Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_-OZjpmand1DXZKZeGm2HCuOkFo.roa
File: _-OZjpmand1DXZKZeGm2HCuOkFo.roa (raw, json)
Hash identifier: joNGTtfi+NVxJOdEaFl/3xhzUS+WjEXGhyF8P971Rfc=
Subject key identifier: FF:E3:99:8E:99:9A:9D:DD:43:5D:92:99:78:69:B6:1C:2B:8E:90:5A
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 084C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_-OZjpmand1DXZKZeGm2HCuOkFo.roa
Signing time: Tue 29 Sep 2020 10:02:18 +0000
ROA not before: Tue 29 Sep 2020 10:02:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 150.117.112.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2124 (0x84c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FFE3998E999A9DDD435D92997869B61C2B8E905A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b6:4c:a3:b9:6d:ad:ce:64:37:4d:70:41:dd:
42:52:ce:e4:83:09:c7:e4:ab:f7:c8:9e:8a:ce:0f:
62:5c:ef:3c:13:72:df:36:66:cf:1c:a1:f0:58:ec:
00:21:5a:71:d7:4d:55:14:8d:f1:36:af:ab:f8:9b:
49:7f:a6:f7:80:3d:24:57:97:ed:0b:b5:2c:3a:30:
73:43:21:06:e8:f8:e0:43:d4:24:be:94:0a:d4:11:
d8:72:f0:e1:54:27:2e:e0:7a:2e:f5:17:fc:a9:a9:
01:b6:76:33:55:59:bb:3a:30:d3:ea:d1:3e:e4:a8:
96:35:df:25:ec:a3:2c:e8:d3:bf:d3:91:a3:51:cf:
ee:53:33:af:40:43:c3:5f:0f:e3:cd:6c:29:0c:ab:
cf:55:34:53:eb:56:52:cd:0a:03:50:45:85:f5:0a:
76:39:ba:1f:de:7e:c3:60:ed:3a:0a:44:6f:3c:95:
f1:1b:b8:2b:26:04:1c:bb:82:1c:0b:2a:6d:e5:a7:
e2:dd:c0:e9:03:c6:a1:f6:21:04:8f:de:6a:4f:ff:
b9:99:14:5d:f4:f6:77:c9:e6:77:74:50:96:59:fd:
2a:59:57:74:f5:f2:62:5e:73:17:a0:a1:f7:51:ca:
6f:ea:11:5c:e3:3d:09:cf:64:4f:e8:f7:1a:ff:2d:
68:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E3:99:8E:99:9A:9D:DD:43:5D:92:99:78:69:B6:1C:2B:8E:90:5A
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_-OZjpmand1DXZKZeGm2HCuOkFo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.112.0/21
Signature Algorithm: sha256WithRSAEncryption
63:f3:0f:1f:24:ef:5c:fc:8d:2e:c1:8d:e8:ba:b0:ae:ec:9d:
86:19:02:1c:bb:b1:54:e1:42:de:6d:2b:1f:d0:45:ed:fa:41:
2e:ed:f3:1d:99:4a:b2:da:93:63:a8:96:fb:f0:40:47:06:56:
9d:3c:f0:97:f7:e4:f0:91:ca:ba:c7:a3:00:9a:99:57:b0:b8:
c0:86:c4:34:cf:a8:9d:9e:2e:c4:0a:00:f0:3e:c2:0a:45:49:
4c:bd:c1:5b:61:4d:93:cd:c9:66:89:6a:4c:d2:c5:18:74:42:
b7:cc:1f:9c:46:7b:8b:87:00:20:e0:9c:6b:f1:48:82:38:28:
5c:92:5e:98:f6:05:7d:c4:cd:e0:9c:12:86:39:75:9b:1e:ac:
bc:be:d7:40:65:9b:a6:a2:d4:cc:7f:61:ee:56:17:00:37:2a:
d4:36:f7:ce:91:00:79:af:90:39:31:92:27:81:5b:b7:c4:df:
bc:60:64:4a:44:d1:dc:47:f0:7c:38:f8:3b:70:dc:e1:3f:bc:
98:d4:08:3c:b0:4b:f7:d3:72:1f:f1:39:04:92:b6:a8:0c:f6:
3d:fb:78:23:a7:50:92:f6:2b:57:c9:4c:c8:bb:5f:d5:bd:d8:
39:d9:4f:77:d5:89:79:6d:68:3f:af:66:ca:98:65:0a:bd:cc:
bd:f3:fe:2c
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCEwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDA5Mjkx
MDAyMThaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEZGRTM5OThFOTk5QTlE
REQ0MzVEOTI5OTc4NjlCNjFDMkI4RTkwNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDStkyjuW2tzmQ3TXBB3UJSzuSDCcfkq/fInorOD2Jc7zwTct82
Zs8cofBY7AAhWnHXTVUUjfE2r6v4m0l/pveAPSRXl+0LtSw6MHNDIQbo+OBD1CS+
lArUEdhy8OFUJy7gei71F/ypqQG2djNVWbs6MNPq0T7kqJY13yXsoyzo07/TkaNR
z+5TM69AQ8NfD+PNbCkMq89VNFPrVlLNCgNQRYX1CnY5uh/efsNg7ToKRG88lfEb
uCsmBBy7ghwLKm3lp+LdwOkDxqH2IQSP3mpP/7mZFF309nfJ5nd0UJZZ/SpZV3T1
8mJecxegofdRym/qEVzjPQnPZE/o9xr/LWg9AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU/+OZjpmand1DXZKZeGm2HCuOkFowHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9fLU9aanBtYW5kMURY
WktaZUdtMkhDdU9rRm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDlnVwMA0GCSqGSIb3DQEBCwUAA4IBAQBj8w8fJO9c/I0uwY3ourCu7J2GGQIc
u7FU4ULebSsf0EXt+kEu7fMdmUqy2pNjqJb78EBHBladPPCX9+Twkcq6x6MAmplX
sLjAhsQ0z6idni7ECgDwPsIKRUlMvcFbYU2TzclmiWpM0sUYdEK3zB+cRnuLhwAg
4Jxr8UiCOChckl6Y9gV9xM3gnBKGOXWbHqy8vtdAZZumotTMf2HuVhcANyrUNvfO
kQB5r5A5MZIngVu3xN+8YGRKRNHcR/B8OPg7cNzhP7yY1Ag8sEv303If8TkEkrao
DPY9+3gjp1CS9itXyUzIu1/Vvdg52U931Yl5bWg/r2bKmGUKvcy98/4s
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:31 2025 by rpki-client