Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gUSCEVGAk8R0xr8j9YTP9t2KEQQ.roa
File: gUSCEVGAk8R0xr8j9YTP9t2KEQQ.roa (raw, json)
Hash identifier: Aif/HhSU3PTRmEjFCrvR2RM+iPFXI03YufaSRnlHZ6k=
Subject key identifier: 81:44:82:11:51:80:93:C4:74:C6:BF:23:F5:84:CF:F6:DD:8A:11:04
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E16
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gUSCEVGAk8R0xr8j9YTP9t2KEQQ.roa
Signing time: Thu 29 Dec 2022 09:32:13 +0000
ROA not before: Thu 29 Dec 2022 09:32:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 150.117.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3606 (0xe16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=81448211518093C474C6BF23F584CFF6DD8A1104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a2:87:1b:55:4d:07:70:24:45:f8:bb:2f:1e:
28:1b:a4:1b:77:35:f5:39:ef:49:9e:73:c1:82:c2:
18:f5:ba:58:65:cd:8a:40:b3:9b:32:75:23:e8:ff:
a3:56:8e:b2:fe:18:58:29:04:50:6b:65:18:ff:37:
3d:85:28:15:36:53:0b:cc:8d:f6:ca:2f:78:43:16:
50:a8:79:c5:94:e9:a6:b2:ae:bf:26:6d:45:09:db:
f9:2e:2a:d3:6f:ff:77:46:01:74:f1:10:aa:ae:03:
b6:ec:b7:c6:b7:b4:03:43:d0:87:47:d2:75:e1:99:
4a:0a:40:25:79:c5:a0:93:02:01:be:de:af:e7:d5:
2b:a5:9e:ac:e7:71:b4:96:ff:47:e8:0d:56:c9:41:
06:d7:e9:9e:53:45:92:fb:71:be:7e:c6:f7:79:83:
52:e8:60:65:b9:07:51:fc:16:74:43:c3:c0:0d:91:
7e:9a:43:40:5d:c8:23:80:8b:7d:ca:5e:87:97:3e:
d6:56:52:fa:2a:60:6e:d7:27:91:d6:14:e4:7d:c7:
cf:f1:1e:b4:7f:b7:5c:b4:72:a1:e5:90:df:09:e6:
db:cf:bf:17:8a:56:97:1f:fb:62:3d:c4:9a:40:eb:
f0:7d:31:a5:f7:a7:20:ac:7c:68:66:ae:cf:be:80:
0e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:44:82:11:51:80:93:C4:74:C6:BF:23:F5:84:CF:F6:DD:8A:11:04
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gUSCEVGAk8R0xr8j9YTP9t2KEQQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.0.0/20
Signature Algorithm: sha256WithRSAEncryption
8f:ed:cb:74:bc:cd:44:92:a0:01:e6:df:8d:64:c0:a0:c5:76:
da:e9:11:a6:61:e1:37:8d:50:d6:3a:2a:a8:f3:40:97:9b:4d:
66:b5:64:9c:64:fd:14:44:a4:3e:13:a3:34:c0:14:9b:1d:7e:
02:d2:76:54:7a:b3:64:43:29:fa:8c:33:91:c4:6a:de:8b:10:
9c:d9:c3:e4:b2:66:15:11:0b:91:7b:ea:4e:2e:bb:4d:d2:4a:
1d:4a:92:e0:b4:5d:4c:fa:49:1d:65:28:40:7d:bf:25:9e:1a:
99:75:01:79:14:9f:f1:01:2e:1c:d7:2e:ed:dd:5c:c8:f4:69:
19:44:ef:60:36:7d:0c:6c:4c:45:ce:23:71:5f:08:fd:7c:e4:
26:1e:94:24:22:25:93:45:e9:ff:7e:ec:6a:2d:06:90:0e:e9:
6a:5c:6c:ba:a4:54:10:67:1f:fa:7e:eb:ba:89:b2:a8:53:d0:
e9:ff:83:ae:d0:55:4b:ed:79:90:47:71:4c:f7:1a:9b:ba:98:
a9:c9:66:8d:26:72:e0:91:5b:b8:f4:36:f8:13:42:54:35:a9:
fe:65:b0:69:9d:28:a3:e5:c7:3d:2a:4b:80:20:b4:af:23:e4:
45:a0:28:65:8e:f1:3a:c1:29:7b:36:e2:a7:cb:43:5a:18:16:
95:a9:b4:e6
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMyMTNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDgxNDQ4MjExNTE4MDkz
QzQ3NEM2QkYyM0Y1ODRDRkY2REQ4QTExMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGoocbVU0HcCRF+LsvHigbpBt3NfU570mec8GCwhj1ulhlzYpA
s5sydSPo/6NWjrL+GFgpBFBrZRj/Nz2FKBU2UwvMjfbKL3hDFlCoecWU6aayrr8m
bUUJ2/kuKtNv/3dGAXTxEKquA7bst8a3tAND0IdH0nXhmUoKQCV5xaCTAgG+3q/n
1SulnqzncbSW/0foDVbJQQbX6Z5TRZL7cb5+xvd5g1LoYGW5B1H8FnRDw8ANkX6a
Q0BdyCOAi33KXoeXPtZWUvoqYG7XJ5HWFOR9x8/xHrR/t1y0cqHlkN8J5tvPvxeK
Vpcf+2I9xJpA6/B9MaX3pyCsfGhmrs++gA7PAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUgUSCEVGAk8R0xr8j9YTP9t2KEQQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9nVVNDRVZHQWs4UjB4
cjhqOVlUUDl0MktFUVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQElnUAMA0GCSqGSIb3DQEBCwUAA4IBAQCP7ct0vM1EkqAB5t+NZMCgxXba6RGm
YeE3jVDWOiqo80CXm01mtWScZP0URKQ+E6M0wBSbHX4C0nZUerNkQyn6jDORxGre
ixCc2cPksmYVEQuRe+pOLrtN0kodSpLgtF1M+kkdZShAfb8lnhqZdQF5FJ/xAS4c
1y7t3VzI9GkZRO9gNn0MbExFziNxXwj9fOQmHpQkIiWTRen/fuxqLQaQDulqXGy6
pFQQZx/6fuu6ibKoU9Dp/4Ou0FVL7XmQR3FM9xqbupipyWaNJnLgkVu49Db4E0JU
Nan+ZbBpnSij5cc9KkuAILSvI+RFoChljvE6wSl7NuKny0NaGBaVqbTm
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org