Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bhfFacV5hoBWm5Pi3elhzNzbUeM.roa
File: bhfFacV5hoBWm5Pi3elhzNzbUeM.roa (raw, json)
Hash identifier: jhqE0jb0wF+xg7gTQ4L+rhh9vIRzNBjsg3TeJvpolZU=
Subject key identifier: 6E:17:C5:69:C5:79:86:80:56:9B:93:E2:DD:E9:61:CC:DC:DB:51:E3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DEB
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bhfFacV5hoBWm5Pi3elhzNzbUeM.roa
Signing time: Thu 29 Dec 2022 09:32:01 +0000
ROA not before: Thu 29 Dec 2022 09:32:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.117.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3563 (0xdeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6E17C569C5798680569B93E2DDE961CCDCDB51E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:a1:56:b8:c7:03:50:08:41:c9:a3:b8:57:b1:
07:89:91:5c:00:88:76:3f:ad:13:94:64:b9:87:21:
58:c6:bd:cd:9c:19:25:cd:c5:26:cc:22:12:17:1b:
2b:33:e4:97:11:f4:bd:47:91:ab:f8:b9:c3:3b:2b:
3e:90:4f:c9:6e:cd:b6:48:03:e4:92:32:c4:0b:d0:
fc:a5:19:59:4e:80:70:09:30:ce:01:21:af:5e:62:
a1:37:51:01:45:1b:fa:cc:c6:5d:37:5b:69:9c:94:
98:80:fc:1b:62:94:07:74:12:b3:21:a3:bd:5f:a8:
7a:7e:2e:c7:7b:23:84:71:e7:f0:fc:89:55:54:76:
46:ec:e8:96:60:79:ad:bb:15:e0:ee:8a:84:ff:ef:
56:be:08:1f:7a:b4:ae:3c:95:c8:35:7a:9b:4a:38:
7f:c6:97:02:99:40:75:84:dd:21:c2:00:a3:29:e6:
f9:88:97:16:64:38:1c:c7:1e:d4:a8:d3:14:66:9a:
eb:10:fe:ef:87:ba:cd:43:dd:f9:4d:ff:01:07:17:
88:e6:5b:46:9b:94:0c:d8:60:39:e4:7f:3a:d4:68:
7b:72:87:38:8e:78:08:75:76:8c:b1:55:a1:92:44:
10:31:2f:92:ca:97:e9:6f:95:f4:71:7f:11:80:05:
25:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:17:C5:69:C5:79:86:80:56:9B:93:E2:DD:E9:61:CC:DC:DB:51:E3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bhfFacV5hoBWm5Pi3elhzNzbUeM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.160.0/21
Signature Algorithm: sha256WithRSAEncryption
29:00:4e:48:51:cf:15:2a:6b:ec:10:31:6d:fa:45:6e:f8:50:
47:a1:4c:a0:d7:2b:fc:29:22:62:e2:a0:00:36:f2:54:be:70:
2f:96:0c:b1:2a:0a:ba:a4:ec:7e:f8:c8:ab:58:a7:aa:37:9f:
a9:81:02:c0:88:55:71:2d:b6:d7:71:c4:92:5c:cd:4d:75:28:
05:20:06:49:ec:1c:70:5e:7e:3b:07:4d:6f:67:7e:14:a6:d5:
48:cd:f3:c0:c0:84:29:bb:20:40:79:f5:c4:0f:b8:c8:34:52:
46:1b:3b:b5:fb:55:f9:1e:10:b2:3f:85:50:ec:c0:f0:39:09:
46:59:17:a4:9e:37:74:ca:81:c6:e2:01:25:5a:be:5e:d2:21:
9c:68:51:c6:c6:5e:36:bf:77:5a:9e:3d:91:46:1d:0d:ce:36:
07:ea:b2:ba:89:65:16:63:3a:3e:83:6c:d8:ea:fa:a5:47:60:
1c:97:e6:84:a0:2a:10:19:4e:49:9f:58:77:31:ba:4a:c9:01:
6b:59:1a:25:c0:b3:73:97:1a:18:63:16:de:1a:62:c1:2d:af:
49:9e:5c:92:42:c2:c3:46:b7:50:c9:cf:4a:bb:89:13:3e:1b:
aa:b9:35:1d:3c:8d:91:35:de:99:b3:a8:22:4c:d1:6b:2a:fc:
b6:12:51:60
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDeswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMyMDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDZFMTdDNTY5QzU3OTg2
ODA1NjlCOTNFMkRERTk2MUNDRENEQjUxRTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD0oVa4xwNQCEHJo7hXsQeJkVwAiHY/rROUZLmHIVjGvc2cGSXN
xSbMIhIXGysz5JcR9L1Hkav4ucM7Kz6QT8luzbZIA+SSMsQL0PylGVlOgHAJMM4B
Ia9eYqE3UQFFG/rMxl03W2mclJiA/BtilAd0ErMho71fqHp+Lsd7I4Rx5/D8iVVU
dkbs6JZgea27FeDuioT/71a+CB96tK48lcg1eptKOH/GlwKZQHWE3SHCAKMp5vmI
lxZkOBzHHtSo0xRmmusQ/u+Hus1D3flN/wEHF4jmW0ablAzYYDnkfzrUaHtyhziO
eAh1doyxVaGSRBAxL5LKl+lvlfRxfxGABSWpAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUbhfFacV5hoBWm5Pi3elhzNzbUeMwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9iaGZGYWNWNWhvQldt
NVBpM2VsaHpOemJVZU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDlnWgMA0GCSqGSIb3DQEBCwUAA4IBAQApAE5IUc8VKmvsEDFt+kVu+FBHoUyg
1yv8KSJi4qAANvJUvnAvlgyxKgq6pOx++MirWKeqN5+pgQLAiFVxLbbXccSSXM1N
dSgFIAZJ7BxwXn47B01vZ34UptVIzfPAwIQpuyBAefXED7jINFJGGzu1+1X5HhCy
P4VQ7MDwOQlGWReknjd0yoHG4gElWr5e0iGcaFHGxl42v3danj2RRh0NzjYH6rK6
iWUWYzo+g2zY6vqlR2Acl+aEoCoQGU5Jn1h3MbpKyQFrWRolwLNzlxoYYxbeGmLB
La9JnlySQsLDRrdQyc9Ku4kTPhuquTUdPI2RNd6Zs6giTNFrKvy2ElFg
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:17 2025 by rpki-client