Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/izGf5PJUTRd4JOQ0tP-BnUS3g8g.roa
File: izGf5PJUTRd4JOQ0tP-BnUS3g8g.roa (raw, json)
Hash identifier: gY2vFx7r33xNtECJBkBhJLxaqOVFn1er6thZNmSEN40=
Subject key identifier: 8B:31:9F:E4:F2:54:4D:17:78:24:E4:34:B4:FF:81:9D:44:B7:83:C8
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 088A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/izGf5PJUTRd4JOQ0tP-BnUS3g8g.roa
Signing time: Tue 29 Sep 2020 10:02:35 +0000
ROA not before: Tue 29 Sep 2020 10:02:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9922
IP address blocks: 118.150.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2186 (0x88a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8B319FE4F2544D177824E434B4FF819D44B783C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:50:c6:0e:86:d9:8e:73:0a:8f:87:48:59:6c:
b7:a4:c1:82:c0:3a:d6:27:be:3e:4a:af:22:82:4b:
12:f7:57:cb:d5:c6:30:78:54:a9:63:92:b9:33:5c:
ad:b5:28:93:26:27:b2:bd:d7:cf:4e:f9:12:66:3c:
bf:37:a5:fc:95:cc:7f:2e:3b:9f:cb:a0:b7:34:47:
94:58:d9:81:cd:07:27:83:65:62:cb:b8:e9:c2:de:
2f:d8:06:a3:54:e5:92:28:d3:d1:47:f3:66:4e:a5:
d9:4f:a5:5e:f1:54:dc:4f:a3:00:06:fb:1e:53:1c:
24:fd:2d:a3:0a:9e:9f:a2:03:73:60:30:33:e1:a3:
e4:c2:c2:08:8b:2c:0e:0d:7c:de:25:fa:ac:44:45:
a3:a6:eb:67:d5:25:2c:0b:47:7e:92:8a:b6:39:80:
22:0a:30:df:3a:7b:59:e6:f8:eb:d1:6c:22:75:f9:
11:62:d6:25:c2:7d:4a:03:8c:97:c1:7e:f4:b5:49:
49:31:fc:31:54:53:a2:3d:5c:09:10:a0:8d:d1:b3:
1d:77:45:b8:da:34:5c:1a:9e:cd:31:cd:a2:6d:b7:
2e:78:95:31:33:66:05:5b:69:bf:2d:7a:2f:ea:e5:
f5:cd:78:a2:c1:a2:52:64:24:43:2e:3c:5f:f8:aa:
81:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:31:9F:E4:F2:54:4D:17:78:24:E4:34:B4:FF:81:9D:44:B7:83:C8
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/izGf5PJUTRd4JOQ0tP-BnUS3g8g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.240.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:c1:1a:30:fb:40:dc:a4:17:7b:85:e0:a6:21:e5:73:28:c9:
c5:00:2f:7f:d3:15:fc:73:02:63:38:67:2a:83:04:c8:02:4e:
81:7e:03:1f:0f:a9:26:95:46:87:a1:47:a0:09:66:57:4d:37:
3f:99:c5:2c:b4:94:cd:c4:07:70:f7:c7:ed:fe:f6:f9:6f:b6:
7a:87:9a:53:19:bb:55:04:4e:a5:7c:e2:a9:2c:62:ed:29:9d:
9e:5d:15:bc:a6:08:fe:07:86:ea:5d:d0:3a:70:97:a2:85:3b:
93:7d:da:6f:7c:c3:da:a5:6d:74:4f:61:db:07:89:a1:70:39:
62:47:7e:b1:06:d1:fc:ba:48:ea:69:4c:4c:2e:0f:b4:66:bc:
83:a6:a9:6d:1f:3d:cc:b4:2c:f2:86:2f:16:eb:6c:69:23:40:
64:34:3b:63:6b:20:df:e3:61:21:b0:b6:31:31:9e:4b:d6:09:
c8:9a:9e:d2:5e:8c:c4:7e:dd:fe:7f:7b:85:ca:0d:31:c6:bc:
d6:5d:b2:25:37:55:1a:57:34:63:e0:80:ac:64:40:ec:36:ce:
32:16:14:b4:f5:8f:c9:5b:98:4d:e8:45:06:7b:a1:c3:35:36:
2f:4a:61:37:38:8c:dd:7b:10:87:6c:f2:a1:4e:fc:21:bb:7a:
0a:86:94:b3
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCIowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDA5Mjkx
MDAyMzVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDhCMzE5RkU0RjI1NDRE
MTc3ODI0RTQzNEI0RkY4MTlENDRCNzgzQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuUMYOhtmOcwqPh0hZbLekwYLAOtYnvj5KryKCSxL3V8vVxjB4
VKljkrkzXK21KJMmJ7K9189O+RJmPL83pfyVzH8uO5/LoLc0R5RY2YHNByeDZWLL
uOnC3i/YBqNU5ZIo09FH82ZOpdlPpV7xVNxPowAG+x5THCT9LaMKnp+iA3NgMDPh
o+TCwgiLLA4NfN4l+qxERaOm62fVJSwLR36SirY5gCIKMN86e1nm+OvRbCJ1+RFi
1iXCfUoDjJfBfvS1SUkx/DFUU6I9XAkQoI3Rsx13RbjaNFwans0xzaJtty54lTEz
ZgVbab8tei/q5fXNeKLBolJkJEMuPF/4qoHpAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUizGf5PJUTRd4JOQ0tP+BnUS3g8gwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9pekdmNVBKVVRSZDRK
T1EwdFAtQm5VUzNnOGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCdpbwMA0GCSqGSIb3DQEBCwUAA4IBAQCjwRow+0DcpBd7heCmIeVzKMnFAC9/
0xX8cwJjOGcqgwTIAk6BfgMfD6kmlUaHoUegCWZXTTc/mcUstJTNxAdw98ft/vb5
b7Z6h5pTGbtVBE6lfOKpLGLtKZ2eXRW8pgj+B4bqXdA6cJeihTuTfdpvfMPapW10
T2HbB4mhcDliR36xBtH8ukjqaUxMLg+0ZryDpqltHz3MtCzyhi8W62xpI0BkNDtj
ayDf42EhsLYxMZ5L1gnImp7SXozEft3+f3uFyg0xxrzWXbIlN1UaVzRj4ICsZEDs
Ns4yFhS09Y/JW5hN6EUGe6HDNTYvSmE3OIzdexCHbPKhTvwhu3oKhpSz
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:27 2025 by rpki-client