Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/j126LuogseYXGLPljs5vJdZbm9w.roa
File: j126LuogseYXGLPljs5vJdZbm9w.roa (raw, json)
Hash identifier: QXNI5o16UP/RxS2kq9qdPbLY1tgeSwmzed387JZdtro=
Subject key identifier: 8F:5D:BA:2E:EA:20:B1:E6:17:18:B3:E5:8E:CE:6F:25:D6:5B:9B:DC
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E11
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/j126LuogseYXGLPljs5vJdZbm9w.roa
Signing time: Thu 29 Dec 2022 09:32:12 +0000
ROA not before: Thu 29 Dec 2022 09:32:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 118.150.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3601 (0xe11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8F5DBA2EEA20B1E61718B3E58ECE6F25D65B9BDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:44:aa:ec:33:2c:7a:43:3b:5c:08:ed:cd:e9:
53:1a:96:3f:de:64:65:79:08:9c:10:29:3f:ff:2c:
b0:d9:8f:7e:0b:bc:dc:3e:fe:54:69:d7:76:ed:e3:
15:e6:ba:ca:f0:06:0d:b5:71:ab:17:2a:e9:92:6e:
96:c7:4a:3c:ab:94:dd:3c:09:51:77:ac:4c:ba:d8:
c9:ff:58:6d:37:f3:b6:21:88:02:3f:98:7b:0a:8a:
85:b4:96:28:ff:e9:c5:23:ce:b4:80:ad:bc:f3:68:
ab:e0:ac:87:c6:0f:de:15:34:1c:26:da:95:93:3d:
1b:e9:d8:53:e5:ce:f3:6e:74:d7:2a:75:76:e7:82:
48:1c:8b:fc:e6:5e:ec:49:cf:58:e3:6a:8a:59:00:
38:ce:f3:4a:ef:44:2d:ac:24:87:05:28:e2:b6:d6:
03:00:3b:ac:6a:19:b6:19:dd:9c:76:78:92:51:8d:
02:bb:3d:e7:4a:17:56:c8:6d:4b:d7:98:20:b9:be:
aa:56:65:9b:23:f9:cc:bc:f4:08:0c:56:9d:67:28:
b0:57:a1:c4:18:bf:2e:9f:71:7a:79:56:e1:0a:3b:
a2:b1:f2:05:23:4b:60:a8:62:66:3d:65:3f:27:e2:
80:f9:b7:98:29:72:d8:24:00:e3:5c:ad:4f:36:c8:
4e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:5D:BA:2E:EA:20:B1:E6:17:18:B3:E5:8E:CE:6F:25:D6:5B:9B:DC
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/j126LuogseYXGLPljs5vJdZbm9w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.248.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:97:28:78:6a:3b:1b:05:ec:95:10:ae:4d:de:cb:1a:df:98:
24:e2:42:3a:05:cf:a7:9b:70:b8:aa:6b:43:f7:c2:1b:ff:ca:
54:90:62:db:cd:15:cc:bd:a6:a3:54:e8:28:10:86:22:c8:81:
80:2a:48:2e:54:8e:11:f6:08:2c:e2:9b:16:b5:a5:ad:f6:b6:
8b:ac:fc:d3:be:e4:fd:d8:ad:1e:37:f1:59:6c:86:57:6b:5b:
61:94:27:f8:f9:69:84:55:f4:fb:53:a7:57:20:ab:71:19:98:
1e:b5:f6:b0:17:7f:a3:72:d4:95:09:45:49:05:2a:ab:be:de:
57:9a:ac:55:9e:fe:b5:4c:c0:9b:71:4a:91:61:00:bb:7c:0f:
80:d1:fa:d2:e2:e4:ef:8a:16:37:4c:c2:88:49:af:91:ae:8c:
b3:0d:ad:3b:05:13:02:ad:02:0c:38:0b:f0:5b:36:61:e8:2f:
5c:61:c3:a3:ca:7c:87:40:3e:99:5c:22:59:b3:dc:a1:dd:dc:
39:67:ae:49:d3:39:69:30:66:b0:dc:ea:8c:0c:21:25:c9:7a:
18:58:bd:b5:67:c8:b8:e6:c6:b4:65:b1:dc:f9:f2:ee:f2:e8:
ae:35:97:6b:f8:55:48:b0:c6:66:85:e9:a0:78:cb:08:8c:28:
f0:a0:ce:dc
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDhEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMyMTJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDhGNURCQTJFRUEyMEIx
RTYxNzE4QjNFNThFQ0U2RjI1RDY1QjlCREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCXRKrsMyx6QztcCO3N6VMalj/eZGV5CJwQKT//LLDZj34LvNw+
/lRp13bt4xXmusrwBg21casXKumSbpbHSjyrlN08CVF3rEy62Mn/WG0387YhiAI/
mHsKioW0lij/6cUjzrSArbzzaKvgrIfGD94VNBwm2pWTPRvp2FPlzvNudNcqdXbn
gkgci/zmXuxJz1jjaopZADjO80rvRC2sJIcFKOK21gMAO6xqGbYZ3Zx2eJJRjQK7
PedKF1bIbUvXmCC5vqpWZZsj+cy89AgMVp1nKLBXocQYvy6fcXp5VuEKO6Kx8gUj
S2CoYmY9ZT8n4oD5t5gpctgkAONcrU82yE6BAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUj126LuogseYXGLPljs5vJdZbm9wwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9qMTI2THVvZ3NlWVhH
TFBsanM1dkpkWmJtOXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCdpb4MA0GCSqGSIb3DQEBCwUAA4IBAQB/lyh4ajsbBeyVEK5N3ssa35gk4kI6
Bc+nm3C4qmtD98Ib/8pUkGLbzRXMvaajVOgoEIYiyIGAKkguVI4R9ggs4psWtaWt
9raLrPzTvuT92K0eN/FZbIZXa1thlCf4+WmEVfT7U6dXIKtxGZgetfawF3+jctSV
CUVJBSqrvt5XmqxVnv61TMCbcUqRYQC7fA+A0frS4uTvihY3TMKISa+RroyzDa07
BRMCrQIMOAvwWzZh6C9cYcOjynyHQD6ZXCJZs9yh3dw5Z65J0zlpMGaw3OqMDCEl
yXoYWL21Z8i45sa0ZbHc+fLu8uiuNZdr+FVIsMZmhemgeMsIjCjwoM7c
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org