Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_QnZmi4E4P1UYGTRsw58ChfaWWQ.roa
File: _QnZmi4E4P1UYGTRsw58ChfaWWQ.roa (raw, json)
Hash identifier: yaPvXZ2o3jL0LwRZuGsip0m0ru1cXf6FwUByVXRw/B0=
Subject key identifier: FD:09:D9:9A:2E:04:E0:FD:54:60:64:D1:B3:0E:7C:0A:17:DA:59:64
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_QnZmi4E4P1UYGTRsw58ChfaWWQ.roa
Signing time: Thu 15 Sep 2022 02:39:20 +0000
ROA not before: Thu 15 Sep 2022 02:39:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FD09D99A2E04E0FD546064D1B30E7C0A17DA5964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:44:5c:d5:b5:77:63:7a:78:25:3a:bc:44:78:
a3:12:20:ff:40:85:01:a6:9e:a0:df:cd:82:9a:10:
05:38:0b:27:a6:bc:cd:96:f1:58:27:67:37:fb:5b:
01:4c:87:24:0b:29:31:31:13:77:00:f4:cd:d7:40:
07:7e:ec:78:44:39:29:8b:57:eb:2a:0a:c3:2c:fa:
e3:1f:10:77:fd:4b:b6:10:6a:fb:27:db:00:52:6d:
bb:90:af:06:28:25:b3:42:86:80:e2:dd:3a:61:74:
72:d7:3e:02:13:ac:8f:a2:df:35:f1:5c:c3:85:9f:
3b:f7:34:e9:ab:ff:c3:a8:57:1d:e2:89:1f:5d:0f:
e2:42:65:4c:c2:3e:53:b5:1f:4b:6a:94:64:6b:3b:
49:0d:a8:9e:25:81:54:8e:1a:60:49:fb:4e:c6:ff:
85:77:ba:dc:fb:85:d2:9a:9c:0a:39:b4:3f:4a:10:
5d:a9:48:b0:56:ab:7c:4d:7e:c9:32:2c:8f:2e:b8:
f2:d3:32:99:05:4f:67:a1:8f:43:9c:71:c9:2f:ec:
63:1a:a5:7d:a0:80:4b:8c:0f:9c:17:80:73:94:d2:
29:de:72:49:41:19:db:2e:71:78:17:40:5f:2e:26:
d9:53:d6:64:4e:cc:56:56:cf:a9:45:58:ff:67:9a:
6c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:09:D9:9A:2E:04:E0:FD:54:60:64:D1:B3:0E:7C:0A:17:DA:59:64
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_QnZmi4E4P1UYGTRsw58ChfaWWQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.32.0/20
Signature Algorithm: sha256WithRSAEncryption
73:b3:0e:08:65:2e:69:ec:43:46:8f:60:b6:01:6e:d1:91:0e:
47:a3:f4:b5:be:21:f0:9d:8d:06:ef:93:61:4c:5f:9e:af:3a:
12:1c:b6:31:c7:8c:0d:c8:fb:30:c7:bc:dd:19:e6:5b:f2:f0:
22:87:e1:f8:07:6b:26:fb:3e:fd:62:cd:43:a7:78:7d:8e:a7:
94:c0:6d:be:9f:53:84:c8:04:9d:77:67:b0:ed:1f:c2:8e:b8:
62:ed:35:03:1b:93:71:4f:7e:5c:4a:0f:ca:f3:22:75:74:a2:
ca:c6:97:fc:96:8f:5c:73:c5:9f:0c:a9:3f:7e:20:2a:ff:a8:
9a:85:e8:5f:da:6f:c2:88:8f:f9:b4:2b:e8:d7:e7:1e:34:a0:
5c:57:67:8d:df:fd:2c:36:e9:e4:4e:27:cd:97:09:a5:39:48:
c8:7e:52:e2:5b:1e:a8:93:5f:b7:39:ee:76:2f:50:7e:71:62:
e0:d0:19:8b:a9:26:6f:1b:06:ed:81:5b:d3:4b:c4:57:bf:3d:
ca:b0:6c:92:7b:8c:d2:1d:06:2b:5e:bf:22:eb:cb:af:88:e2:
41:86:c5:dc:a4:75:c2:71:f3:cf:f7:ab:7c:e0:90:79:8e:b6:
72:cc:8b:d1:fd:f5:f8:0e:8d:7c:65:c2:40:33:74:c4:c6:66:
72:e7:3c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:20 2025 by rpki-client