Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gv2FuP8B3o9f3a2uzU_CXKvZZwA.roa
File: gv2FuP8B3o9f3a2uzU_CXKvZZwA.roa (raw, json)
Hash identifier: AZs2K+YNqveNrWJZ2ZKUp2r5UVMWKvTpbml2/vO5Ctk=
Subject key identifier: 82:FD:85:B8:FF:01:DE:8F:5F:DD:AD:AE:CD:4F:C2:5C:AB:D9:67:00
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A6C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gv2FuP8B3o9f3a2uzU_CXKvZZwA.roa
Signing time: Sun 07 Feb 2021 11:49:44 +0000
ROA not before: Sun 07 Feb 2021 11:49:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.48.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2668 (0xa6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:49:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=82FD85B8FF01DE8F5FDDADAECD4FC25CABD96700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:58:f6:94:86:94:4c:3a:6d:fc:a3:08:16:92:
99:5e:9e:24:df:d7:7a:1e:bf:f1:e0:75:49:66:a4:
78:5c:01:12:f3:48:84:cb:ca:7c:8e:1f:4d:b2:3f:
fa:a2:0b:ac:35:bc:e3:70:9e:f6:1e:fe:5a:32:96:
ea:2a:f7:50:61:cb:a8:12:f1:cb:e5:e2:12:b8:1a:
76:95:73:ba:fe:9d:f2:33:10:c4:10:aa:89:66:80:
c3:1c:70:f4:b6:06:a3:18:32:c3:4b:19:a5:95:21:
a6:5f:ce:4b:f1:01:3c:1e:d4:63:cf:ad:d5:ab:59:
bc:5f:50:28:dc:11:2b:d7:8d:38:5a:99:a0:7d:44:
42:f4:f6:64:2e:92:1a:d5:f6:d6:c7:65:2a:17:ee:
3b:4a:f5:24:c1:aa:fd:aa:70:59:61:a2:1b:14:e3:
3e:70:48:79:0f:79:59:20:94:81:ce:24:14:8d:e1:
d8:74:7d:37:e3:f3:b2:aa:80:c7:a7:d4:10:e0:c5:
99:4c:e9:b3:8f:c1:d4:67:fd:27:03:09:9b:05:ae:
ef:8c:e7:30:be:0c:f9:fc:54:0f:28:22:7f:0b:73:
41:62:08:eb:46:be:ed:41:11:b5:ce:2c:38:00:23:
05:dc:f5:c3:d1:7a:51:f4:ec:e4:b4:4e:1d:98:71:
d4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FD:85:B8:FF:01:DE:8F:5F:DD:AD:AE:CD:4F:C2:5C:AB:D9:67:00
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gv2FuP8B3o9f3a2uzU_CXKvZZwA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.48.0/22
Signature Algorithm: sha256WithRSAEncryption
18:ae:f7:1e:7b:f5:b5:aa:a8:9b:06:98:5f:20:c7:0e:c8:57:
8f:5c:53:c7:f1:f9:43:41:bd:34:08:17:91:6b:4f:0d:dd:b6:
95:61:f8:c4:e6:58:52:f8:d2:66:70:0e:6d:fc:a4:65:83:14:
b7:20:62:d2:53:89:10:fb:09:0f:bf:58:23:8f:af:bb:1c:27:
8e:e8:31:03:49:96:13:e4:ba:17:b9:e0:63:84:84:aa:f5:94:
0d:1d:2e:f6:a9:95:08:75:2b:43:2e:04:a1:e8:be:24:15:21:
3b:53:af:60:12:45:74:83:64:1d:8f:f0:93:40:89:cc:17:e1:
7e:84:1c:9b:cf:fb:5b:1b:00:88:3a:48:1f:9f:5e:b9:44:60:
f5:9c:7f:a7:0f:25:e7:be:ab:21:33:2e:e0:eb:60:91:03:0e:
9b:69:8b:f1:f9:6d:2e:f7:05:0f:dc:3d:f4:20:1a:d8:b7:22:
38:5f:da:38:47:d2:af:d0:26:5e:cd:d4:9e:41:17:ce:3b:5b:
2e:3a:ba:c5:a7:fd:94:26:91:cb:fa:ee:26:f4:a1:57:c7:6a:
97:92:3f:54:8a:be:2b:c8:27:a3:fc:eb:6a:90:5e:95:db:6e:
3b:c9:17:98:f1:e5:d5:66:b6:e8:47:7e:4a:c9:bf:e8:de:96:
ba:93:ca:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:17 2025 by rpki-client