5:ec:99:6b:a7:04:fb:07:70:
04:49:1f:b3:1a:1f:5f:02:c4:9d:89:2a:3a:93:7e:0d:46:3d:
1e:22:10:de:c2:90:6b:2f:ca:e9:cd:2a:75:03:a6:e2:75:15:
51:3a:16:b4:7f:f1:b8:e7:76:e9:15:93:94:22:81:13:aa:34:
f8:45:f8:d8:12:33:cf:de:d2:b7:06:2a:72:d2:eb:b0:71:a8:
d1:2b:42:69:95:07:28:ad:49:9d:43:5c:26:59:11:f0:8b:82:
27:8a:0f:3a:c7:de:43:5f:5c:a1:61:c2:74:86:48:03:00:05:
d0:02:a6:4e:4e:a4:f1:49:a9:ce:ac:38:76:85:10:bd:58:48:
cb:98:2f:ee:0e:98:53:67:8e:1b:7b:7c:e3:53:58:03:78:6e:
1d:57:1e:b9
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDPswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjA0Mjgw
NTI1NDJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDVFNDRCNTk3M0E3ODc2
NjE4OUQ2QzM2QTJCNzQxRDlBMUVEQ0ZEOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD0blfZh+58FImvcypt6mYDqXDhuDRKEBIOaWgMH/JY/vO08Rgu
elHnwS+UnywjKnrfI+YNsLGqKcg+NceJ5ssSmUFAXIvQw2vEPvTcKO5WyiPa7bsP
jIaV/ZDFLzWizSUqWnUP5eoTNBMNPU1jSKUuRX0yS0W0jVbKysU4uYm/lSHx1kke
equtsqlqswTWbLUYCMkOjNzUS3CmX3GKgAeF8uEC0K2Emvy0EYTOhLv7CVXVK+wl
/lmKdtG+i9lB1117No1NpP6brBL0TjyYvKPehN8dw2UozHUA+tYVt222EGNAw7wq
viJ1GhO2bhuvNll7+D+efchM02VGe4LpV8vnAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUXkS1lzp4dmGJ1sNqK3Qdmh7c/ZQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9Ya1MxbHpwNGRtR0ox
c05xSzNRZG1oN2NfWlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAlnQFMA0GCSqGSIb3DQEBCwUAA4IBAQCp0JSDBpf1H5zzA9oJkd/+f2u0+IfR
yx7jtWC8VAjGwtFX/M4j7LlwbYPPB/nYe3F6VtItP8oaNAxOQ4ei4kJGhfNr9kjd
p3TyJERmv9WTP2Nuu55VSeqZNmeACIRoKACetlml7JlrpwT7B3AESR+zGh9fAsSd
iSo6k34NRj0eIhDewpBrL8rpzSp1A6bidRVROha0f/G453bpFZOUIoETqjT4RfjY
EjPP3tK3Bipy0uuwcajRK0JplQcorUmdQ1wmWRHwi4Inig86x95DX1yhYcJ0hkgD
AAXQAqZOTqTxSanOrDh2hRC9WEjLmC/uDphTZ44be3zjU1gDeG4dVx65
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org