Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/cHcBcoYNJXw9Ou8OW_sWfVpe6z0.roa
File: cHcBcoYNJXw9Ou8OW_sWfVpe6z0.roa (raw, json)
Hash identifier: obHGz7i6nqubeXNA5g+E0rOdTJXUyP7J+hIxoJEYQqc=
Subject key identifier: 70:77:01:72:86:0D:25:7C:3D:3A:EF:0E:5B:FB:16:7D:5A:5E:EB:3D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C1F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/cHcBcoYNJXw9Ou8OW_sWfVpe6z0.roa
Signing time: Wed 29 Sep 2021 02:39:03 +0000
ROA not before: Wed 29 Sep 2021 02:39:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131607
IP address blocks: 150.117.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3103 (0xc1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=70770172860D257C3D3AEF0E5BFB167D5A5EEB3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c6:da:e4:ce:b7:88:32:f4:32:37:08:97:49:
47:54:d1:70:ee:3c:3e:73:3c:d8:9c:76:2f:2b:52:
1a:c3:29:64:f6:28:e2:1f:f4:de:c0:f7:6c:49:5c:
3a:71:b7:c3:50:e0:20:d5:84:49:e2:fa:73:f8:13:
88:57:04:d3:8f:86:95:bb:22:3b:7c:3b:41:1f:71:
13:92:35:cf:e6:f3:9b:c4:9c:19:3c:d4:dc:53:7c:
d2:8a:15:bf:3a:ea:45:de:17:e2:e8:c7:cf:b4:e5:
8a:e8:2d:55:4c:df:4a:2f:be:0f:fc:07:6f:b9:7b:
4a:a3:d3:28:e5:81:8e:2d:58:ba:88:82:42:61:b5:
62:31:80:d8:fe:a0:8a:15:91:e3:b8:d9:f1:b0:0d:
87:86:75:00:de:a7:5e:00:55:7e:d2:28:cc:11:27:
79:20:b9:fe:1d:60:15:93:17:34:46:00:e8:7d:74:
6a:f9:a9:d8:04:ca:4b:1f:2e:e3:21:f4:24:a0:c3:
56:51:f5:7f:5c:70:59:74:43:cd:69:f9:27:7a:7f:
13:4a:85:45:78:90:42:ea:a3:19:dd:83:8c:84:48:
21:d2:4c:05:83:bd:92:b4:40:a0:7d:e2:e0:9f:be:
ee:05:dc:30:37:f7:30:1b:8d:80:43:be:7f:96:a6:
59:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:77:01:72:86:0D:25:7C:3D:3A:EF:0E:5B:FB:16:7D:5A:5E:EB:3D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/cHcBcoYNJXw9Ou8OW_sWfVpe6z0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.192.0/19
Signature Algorithm: sha256WithRSAEncryption
a4:98:13:e4:5f:bb:5b:86:7d:0f:d7:6a:49:2c:7a:80:f3:7b:
f0:3a:57:25:d9:e2:3c:80:91:bc:83:ba:59:a9:35:a8:91:14:
df:01:a4:a2:90:0d:47:0d:3b:7f:41:3c:e6:38:d1:1e:85:a1:
98:fc:06:a0:84:9c:cc:bc:4f:43:91:09:66:ca:ab:2d:c2:1b:
87:05:88:8e:d0:f5:b6:bf:15:83:ce:48:ba:bf:ab:2c:8c:0d:
dd:95:45:e2:d7:cf:7c:98:fc:ea:17:a7:87:e2:ba:e6:d9:e7:
38:9c:96:31:81:22:b9:b9:58:34:03:25:d5:b7:fc:5b:b8:61:
a6:f4:3c:56:26:6a:f8:59:a9:c5:e8:36:d0:8f:25:f6:c4:1c:
15:b9:a4:25:50:88:a4:f3:09:92:b8:1a:09:bd:41:87:48:3a:
e0:5e:8a:7a:83:ee:64:82:a8:f5:89:3f:29:ae:4e:72:de:19:
3e:ee:68:58:fb:1e:6f:ef:4d:04:31:51:1c:36:c1:49:e2:11:
72:69:2a:f3:e7:26:fd:40:8a:85:a3:75:e5:4b:69:4f:04:2d:
fd:b6:9d:77:4e:7a:74:c0:f5:9a:00:a4:d1:ea:ea:27:b2:05:
9f:cd:60:e1:a4:7c:1a:08:00:42:92:e9:52:ab:9d:7c:0b:11:
e9:6f:f9:e5
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM5MDNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDcwNzcwMTcyODYwRDI1
N0MzRDNBRUYwRTVCRkIxNjdENUE1RUVCM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLxtrkzreIMvQyNwiXSUdU0XDuPD5zPNicdi8rUhrDKWT2KOIf
9N7A92xJXDpxt8NQ4CDVhEni+nP4E4hXBNOPhpW7Ijt8O0EfcROSNc/m85vEnBk8
1NxTfNKKFb866kXeF+Lox8+05YroLVVM30ovvg/8B2+5e0qj0yjlgY4tWLqIgkJh
tWIxgNj+oIoVkeO42fGwDYeGdQDep14AVX7SKMwRJ3kguf4dYBWTFzRGAOh9dGr5
qdgEyksfLuMh9CSgw1ZR9X9ccFl0Q81p+Sd6fxNKhUV4kELqoxndg4yESCHSTAWD
vZK0QKB94uCfvu4F3DA39zAbjYBDvn+WplmRAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUcHcBcoYNJXw9Ou8OW/sWfVpe6z0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9jSGNCY29ZTkpYdzlP
dThPV19zV2ZWcGU2ejAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQFlnXAMA0GCSqGSIb3DQEBCwUAA4IBAQCkmBPkX7tbhn0P12pJLHqA83vwOlcl
2eI8gJG8g7pZqTWokRTfAaSikA1HDTt/QTzmONEehaGY/AaghJzMvE9DkQlmyqst
whuHBYiO0PW2vxWDzki6v6ssjA3dlUXi1898mPzqF6eH4rrm2ec4nJYxgSK5uVg0
AyXVt/xbuGGm9DxWJmr4WanF6DbQjyX2xBwVuaQlUIik8wmSuBoJvUGHSDrgXop6
g+5kgqj1iT8prk5y3hk+7mhY+x5v700EMVEcNsFJ4hFyaSrz5yb9QIqFo3XlS2lP
BC39tp13Tnp0wPWaAKTR6uonsgWfzWDhpHwaCABCkulSq518CxHpb/nl
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:48 2023 by rpki-client on console-ams.rpki-client.org