Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ej0qKHMIsrl0vrr0ycmBgo7U8-g.roa
File: ej0qKHMIsrl0vrr0ycmBgo7U8-g.roa (raw, json)
Hash identifier: RqzhojeVvCOd50cKcpppj83Gi8UfdhWbgYZzCz+mr/I=
Subject key identifier: 7A:3D:2A:28:73:08:B2:B9:74:BE:BA:F4:C9:C9:81:82:8E:D4:F3:E8
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ej0qKHMIsrl0vrr0ycmBgo7U8-g.roa
Signing time: Thu 15 Sep 2022 02:39:12 +0000
ROA not before: Thu 15 Sep 2022 02:39:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 150.117.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7A3D2A287308B2B974BEBAF4C9C981828ED4F3E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bf:0b:24:4e:93:b6:e9:80:39:32:e6:ec:f8:
87:17:a4:ee:87:dc:c8:e6:e1:e6:ef:f5:6b:a6:a0:
43:d4:82:f6:1c:65:d7:24:f2:ea:2d:4d:83:7f:72:
9a:63:83:c2:c9:56:99:da:bb:4b:59:d3:ca:f1:6c:
63:8f:88:66:70:f2:03:a0:cb:78:84:29:38:34:51:
42:a2:39:8e:b2:3e:71:57:26:1e:be:f9:54:96:1d:
62:44:36:2b:0e:1b:58:1f:f9:87:6e:61:58:fc:d0:
9d:a3:fc:b4:eb:08:a9:97:93:0e:f0:1f:b7:03:98:
5d:c9:cc:c7:cc:7f:5c:7a:13:96:ae:bb:58:28:b1:
fd:d0:bb:8e:73:4e:3e:1f:1e:6e:6c:35:9a:03:b6:
42:16:82:e1:cc:8d:f4:a5:9d:a6:e8:9d:0a:51:b0:
75:71:4a:0e:97:65:88:27:bf:da:c2:88:ab:9f:e5:
99:62:3a:63:f5:76:af:d5:0a:2b:9f:62:82:2e:b9:
62:ed:65:b4:60:8a:14:a9:17:55:85:ce:bc:87:58:
79:ae:b8:ff:0a:13:12:d0:89:65:49:eb:46:a1:44:
5a:c6:52:13:7e:bf:4e:58:29:b4:ed:cc:fe:7d:69:
80:a3:91:a7:b9:60:e1:b4:05:6f:aa:62:9d:23:a1:
e4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:3D:2A:28:73:08:B2:B9:74:BE:BA:F4:C9:C9:81:82:8E:D4:F3:E8
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ej0qKHMIsrl0vrr0ycmBgo7U8-g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.192.0/19
Signature Algorithm: sha256WithRSAEncryption
29:0a:65:44:ab:36:1d:44:a6:24:de:b7:e0:2f:2c:ec:5e:5b:
33:a6:8a:5b:0c:2f:bd:61:03:8d:6f:35:80:37:25:43:0c:1a:
42:78:83:f6:7b:f3:b7:fd:53:2e:81:cc:bf:1e:d5:6c:66:d9:
b7:d2:cc:cb:76:d3:24:3f:fd:3f:07:a1:da:25:cc:5b:24:f5:
65:c9:2a:cb:96:86:b8:09:b8:69:3b:81:67:6b:2b:fc:ca:bc:
c8:76:56:15:ad:69:e3:4c:cd:9c:6b:91:40:a3:5a:a3:f9:b0:
57:16:d5:b2:5f:e7:3d:94:d2:fc:1d:53:b1:17:3a:e3:15:8b:
3b:1f:7f:a7:f4:d7:e8:28:fc:f9:c3:ae:f7:14:60:a8:4b:ee:
3f:6c:5f:0d:21:a6:21:c3:4e:2c:50:fb:8b:bf:77:74:f2:88:
1b:16:ac:4e:81:af:af:79:6a:b3:fd:28:fc:2a:ee:98:ea:15:
1d:19:a0:7a:7a:48:e8:82:a6:07:47:14:cf:1b:08:01:21:37:
7d:bc:87:42:d8:40:ae:70:ef:c6:b0:94:71:6c:6b:57:ac:a6:
68:47:b7:a3:68:cf:81:ba:11:a4:f3:17:07:bb:d1:5b:af:07:
bd:63:fd:2f:2d:19:03:7d:54:81:6e:d0:bb:29:82:92:3b:90:
25:ca:71:ab
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjA5MTUw
MjM5MTJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDdBM0QyQTI4NzMwOEIy
Qjk3NEJFQkFGNEM5Qzk4MTgyOEVENEYzRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMvwskTpO26YA5Mubs+IcXpO6H3Mjm4ebv9WumoEPUgvYcZdck
8uotTYN/cppjg8LJVpnau0tZ08rxbGOPiGZw8gOgy3iEKTg0UUKiOY6yPnFXJh6+
+VSWHWJENisOG1gf+YduYVj80J2j/LTrCKmXkw7wH7cDmF3JzMfMf1x6E5auu1go
sf3Qu45zTj4fHm5sNZoDtkIWguHMjfSlnabonQpRsHVxSg6XZYgnv9rCiKuf5Zli
OmP1dq/VCiufYoIuuWLtZbRgihSpF1WFzryHWHmuuP8KExLQiWVJ60ahRFrGUhN+
v05YKbTtzP59aYCjkae5YOG0BW+qYp0joeTnAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUej0qKHMIsrl0vrr0ycmBgo7U8+gwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9lajBxS0hNSXNybDB2
cnIweWNtQmdvN1U4LWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQFlnXAMA0GCSqGSIb3DQEBCwUAA4IBAQApCmVEqzYdRKYk3rfgLyzsXlszpopb
DC+9YQONbzWANyVDDBpCeIP2e/O3/VMugcy/HtVsZtm30szLdtMkP/0/B6HaJcxb
JPVlySrLloa4CbhpO4Fnayv8yrzIdlYVrWnjTM2ca5FAo1qj+bBXFtWyX+c9lNL8
HVOxFzrjFYs7H3+n9NfoKPz5w673FGCoS+4/bF8NIaYhw04sUPuLv3d08ogbFqxO
ga+veWqz/Sj8Ku6Y6hUdGaB6ekjogqYHRxTPGwgBITd9vIdC2ECucO/GsJRxbGtX
rKZoR7ejaM+BuhGk8xcHu9Fbrwe9Y/0vLRkDfVSBbtC7KYKSO5AlynGr
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org