Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Zr-bOWwD1NyHGWZHVfBXtpB7knQ.roa
File: Zr-bOWwD1NyHGWZHVfBXtpB7knQ.roa (raw, json)
Hash identifier: 6HR5PxztvALVfuXB24RcBa99JUAYnFRarHcZxCKWPV8=
Subject key identifier: 66:BF:9B:39:6C:03:D4:DC:87:19:66:47:55:F0:57:B6:90:7B:92:74
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0ABA
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Zr-bOWwD1NyHGWZHVfBXtpB7knQ.roa
Signing time: Sun 07 Feb 2021 11:52:32 +0000
ROA not before: Sun 07 Feb 2021 11:52:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 150.117.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2746 (0xaba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:52:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=66BF9B396C03D4DC8719664755F057B6907B9274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d4:2c:fb:7b:f8:7e:da:b2:87:98:0c:74:f9:
3b:02:76:18:3f:1b:55:d6:41:86:ef:4c:fd:69:fc:
2d:9f:56:15:0e:79:9a:f5:f9:6c:f2:11:1a:01:cc:
1a:74:57:46:09:65:3b:a2:0b:f3:0a:ff:f9:b9:0a:
a7:1c:28:e3:de:98:06:2d:17:01:be:63:7d:24:45:
8d:9b:f6:c5:15:a1:7c:bf:12:e8:5d:dd:6f:c5:a7:
2f:16:f3:58:f7:20:a9:40:57:c6:b6:6a:79:e6:06:
37:cf:83:dc:95:4b:6c:d6:78:04:e1:7e:d4:6e:93:
da:55:5b:57:16:c0:24:e2:b3:76:1f:d1:e4:07:49:
43:fd:73:6e:36:22:34:4f:f1:c2:e9:4e:3d:2b:11:
40:98:59:e1:1d:e6:50:2b:e0:33:23:b7:78:a3:b3:
b0:71:b6:36:15:cb:e4:84:1a:d9:e6:40:d7:a8:71:
2b:7b:c0:d0:74:06:58:31:16:34:a2:8c:17:77:09:
5d:a4:b0:69:04:bc:84:a7:85:8c:54:8a:4a:c4:ac:
89:e5:01:d3:05:e3:68:3d:4b:57:83:6d:ea:91:34:
c8:0f:92:ef:86:f8:d7:6a:ca:39:08:fc:17:33:8b:
51:15:e6:d6:02:d3:7c:05:ca:aa:84:1e:a1:06:94:
8a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:BF:9B:39:6C:03:D4:DC:87:19:66:47:55:F0:57:B6:90:7B:92:74
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Zr-bOWwD1NyHGWZHVfBXtpB7knQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.128.0/19
Signature Algorithm: sha256WithRSAEncryption
80:ca:fe:f8:68:57:98:e8:c7:31:13:0f:48:17:34:2a:2b:de:
c8:33:ba:40:2a:da:10:fc:46:51:7a:f9:36:2d:ee:97:42:9e:
cc:94:0f:ea:6b:95:a8:31:6f:51:f3:f4:88:ba:3b:eb:98:41:
43:63:d9:9d:42:07:91:1e:b6:1c:98:17:12:21:26:5a:a7:5a:
8c:ec:84:f1:df:d5:8a:0b:0a:95:58:2a:9b:32:c0:7b:49:cb:
59:b4:26:d9:f5:1b:34:d9:45:54:f6:39:02:08:4f:02:7a:bb:
24:46:ab:37:16:7f:62:f9:66:11:17:5a:d8:d6:9c:45:85:ac:
84:bf:60:b0:6b:cb:4d:1f:5d:4a:4e:33:fc:0c:b9:19:fc:ae:
47:06:f5:f7:82:e8:ef:94:6b:a0:75:fc:aa:b2:64:88:4f:fb:
2e:ad:0e:7f:f6:b2:8b:3a:d5:60:75:5e:b9:97:de:ad:c1:02:
21:33:60:68:58:65:7e:1f:2f:53:17:4b:54:fe:05:89:0c:15:
98:64:81:7d:b0:71:3a:28:89:87:15:ef:bd:0c:0e:41:b2:38:
c7:e9:6b:5a:e9:a8:b0:a5:9f:b6:f5:a1:1d:75:bb:4a:90:ba:
a0:44:6e:58:e7:e6:2e:58:f0:82:11:c3:69:db:c1:e8:d1:1f:
76:a9:86:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:36 2025 by rpki-client