Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jFysbQILockMhuNpPs-hzx5LQ0Q.roa
File: jFysbQILockMhuNpPs-hzx5LQ0Q.roa (raw, json)
Hash identifier: vIwocKeTP+6mhjMY+RaoQ+lt6zxMYS74f1vloONMelY=
Subject key identifier: 8C:5C:AC:6D:02:0B:A1:C9:0C:86:E3:69:3E:CF:A1:CF:1E:4B:43:44
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DC1
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jFysbQILockMhuNpPs-hzx5LQ0Q.roa
Signing time: Thu 29 Dec 2022 09:31:49 +0000
ROA not before: Thu 29 Dec 2022 09:31:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 150.117.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3521 (0xdc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8C5CAC6D020BA1C90C86E3693ECFA1CF1E4B4344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:72:5f:d1:c0:c2:12:7f:fc:d8:96:3e:e2:95:
4c:06:5d:3a:ce:fa:4e:10:28:89:18:eb:f3:6e:2f:
ef:0a:26:67:0f:12:92:68:20:5f:49:e7:8b:9f:18:
2a:d2:a6:fa:5f:b6:9e:71:9b:29:54:c0:6f:0b:1b:
a1:6b:11:28:a5:47:9e:de:ed:ce:20:08:6f:01:f2:
63:20:c1:d7:0a:e5:61:97:66:cd:fe:7e:02:0d:ef:
24:d4:3a:17:34:04:a2:63:7d:6d:f4:b9:29:6d:a7:
bb:b0:93:cd:a8:56:f0:a7:b1:11:78:e3:be:6e:19:
57:80:3c:47:95:95:18:a7:0f:2a:cf:08:d5:a1:1b:
24:b2:e9:7a:bb:1d:95:83:70:b9:5e:9a:53:cd:26:
88:ee:0e:46:16:bb:71:9a:44:e5:42:09:c3:fb:7b:
fb:da:a3:ce:29:45:a2:f2:d4:a1:e0:55:21:c3:bf:
12:36:de:db:0a:1f:33:c2:2d:b2:3f:8c:5f:31:ef:
85:fd:60:5e:78:7f:a8:30:98:da:4e:ec:1e:a1:f7:
ec:55:9b:c6:36:2c:74:20:27:89:6d:45:3d:bc:5b:
7e:99:39:32:09:49:cc:cc:a3:7d:f7:ab:5a:79:82:
4b:76:17:88:d7:eb:4a:79:7e:30:32:88:bc:2c:3f:
42:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:5C:AC:6D:02:0B:A1:C9:0C:86:E3:69:3E:CF:A1:CF:1E:4B:43:44
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jFysbQILockMhuNpPs-hzx5LQ0Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.32.0/20
Signature Algorithm: sha256WithRSAEncryption
2e:1b:3e:2d:6f:b7:4f:43:67:00:75:5d:88:af:b3:e7:da:40:
03:23:fe:f5:7c:c2:1d:84:e1:a2:fc:8c:fb:60:bf:49:23:97:
5b:e8:71:ab:09:bb:c8:7b:10:73:0a:26:11:ea:92:e3:ac:6a:
57:ff:b3:8c:13:96:c7:71:57:25:28:0b:bf:8a:70:01:43:de:
f6:65:de:c1:14:6e:e0:7d:7d:a7:c1:94:ea:27:7c:d3:76:66:
db:6e:e4:2d:d7:54:5d:16:d8:d6:2a:76:29:bf:a9:e2:12:91:
e7:25:2c:e1:f3:f3:4f:a0:cd:ad:a4:15:bf:d5:d0:76:8f:e9:
62:01:a6:eb:3b:57:e3:80:6a:aa:27:bf:bb:06:a0:39:cc:76:
29:19:d0:b2:30:61:0a:af:41:8f:69:df:a2:39:99:23:c9:ed:
94:ba:38:27:ef:42:83:11:6b:98:e6:e4:65:c9:33:59:cf:67:
e8:d1:ea:76:c6:c6:01:49:66:bf:86:35:b9:47:4c:1f:4b:39:
75:48:1b:b8:3d:f8:87:a4:77:b8:84:51:c7:09:ff:15:eb:a9:
27:9d:28:46:87:cf:7d:bd:c5:19:49:ed:68:5b:c5:15:b8:a2:
f2:2d:32:39:66:eb:be:88:55:17:8c:9a:5a:5b:39:f2:d1:e7:
5a:2e:51:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:33 2025 by rpki-client