Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ctNWK8suseNo1IRXMk_ZHxymags.roa
File: ctNWK8suseNo1IRXMk_ZHxymags.roa (raw, json)
Hash identifier: Nh0S/3TTdFkrq1gU2boojgt8ADIihf8UEgay5zAJudk=
Subject key identifier: 72:D3:56:2B:CB:2E:B1:E3:68:D4:84:57:32:4F:D9:1F:1C:A6:6A:0B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BE6
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ctNWK8suseNo1IRXMk_ZHxymags.roa
Signing time: Wed 29 Sep 2021 02:38:49 +0000
ROA not before: Wed 29 Sep 2021 02:38:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.116.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3046 (0xbe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=72D3562BCB2EB1E368D48457324FD91F1CA66A0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7b:0f:7f:73:b3:2d:55:c5:98:dd:4a:68:8c:
cc:23:c4:af:24:e0:04:7e:73:9b:2b:c3:71:46:fe:
10:36:1e:da:de:ee:ea:ff:aa:63:0c:dc:65:2a:24:
e5:89:60:99:9d:f5:7e:2f:3d:d0:f7:20:89:c3:9c:
73:bc:ac:09:b7:8d:4f:cb:9b:e9:55:99:17:a5:1e:
52:5e:75:c2:13:f2:bf:b1:92:c8:d5:44:93:8f:16:
ae:4c:95:0a:fd:b7:a2:18:d6:c7:9b:9f:38:34:0a:
40:56:0a:d1:7a:8b:6b:7e:8c:98:3f:c1:22:da:39:
b8:2f:01:d8:d7:28:bc:a4:01:4c:94:38:b9:d6:5c:
2d:12:fe:28:a0:41:59:68:81:82:f3:42:aa:cf:a8:
de:bf:16:b4:a4:f3:e0:1d:a5:eb:ba:6f:0c:b0:f1:
16:a1:2f:36:20:ca:76:63:dc:99:08:87:c1:d2:6b:
60:5c:a3:fb:6f:c9:c6:33:ca:b7:e8:10:8e:27:7f:
c5:e4:98:a0:d8:13:c2:dc:fe:65:5b:f4:a8:d2:8a:
4a:f3:38:fa:8e:65:c2:7c:64:57:7e:a8:8d:df:88:
53:f3:21:57:96:8f:de:03:ac:c9:c2:dc:41:58:3e:
6a:89:b0:42:da:0c:43:d7:23:47:40:d6:da:8f:d4:
c9:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D3:56:2B:CB:2E:B1:E3:68:D4:84:57:32:4F:D9:1F:1C:A6:6A:0B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ctNWK8suseNo1IRXMk_ZHxymags.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.232.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:f1:15:ee:4f:a7:5c:72:20:41:7c:3c:6c:f9:4b:22:18:33:
c7:7e:02:4a:e4:79:4c:ab:b3:14:9e:f1:15:25:99:dd:c3:a3:
64:95:34:4b:7b:4e:a8:d1:89:a3:66:54:e1:7c:ed:56:cf:b6:
46:78:fc:62:31:dc:8a:4c:2a:16:07:0a:a9:e9:05:5b:fc:4e:
c2:2d:7f:53:59:a5:66:e4:99:1d:49:e0:44:92:22:f6:6e:1c:
95:cd:5c:f0:e3:69:40:73:21:49:9e:4e:9a:21:0f:0e:f5:2a:
1c:00:5e:0b:39:b1:f8:dd:bf:c7:b9:a3:e8:17:ea:4a:ca:96:
db:13:57:d6:86:48:94:6b:6d:fb:77:63:59:a9:37:a0:25:48:
6b:42:2f:d9:a5:d4:1a:d4:58:52:ab:e4:e8:03:38:1b:85:8e:
77:b6:2d:37:6b:c4:12:7d:34:23:d4:37:53:17:8c:a4:f4:00:
01:18:21:26:66:e9:a9:c7:26:98:d1:4d:d8:5f:28:dd:af:53:
49:0e:63:4d:97:6d:cf:a7:dc:e1:5c:db:1d:b4:5f:96:94:ac:
bb:4f:aa:ed:85:4c:09:68:40:3b:31:66:f4:79:11:ab:25:6e:
31:cc:0a:8d:00:2e:e8:2a:55:2b:09:84:0e:50:4f:a7:fd:ef:
7c:8f:88:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:58 2025 by rpki-client