Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/irqfejLea9VueCuZTVoBOBq6wYE.roa
File: irqfejLea9VueCuZTVoBOBq6wYE.roa (raw, json)
Hash identifier: 1OvJ2BHEjbpo30cakM7qPDlUGXiB6cJ/SFuXYWgH2QI=
Subject key identifier: 8A:BA:9F:7A:32:DE:6B:D5:6E:78:2B:99:4D:5A:01:38:1A:BA:C1:81
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DC6
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/irqfejLea9VueCuZTVoBOBq6wYE.roa
Signing time: Thu 29 Dec 2022 09:31:51 +0000
ROA not before: Thu 29 Dec 2022 09:31:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 43.240.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3526 (0xdc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8ABA9F7A32DE6BD56E782B994D5A01381ABAC181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:51:8e:c4:fa:a9:af:cf:16:99:c8:c5:f7:63:
4a:9a:c6:64:bc:45:ef:93:c4:8f:c8:5a:b4:3b:2b:
ee:be:7c:e2:dd:f8:8e:2c:5f:40:c1:24:ca:1d:0b:
f6:f1:f9:d8:80:26:b0:f2:be:04:9b:1a:22:03:35:
f0:80:45:6f:43:58:85:15:2c:88:31:98:09:29:d5:
0e:2c:64:21:fe:a6:1c:10:23:39:ec:f5:33:d7:b6:
de:5e:47:e3:00:78:28:a2:a6:85:e8:1d:89:f6:d8:
b1:5d:8b:a3:59:96:11:ed:45:63:44:72:63:7d:74:
bd:2b:cf:52:24:82:8a:d9:b2:5f:d4:ef:df:f6:c9:
dc:0e:75:42:db:8f:e4:f3:ab:1a:a0:a1:f3:14:a7:
c3:81:f5:a7:c8:ec:ee:20:cc:9d:d3:a9:94:a7:cb:
58:4c:9d:15:52:d8:df:2e:7a:60:88:90:6b:d2:b1:
61:e9:4d:99:4d:2c:3d:a1:de:3e:d8:37:ad:a1:b1:
d2:72:86:40:bc:03:0b:e5:39:92:f9:2b:a5:21:51:
2a:c2:88:9e:5d:c4:8e:8f:bf:89:a7:4b:19:2d:27:
31:c6:e9:35:3b:f1:1d:6d:4a:8c:b6:d0:fa:89:f9:
bd:99:26:46:da:66:c5:c9:64:67:68:89:6e:2c:48:
87:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BA:9F:7A:32:DE:6B:D5:6E:78:2B:99:4D:5A:01:38:1A:BA:C1:81
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/irqfejLea9VueCuZTVoBOBq6wYE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.240.152.0/22
Signature Algorithm: sha256WithRSAEncryption
15:7b:f4:7f:5a:b0:ae:f2:af:42:fa:07:e4:af:4d:d4:7c:5a:
5a:f0:a2:96:42:e9:47:72:58:86:4f:2b:84:77:7d:54:36:b1:
e0:0a:ad:38:33:b7:78:0e:14:a2:cb:13:c6:be:53:b5:33:9a:
03:21:9b:ab:05:df:57:72:97:b7:bb:0e:8d:03:8b:2a:de:e4:
48:5e:61:a0:10:1d:5c:ee:1f:08:6e:57:bb:0f:74:3e:64:ef:
7e:76:71:0e:28:91:a4:1d:bd:2b:ff:0e:37:6f:a4:4a:94:71:
06:fb:b2:3c:d9:2c:13:8d:40:ca:be:6e:3e:bf:2c:c4:a6:f2:
5e:3d:e6:5d:78:81:39:91:3f:f8:52:ce:47:f3:ee:13:69:cf:
95:b5:62:8e:55:62:9e:65:3f:c7:2f:06:ef:ed:6b:3d:9a:4d:
68:da:41:27:d4:dc:cf:be:9f:ae:d2:2f:3e:10:0c:df:9d:72:
b2:2c:f0:8e:37:e7:b5:1b:70:72:a4:02:ed:25:9d:74:38:aa:
58:09:05:1a:bf:3c:ce:eb:a3:fd:94:cc:2b:28:79:7a:22:de:
2f:26:b9:af:a6:97:5c:3d:29:69:5d:7d:1b:7e:88:68:f9:44:
f6:b2:1e:87:82:49:fe:c9:a9:5a:75:ec:31:0d:67:7d:4a:5a:
43:27:db:53
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMxNTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDhBQkE5RjdBMzJERTZC
RDU2RTc4MkI5OTRENUEwMTM4MUFCQUMxODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHUY7E+qmvzxaZyMX3Y0qaxmS8Re+TxI/IWrQ7K+6+fOLd+I4s
X0DBJModC/bx+diAJrDyvgSbGiIDNfCARW9DWIUVLIgxmAkp1Q4sZCH+phwQIzns
9TPXtt5eR+MAeCiipoXoHYn22LFdi6NZlhHtRWNEcmN9dL0rz1IkgorZsl/U79/2
ydwOdULbj+TzqxqgofMUp8OB9afI7O4gzJ3TqZSny1hMnRVS2N8uemCIkGvSsWHp
TZlNLD2h3j7YN62hsdJyhkC8AwvlOZL5K6UhUSrCiJ5dxI6Pv4mnSxktJzHG6TU7
8R1tSoy20PqJ+b2ZJkbaZsXJZGdoiW4sSIclAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUirqfejLea9VueCuZTVoBOBq6wYEwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9pcnFmZWpMZWE5VnVl
Q3VaVFZvQk9CcTZ3WUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCK/CYMA0GCSqGSIb3DQEBCwUAA4IBAQAVe/R/WrCu8q9C+gfkr03UfFpa8KKW
QulHcliGTyuEd31UNrHgCq04M7d4DhSiyxPGvlO1M5oDIZurBd9Xcpe3uw6NA4sq
3uRIXmGgEB1c7h8Ible7D3Q+ZO9+dnEOKJGkHb0r/w43b6RKlHEG+7I82SwTjUDK
vm4+vyzEpvJePeZdeIE5kT/4Us5H8+4Tac+VtWKOVWKeZT/HLwbv7Ws9mk1o2kEn
1NzPvp+u0i8+EAzfnXKyLPCON+e1G3BypALtJZ10OKpYCQUavzzO66P9lMwrKHl6
It4vJrmvppdcPSlpXX0bfoho+UT2sh6Hgkn+yaladewxDWd9SlpDJ9tT
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org