Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/YJkak7-4IIS65jxqgmYIh53uW1g.roa
File: YJkak7-4IIS65jxqgmYIh53uW1g.roa (raw, json)
Hash identifier: laTXAgaxPasyb3ErPjOPNJkjCwosO4O9rhC2PwjEFLI=
Subject key identifier: 60:99:1A:93:BF:B8:20:84:BA:E6:3C:6A:82:66:08:87:9D:EE:5B:58
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F71
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/YJkak7-4IIS65jxqgmYIh53uW1g.roa
Signing time: Fri 01 Sep 2023 08:29:08 +0000
ROA not before: Fri 01 Sep 2023 08:29:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 150.116.96.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3953 (0xf71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:08 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=60991A93BFB82084BAE63C6A826608879DEE5B58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b8:d3:0d:41:b2:7e:08:14:74:41:ed:ae:19:
5f:e4:40:7a:f0:39:c9:d0:2b:7b:be:a1:ff:c2:07:
6a:9d:4c:93:92:db:11:4a:25:69:f7:51:c0:b8:99:
50:20:ef:da:3a:8d:38:0a:6b:8a:2e:71:cb:99:de:
a0:96:24:5a:2e:8f:ab:ec:32:23:96:1f:9f:67:15:
91:42:89:cf:f3:b9:6c:de:25:67:4b:e5:42:a6:e5:
6f:db:98:7f:0f:0a:4f:86:86:6d:f9:8f:ba:8d:30:
6a:32:f3:66:9e:06:85:38:53:27:1f:ac:81:f1:db:
0f:33:ef:74:a8:f4:77:ca:a0:6f:15:45:1b:86:32:
8d:2d:f5:d3:b9:2a:0b:03:f9:f3:8a:19:df:0b:3b:
0f:bf:30:a2:46:ee:27:2d:3b:4b:8c:c6:8c:85:8c:
10:af:0c:a8:25:d4:7a:be:b9:5d:5a:7e:6b:32:e3:
f5:85:49:b1:90:d2:08:cd:ee:c6:80:00:c4:bc:9b:
b6:ce:ac:af:21:42:06:d6:1e:82:57:db:ff:a1:ef:
4e:32:c6:a6:44:4c:5d:f4:9a:51:41:7a:03:e2:7d:
26:4f:03:3f:1a:dc:c8:37:80:2c:95:99:c4:bc:4e:
9e:05:e8:6f:bd:88:db:43:70:f5:49:81:55:cd:f8:
70:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:99:1A:93:BF:B8:20:84:BA:E6:3C:6A:82:66:08:87:9D:EE:5B:58
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/YJkak7-4IIS65jxqgmYIh53uW1g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.96.0/21
Signature Algorithm: sha256WithRSAEncryption
45:09:ad:d6:04:1e:45:95:d6:21:18:ea:29:7e:45:59:35:04:
7d:39:4c:67:83:46:71:69:58:42:93:38:a3:be:50:3b:e8:44:
c3:df:d7:e6:69:99:8e:36:dd:e7:cb:86:0f:10:12:9a:60:16:
52:8c:d4:5c:4c:20:df:24:1a:6a:b1:3a:23:65:ad:4c:e8:c1:
4d:e8:9a:99:30:ca:e3:c4:55:a1:40:7b:e1:01:6b:e3:db:56:
0c:d8:ae:6a:ea:10:54:fb:28:b2:97:64:99:9b:56:d1:7e:88:
c7:d2:c7:d8:d4:8b:af:1c:5b:49:13:e6:1b:6c:38:a4:7e:55:
33:73:f0:88:fd:58:65:03:77:2e:4b:8f:1a:21:0a:0e:7f:05:
80:a5:42:a6:13:54:af:65:c5:81:4b:68:2b:c5:78:62:46:a5:
ac:39:7c:3f:17:05:11:89:cf:94:05:b3:83:ff:12:53:4c:d5:
71:1e:5f:59:60:45:7f:98:e2:fa:25:6a:7c:68:28:c2:98:79:
a2:0d:f0:7d:71:35:05:38:e5:ba:9c:f3:38:9b:83:17:5c:e2:
40:40:df:09:bb:e6:28:f4:e3:76:85:3e:d3:4b:1a:a5:8b:06:
48:8a:93:81:bf:8b:e2:20:a7:65:d2:24:f9:e9:3f:5a:69:5d:
03:f5:e1:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:58 2025 by rpki-client