Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/irxTTRrS6YxyocfyJc5X_ipPi98.roa
File: irxTTRrS6YxyocfyJc5X_ipPi98.roa (raw, json)
Hash identifier: /UwuUMSiNPB1LFxcJA6+GBRru9ZvxjbhE6YNMObPBX8=
Subject key identifier: 8A:BC:53:4D:1A:D2:E9:8C:72:A1:C7:F2:25:CE:57:FE:2A:4F:8B:DF
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/irxTTRrS6YxyocfyJc5X_ipPi98.roa
Signing time: Thu 15 Sep 2022 02:39:21 +0000
ROA not before: Thu 15 Sep 2022 02:39:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8ABC534D1AD2E98C72A1C7F225CE57FE2A4F8BDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ad:ec:6e:ae:07:aa:c6:b2:c6:cb:94:43:ce:
a3:77:2d:0e:c0:14:3b:69:3c:53:3e:83:64:99:b2:
f3:61:2e:ac:42:70:cf:17:14:1b:ee:db:cc:70:90:
d7:08:65:c7:d4:bf:65:c2:29:1c:de:de:39:9f:1d:
04:ef:dc:b0:eb:5a:9a:5c:20:8c:de:fb:b0:40:01:
5d:8c:98:73:af:c2:a0:e6:d1:aa:3e:27:40:8d:c5:
5c:04:fb:65:75:d6:27:74:3c:54:73:8f:50:e8:f9:
57:8b:e3:18:ef:7c:59:ba:36:da:51:56:2c:54:a4:
c3:15:68:a5:c5:fd:ef:bc:a1:41:ff:a9:47:2c:bd:
d5:05:c2:8f:0a:07:c2:d6:84:52:53:3f:3c:bf:3f:
da:c9:52:ad:89:1e:a8:f9:54:da:e5:49:92:4b:ad:
8b:4a:0a:3c:e1:8b:28:f3:c0:42:c4:6f:23:8d:5b:
eb:f1:e6:2d:bf:b4:e0:2d:7e:ba:a2:9f:e7:1e:73:
e6:42:0e:50:ec:bf:63:16:1e:9f:81:fc:66:53:c2:
f8:6f:a6:a0:1e:81:9b:e5:39:96:95:7a:b7:5d:02:
42:08:cb:8d:40:ac:43:7f:0a:3a:0a:ed:79:5b:47:
55:da:da:9a:64:b6:13:b6:42:3a:43:5a:ab:ea:8e:
30:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BC:53:4D:1A:D2:E9:8C:72:A1:C7:F2:25:CE:57:FE:2A:4F:8B:DF
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/irxTTRrS6YxyocfyJc5X_ipPi98.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.238.0/24
Signature Algorithm: sha256WithRSAEncryption
38:93:b0:df:02:c9:6c:18:9f:75:74:47:ec:2b:3c:71:80:ca:
50:38:d3:ac:07:73:78:b2:dc:b3:bd:81:71:c0:78:08:f0:d8:
4c:84:d9:a9:bb:d8:ef:18:4c:2e:78:d1:f0:25:f5:a7:02:06:
c9:ed:5b:58:1a:d5:8d:83:6d:ab:18:99:ed:ce:e6:8b:07:c8:
7a:24:20:eb:90:34:dc:71:7a:8a:eb:bd:5b:33:0e:e2:45:42:
e9:e3:f9:d2:c0:cb:67:61:a0:79:15:5e:ea:75:08:7b:ff:c3:
17:d4:0d:7a:40:03:af:55:72:68:52:98:e5:aa:80:7c:93:f4:
e2:2f:61:33:20:95:a0:9e:59:00:05:01:c7:f6:8a:8d:3b:5d:
78:c4:93:49:dc:44:2e:b7:91:bc:2f:dc:62:5d:6b:f2:f2:ef:
32:4d:af:3d:ae:30:f1:00:b9:d3:56:db:76:03:c7:ab:bf:c2:
b4:f8:c5:4e:de:7e:b9:fe:ff:cb:46:f0:18:ec:1f:00:1a:9d:
90:37:9e:b0:bf:30:26:9c:44:28:00:38:48:a8:7b:2d:9b:4e:
dd:0b:d0:b6:83:95:a9:f0:15:75:00:fc:a7:f1:b3:4d:32:e7:
5c:86:8f:e8:c2:2e:18:be:3a:15:9f:5b:65:f3:10:dc:ab:3e:
70:c3:4b:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:25 2025 by rpki-client