Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/diPXuFq12Pqzms7MeuJSNFblBR0.roa
File: diPXuFq12Pqzms7MeuJSNFblBR0.roa (raw, json)
Hash identifier: WbGsawpMlS4AqpFNLWWp6PrlrvnKMDJWefxgt4Fed80=
Subject key identifier: 76:23:D7:B8:5A:B5:D8:FA:B3:9A:CE:CC:7A:E2:52:34:56:E5:05:1D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B28
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/diPXuFq12Pqzms7MeuJSNFblBR0.roa
Signing time: Sun 07 Feb 2021 13:13:20 +0000
ROA not before: Sun 07 Feb 2021 13:13:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 150.116.8.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2856 (0xb28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 13:13:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7623D7B85AB5D8FAB39ACECC7AE2523456E5051D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f7:6c:bb:8d:44:59:9e:7b:69:f2:dc:b5:c3:
54:1c:97:97:83:d4:f3:88:e0:9b:dc:4c:b2:dd:c3:
aa:9f:4a:a7:65:23:4a:1a:a0:98:53:ab:8b:49:cb:
91:58:9d:10:6c:f0:81:e8:ee:a3:01:5c:b3:10:3c:
89:ee:07:5c:21:09:75:52:fa:89:de:81:60:ce:db:
14:65:4a:16:87:74:12:8c:42:26:c5:85:6d:b8:1d:
46:51:54:a2:7f:5f:c7:89:29:4a:8a:f7:00:cf:db:
4d:c0:f2:ed:91:03:92:54:1d:5c:0c:6d:5f:70:9f:
93:4c:de:3a:8d:28:19:c5:45:4c:6a:9c:60:34:bc:
36:76:0f:64:65:29:6b:5a:8a:ec:5e:56:97:44:f8:
e5:73:3b:ca:83:35:e4:42:fb:f0:cb:7c:18:a6:07:
94:0e:1f:2c:96:11:60:2e:e0:4b:16:03:87:65:75:
20:b8:36:2a:b8:f6:d9:01:f6:c8:5e:7c:62:48:90:
15:49:0a:f1:90:7a:84:bf:b2:9e:f7:d6:3d:f5:3c:
db:f9:cf:10:f1:46:98:1c:fc:31:48:93:9f:26:0f:
19:08:ab:30:0b:83:79:fa:62:d6:45:5f:a7:0a:0d:
a8:9c:fe:19:dd:51:bd:42:31:9f:ad:d4:7d:61:f2:
17:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:23:D7:B8:5A:B5:D8:FA:B3:9A:CE:CC:7A:E2:52:34:56:E5:05:1D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/diPXuFq12Pqzms7MeuJSNFblBR0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.8.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:37:a2:f3:18:eb:3e:59:04:dc:74:d7:14:9d:56:97:fe:ed:
ad:5e:82:1b:03:74:b5:c8:31:2e:6d:59:1c:68:2a:c2:30:90:
3e:b2:0f:95:e3:ed:e8:a6:96:6d:b5:18:07:3f:e8:b5:6b:85:
c8:29:8a:a2:9b:15:36:3b:b1:03:08:4f:c6:34:4c:dc:30:b0:
69:2e:13:ea:8d:04:d5:09:dd:c5:37:8f:7c:69:8b:e9:4c:3a:
c6:72:42:aa:4f:6b:fb:58:f1:68:bf:a4:7e:45:78:3a:ca:05:
9b:e8:4b:16:eb:f4:ce:bc:9c:f7:08:d8:3a:36:39:d7:43:93:
1b:c0:cc:40:b3:b9:c6:da:ed:db:8d:5c:f4:64:f6:cb:6a:04:
0a:11:a5:17:08:21:20:a0:df:77:1e:da:7b:99:ef:95:ce:64:
92:c8:86:a2:7b:61:0b:38:51:7d:71:96:22:8d:24:7b:78:40:
63:21:cb:2c:51:00:83:f2:f4:a9:1a:c5:45:60:ff:a6:a7:39:
b1:26:f8:68:39:01:22:ba:31:22:02:b6:ca:b9:19:68:c5:f2:
95:2c:5c:da:c3:1d:7b:89:1f:ce:da:2e:cd:5d:e8:95:e5:ba:
57:cc:82:f6:b7:64:3d:44:2f:4f:c8:65:02:6c:40:03:9b:ff:
b4:d8:58:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:53 2025 by rpki-client