Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/c4eXQ8XzreqEYGyC2-WFMJUnbUQ.roa
File: c4eXQ8XzreqEYGyC2-WFMJUnbUQ.roa (raw, json)
Hash identifier: /HWd03xfXO3HBDahnwE/rcZWO4nkz/WpNcNjc94+JDA=
Subject key identifier: 73:87:97:43:C5:F3:AD:EA:84:60:6C:82:DB:E5:85:30:95:27:6D:44
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0880
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/c4eXQ8XzreqEYGyC2-WFMJUnbUQ.roa
Signing time: Tue 29 Sep 2020 10:02:32 +0000
ROA not before: Tue 29 Sep 2020 10:02:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131607
IP address blocks: 150.117.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2176 (0x880)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=73879743C5F3ADEA84606C82DBE5853095276D44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6e:6c:26:1c:38:d7:fc:20:db:56:39:c4:0a:
8e:8f:99:66:8a:f6:45:8c:39:71:d1:5c:b7:4b:0a:
21:31:d9:f8:92:fb:93:00:7c:40:6d:d2:db:00:fb:
11:84:71:3e:95:09:9b:76:88:51:62:77:bd:96:2c:
c2:c0:04:9a:9d:91:92:60:a3:17:6e:0f:21:fe:9e:
58:91:b4:06:f0:78:01:e2:55:3c:b0:21:ae:90:b5:
6e:4a:06:a8:34:4b:22:79:e8:c0:58:7b:f7:9e:60:
c4:29:ed:df:2b:ac:d1:96:15:a0:7a:d5:8e:42:cc:
64:5f:ce:f6:23:af:e9:1e:7a:d5:4a:3c:09:60:5b:
7f:b8:40:f5:a0:4f:e8:06:31:ed:d7:d5:cf:15:b8:
59:a1:b3:63:93:51:24:19:35:fd:a0:3f:c6:f9:72:
58:f9:68:16:e5:71:b5:73:44:aa:c5:1d:05:9f:a9:
50:fd:96:db:07:60:1c:eb:51:63:ac:81:a4:5a:12:
b5:b0:e4:a0:55:b1:b6:ff:83:b8:ff:f2:49:d4:04:
cc:56:61:47:1f:4f:53:b6:3d:6f:31:c0:6e:23:69:
e0:05:ff:76:2d:31:48:71:79:67:5e:71:e2:36:ba:
e3:25:99:71:b3:65:13:ce:09:33:02:49:93:1a:a4:
df:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:87:97:43:C5:F3:AD:EA:84:60:6C:82:DB:E5:85:30:95:27:6D:44
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/c4eXQ8XzreqEYGyC2-WFMJUnbUQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.56.0/21
Signature Algorithm: sha256WithRSAEncryption
1b:08:91:61:7d:e1:8c:bb:6d:68:11:d7:69:80:e8:10:3c:c9:
4f:a5:ca:51:2a:28:b1:22:fc:8f:aa:7f:be:ad:8d:2b:f6:dc:
11:c4:60:08:8f:ed:c4:e5:61:93:80:9c:d4:b5:65:19:e2:6a:
28:35:ec:76:f7:3a:29:8c:32:12:85:7f:49:bb:c5:51:34:b7:
0c:01:fc:a8:c4:f2:5e:ee:fc:3b:70:78:78:3d:7a:0a:37:87:
e1:a0:ea:8c:67:5c:d3:86:0c:d9:5b:09:c6:d2:6b:21:9c:fd:
80:87:e8:83:5f:c7:8d:f1:86:01:67:8a:38:5a:85:f5:ce:dc:
12:55:a0:2e:dc:5e:8a:b9:fb:12:37:42:7f:3a:b6:41:8e:92:
0e:5c:e8:6d:0e:e5:07:54:56:d1:ef:a2:d2:37:f2:bd:29:d7:
1d:65:5f:e3:00:19:c1:5d:66:37:00:59:70:bf:ba:44:c2:27:
17:ec:fc:08:5a:42:c7:eb:3c:1c:4c:3a:39:69:f5:6d:17:c4:
73:76:2e:26:59:3c:94:2e:b9:0c:2f:b5:19:3a:15:b2:ee:13:
1b:08:d4:ef:ae:ae:d7:fe:44:ae:5c:89:65:10:57:c5:83:73:
fb:a0:6b:b5:2b:5c:37:19:ac:bb:c5:f8:8c:ae:c2:3a:58:7f:
73:d8:6c:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:33 2025 by rpki-client