Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/c6TgKT9f1gI8kULtd2sB2WrqXg8.roa
File: c6TgKT9f1gI8kULtd2sB2WrqXg8.roa (raw, json)
Hash identifier: xiPetlm6h+NDQ1t2nAmMo9MduCVNta84dn8hmd6H+bE=
Subject key identifier: 73:A4:E0:29:3F:5F:D6:02:3C:91:42:ED:77:6B:01:D9:6A:EA:5E:0F
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0CE9
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/c6TgKT9f1gI8kULtd2sB2WrqXg8.roa
Signing time: Thu 21 Apr 2022 00:51:09 +0000
ROA not before: Thu 21 Apr 2022 00:51:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 63199
IP address blocks: 150.116.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3305 (0xce9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Apr 21 00:51:09 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=73A4E0293F5FD6023C9142ED776B01D96AEA5E0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4f:b4:92:b2:b2:c2:5d:0f:d7:24:01:46:d6:
8c:76:c3:5f:44:d9:63:39:38:81:36:af:2f:e4:ba:
fc:2e:b6:e7:12:47:85:7b:47:a4:29:37:08:7c:19:
87:ab:db:f8:49:2b:77:de:7c:a7:7a:bc:a0:11:cd:
24:c4:a1:69:cb:1d:d5:7f:b8:36:8d:9c:53:96:06:
fa:ae:5c:0e:96:6e:ca:7e:7f:63:4c:c9:5e:d7:4d:
10:f8:13:87:68:e5:50:0d:64:31:bc:73:21:2a:10:
16:6d:0b:73:ad:bf:62:0c:8b:16:a7:81:43:1a:ad:
fc:22:d9:8f:65:50:ef:56:6a:dc:c4:0c:2d:c7:a2:
59:7b:c1:15:b2:dc:f8:6b:4b:94:fb:44:0d:f9:b9:
91:ed:39:66:97:d2:ee:89:e4:d4:d2:4f:61:53:45:
2a:69:69:3e:83:d2:18:7b:75:02:1b:1f:b2:73:ea:
b9:b8:0a:4c:bd:af:80:3b:2c:2a:bf:96:21:03:ab:
ec:b9:c1:2d:95:f3:e7:12:4c:cb:fc:35:e1:0a:e0:
df:eb:14:e0:8a:9a:80:b7:95:4c:a7:30:ec:3b:c7:
b8:c2:62:dd:db:a9:a4:97:70:01:88:29:b1:36:fc:
60:01:b1:66:29:58:37:9c:78:2e:c2:92:70:db:4b:
14:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A4:E0:29:3F:5F:D6:02:3C:91:42:ED:77:6B:01:D9:6A:EA:5E:0F
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/c6TgKT9f1gI8kULtd2sB2WrqXg8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.3.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:00:14:8f:ab:bf:a7:52:d4:49:e9:5c:d1:d5:e9:da:22:e2:
66:6e:73:43:7f:2e:a0:f0:8d:84:e4:b1:f6:75:5e:eb:f0:a3:
ea:7f:5a:8e:c4:8f:a5:85:06:e9:b4:83:e2:5f:11:99:0a:7c:
e5:fd:6f:86:20:95:ba:61:4f:04:19:44:f7:e9:f3:45:2a:07:
53:f3:8d:1d:b5:43:47:23:a7:5d:74:94:b2:34:e4:74:c4:2d:
f3:88:c8:d6:03:13:e1:8a:60:5e:7c:b7:50:a3:89:4b:0b:c5:
04:b4:e3:37:76:2f:8c:fd:cd:89:65:c8:89:c7:91:cf:11:81:
ad:d2:0b:bf:8e:1f:1c:b2:f3:b1:39:bf:2d:ce:81:33:6a:49:
45:a3:e4:35:45:51:ef:2c:2c:17:13:d6:74:9d:32:72:f5:0a:
26:84:b4:24:c1:7d:c1:b2:cf:63:0e:13:11:a6:cc:26:c6:16:
76:45:98:38:00:8d:11:e4:05:19:a2:f0:a5:63:f5:06:0c:2a:
3e:6a:9e:4e:c7:f3:d6:81:d1:ba:a6:7c:74:d5:ac:62:e3:4a:
ea:cc:05:80:c1:a2:a3:e1:c9:6d:9b:42:e8:af:52:ee:01:cd:
1a:f1:8b:bb:34:6c:4e:a2:70:26:a4:27:87:d0:6c:78:1b:09:
3a:76:d3:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:54 2025 by rpki-client