Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/auHBcIoSs7Q8LaMuo0onCZWw0vI.roa
File: auHBcIoSs7Q8LaMuo0onCZWw0vI.roa (raw, json)
Hash identifier: Hhc/J3qNYSkIs6JljJepTN0WAMLlpilwtXtXvWanDkA=
Subject key identifier: 6A:E1:C1:70:8A:12:B3:B4:3C:2D:A3:2E:A3:4A:27:09:95:B0:D2:F2
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AD8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/auHBcIoSs7Q8LaMuo0onCZWw0vI.roa
Signing time: Sun 07 Feb 2021 12:43:01 +0000
ROA not before: Sun 07 Feb 2021 12:43:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 223.26.70.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2776 (0xad8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:43:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6AE1C1708A12B3B43C2DA32EA34A270995B0D2F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2a:6c:57:49:ef:4e:3b:d7:59:05:2a:3c:9c:
ba:65:63:59:73:cf:6b:88:e8:c8:60:d3:d7:59:15:
0d:04:c1:ba:3c:90:bf:70:03:c7:26:c2:d2:98:06:
ee:8e:c5:7d:a1:69:3d:7f:17:1a:47:8c:96:f4:06:
d3:b4:b6:2e:65:c4:7f:5c:af:b8:48:d7:1f:4c:63:
90:d1:7c:59:27:06:17:40:12:11:7a:a7:db:27:44:
05:91:28:05:9a:d9:f7:f9:85:23:80:27:42:59:6a:
9d:b0:6b:1c:8e:4d:d4:ca:5a:52:19:20:a1:b3:5b:
ae:d3:23:2a:bc:bf:69:e9:82:be:bd:17:e7:9e:f7:
fc:4f:05:09:bd:58:5a:0f:63:83:7f:ab:49:00:4b:
32:bb:8c:c0:36:cf:f1:39:9d:30:a7:fb:ed:f9:71:
9b:26:4b:df:83:49:d5:0e:9c:7f:08:e4:34:91:79:
d9:d9:01:84:df:96:78:2a:c1:6e:c2:25:ac:b1:d3:
ef:e6:90:c0:4a:e0:14:14:b0:0e:66:52:5d:a6:bb:
ff:63:91:70:54:64:d9:f0:ab:7c:07:0f:71:26:c0:
8b:5c:e7:c7:c3:0d:c9:11:1d:d4:d7:a8:77:47:c4:
fe:8f:eb:0a:1d:8e:7f:f6:af:75:6f:40:e5:c9:0b:
f7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E1:C1:70:8A:12:B3:B4:3C:2D:A3:2E:A3:4A:27:09:95:B0:D2:F2
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/auHBcIoSs7Q8LaMuo0onCZWw0vI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.70.0/23
Signature Algorithm: sha256WithRSAEncryption
40:8b:40:2b:70:8e:99:0d:42:b2:50:91:f2:ec:ae:64:74:6b:
fc:44:bc:b8:19:e1:b8:08:2e:db:86:06:05:41:84:27:c4:2b:
cd:1f:b3:57:dd:7e:3f:f8:3d:23:97:e9:c3:69:cd:e8:cf:b3:
82:53:53:fd:35:e1:43:95:3e:be:44:5a:74:2c:15:08:b1:eb:
ed:4a:80:23:1e:ce:ed:93:e9:07:39:88:27:46:d7:2b:9d:c6:
da:af:fe:47:3d:a9:6b:0e:0a:d4:bb:f3:34:38:79:2e:cd:0f:
c0:99:cf:b9:16:1f:41:e3:65:e2:51:ca:cb:42:ef:bd:c6:39:
f6:95:af:04:18:70:4f:48:05:de:c9:e2:89:cb:94:a2:8d:77:
c6:00:b4:59:83:a5:59:d9:f4:28:2a:d7:c0:69:0c:1b:ec:f7:
34:60:24:ab:ad:17:f2:7c:e5:29:49:20:6d:72:bd:6a:93:9a:
19:c1:3a:b3:09:1a:cf:cd:dc:c0:3b:15:f2:7d:d4:1d:cd:0c:
c0:55:69:05:0a:7a:6b:97:70:55:c6:b9:4b:65:79:ae:d4:76:
30:bb:5c:21:49:18:ac:66:3e:cf:b5:18:66:d1:ae:b7:be:f7:
de:5a:58:26:d8:8d:1c:c6:33:9c:ee:9f:96:d1:b7:aa:6b:64:
20:c6:12:03
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCtgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTAyMDcx
MjQzMDFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDZBRTFDMTcwOEExMkIz
QjQzQzJEQTMyRUEzNEEyNzA5OTVCMEQyRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOKmxXSe9OO9dZBSo8nLplY1lzz2uI6Mhg09dZFQ0Ewbo8kL9w
A8cmwtKYBu6OxX2haT1/FxpHjJb0BtO0ti5lxH9cr7hI1x9MY5DRfFknBhdAEhF6
p9snRAWRKAWa2ff5hSOAJ0JZap2waxyOTdTKWlIZIKGzW67TIyq8v2npgr69F+ee
9/xPBQm9WFoPY4N/q0kASzK7jMA2z/E5nTCn++35cZsmS9+DSdUOnH8I5DSRednZ
AYTflngqwW7CJayx0+/mkMBK4BQUsA5mUl2mu/9jkXBUZNnwq3wHD3EmwItc58fD
DckRHdTXqHdHxP6P6wodjn/2r3VvQOXJC/f/AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUauHBcIoSs7Q8LaMuo0onCZWw0vIwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9hdUhCY0lvU3M3UThM
YU11bzBvbkNaV3cwdkkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQB3xpGMA0GCSqGSIb3DQEBCwUAA4IBAQBAi0ArcI6ZDUKyUJHy7K5kdGv8RLy4
GeG4CC7bhgYFQYQnxCvNH7NX3X4/+D0jl+nDac3oz7OCU1P9NeFDlT6+RFp0LBUI
sevtSoAjHs7tk+kHOYgnRtcrncbar/5HPalrDgrUu/M0OHkuzQ/Amc+5Fh9B42Xi
UcrLQu+9xjn2la8EGHBPSAXeyeKJy5SijXfGALRZg6VZ2fQoKtfAaQwb7Pc0YCSr
rRfyfOUpSSBtcr1qk5oZwTqzCRrPzdzAOxXyfdQdzQzAVWkFCnprl3BVxrlLZXmu
1HYwu1whSRisZj7PtRhm0a63vvfeWlgm2I0cxjOc7p+W0beqa2QgxhID
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org