Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jPJfFqWQRxh9sqcmt-7w9R-PEP0.roa
File: jPJfFqWQRxh9sqcmt-7w9R-PEP0.roa (raw, json)
Hash identifier: 8UKXXf/WXPl5bWj8NMc26Zl0Xin9ZcusItPYCBieqj8=
Subject key identifier: 8C:F2:5F:16:A5:90:47:18:7D:B2:A7:26:B7:EE:F0:F5:1F:8F:10:FD
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BE0
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jPJfFqWQRxh9sqcmt-7w9R-PEP0.roa
Signing time: Wed 29 Sep 2021 02:38:48 +0000
ROA not before: Wed 29 Sep 2021 02:38:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.116.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3040 (0xbe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8CF25F16A59047187DB2A726B7EEF0F51F8F10FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:65:16:b1:56:c2:d4:39:cc:5a:4b:78:f7:f8:
f6:2f:f7:08:6b:20:40:c6:fd:91:32:ec:f0:f0:32:
a9:69:c7:a4:3c:05:51:16:25:b2:65:e7:71:2d:61:
34:d5:4c:a5:df:94:1c:4d:be:9c:62:73:92:37:63:
30:f9:7c:0e:08:f3:aa:be:c5:ba:39:77:8e:b3:c1:
de:43:4b:2e:0f:74:a0:26:1d:7b:8a:34:31:81:c3:
fd:ec:00:28:86:98:fc:de:18:7d:f7:50:2c:6e:bc:
01:16:5a:ed:5e:48:c8:1d:73:42:d6:d2:6d:ad:9f:
38:cf:e3:b7:0a:61:0c:f1:df:a7:3d:4b:98:76:04:
c4:6b:1c:f5:fc:78:05:10:59:b5:ab:75:22:98:e6:
88:9c:3c:8c:cf:a3:c4:6e:59:8c:b2:fa:1a:ba:1c:
32:15:5b:82:70:7a:26:1c:92:5b:58:ee:18:04:a3:
47:ab:f8:03:75:75:0d:7a:62:33:f0:9f:00:9a:95:
84:67:63:82:5d:9d:35:f5:1e:b0:87:43:ee:b7:4d:
38:11:0c:e5:7b:fc:af:78:54:84:cb:4c:73:34:7e:
76:fa:de:49:30:1c:aa:9b:16:4c:49:4b:42:22:85:
59:0c:fd:ec:be:4e:76:d6:c6:5d:57:bb:59:f9:2b:
6d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F2:5F:16:A5:90:47:18:7D:B2:A7:26:B7:EE:F0:F5:1F:8F:10:FD
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jPJfFqWQRxh9sqcmt-7w9R-PEP0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.160.0/21
Signature Algorithm: sha256WithRSAEncryption
19:cc:b8:b4:f0:4d:45:02:41:14:be:f1:9c:d0:5a:73:1d:1e:
2e:29:4a:7e:4b:ee:fd:a9:51:48:a7:11:fb:55:52:05:ef:df:
9e:22:91:98:8b:5b:c4:7e:93:a5:ee:72:fb:89:af:b2:aa:a2:
b3:f0:08:09:8f:57:ac:74:6b:4c:d3:b5:92:53:89:c7:f4:57:
98:18:dc:40:cf:06:c0:43:58:83:c7:aa:32:d8:ed:a0:1c:75:
5c:59:6d:b0:2b:30:9b:80:c9:07:4d:7d:cd:cb:be:47:8e:f7:
32:3b:b6:87:9f:c7:b0:25:74:b9:f4:e3:a2:90:89:7f:98:7a:
82:de:9b:59:c4:fd:d9:42:be:76:39:5e:cb:fb:50:5d:05:b0:
f6:45:7e:8f:ca:4c:ed:e9:85:de:89:bf:49:da:e9:ec:70:89:
b6:7b:e9:11:15:f1:4e:6e:fe:f9:73:76:73:ce:38:46:4f:4c:
fe:fc:ab:0f:41:06:03:38:fc:bd:13:50:6c:c3:5f:cb:ae:4f:
67:1a:78:75:ba:8e:2e:ac:4c:c4:7d:37:5c:b9:a6:58:3a:47:
17:62:1e:4c:36:d0:a5:ae:87:5d:26:27:d1:30:87:d1:9f:a3:
7f:9a:73:2d:d7:1a:17:67:b1:4c:2f:24:da:f1:b7:e3:12:77:
23:fa:0f:a6
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICC+AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM4NDhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDhDRjI1RjE2QTU5MDQ3
MTg3REIyQTcyNkI3RUVGMEY1MUY4RjEwRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDxZRaxVsLUOcxaS3j3+PYv9whrIEDG/ZEy7PDwMqlpx6Q8BVEW
JbJl53EtYTTVTKXflBxNvpxic5I3YzD5fA4I86q+xbo5d46zwd5DSy4PdKAmHXuK
NDGBw/3sACiGmPzeGH33UCxuvAEWWu1eSMgdc0LW0m2tnzjP47cKYQzx36c9S5h2
BMRrHPX8eAUQWbWrdSKY5oicPIzPo8RuWYyy+hq6HDIVW4JweiYckltY7hgEo0er
+AN1dQ16YjPwnwCalYRnY4JdnTX1HrCHQ+63TTgRDOV7/K94VITLTHM0fnb63kkw
HKqbFkxJS0IihVkM/ey+TnbWxl1Xu1n5K23VAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUjPJfFqWQRxh9sqcmt+7w9R+PEP0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9qUEpmRnFXUVJ4aDlz
cWNtdC03dzlSLVBFUDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDlnSgMA0GCSqGSIb3DQEBCwUAA4IBAQAZzLi08E1FAkEUvvGc0FpzHR4uKUp+
S+79qVFIpxH7VVIF79+eIpGYi1vEfpOl7nL7ia+yqqKz8AgJj1esdGtM07WSU4nH
9FeYGNxAzwbAQ1iDx6oy2O2gHHVcWW2wKzCbgMkHTX3Ny75HjvcyO7aHn8ewJXS5
9OOikIl/mHqC3ptZxP3ZQr52OV7L+1BdBbD2RX6Pykzt6YXeib9J2unscIm2e+kR
FfFObv75c3ZzzjhGT0z+/KsPQQYDOPy9E1Bsw1/Lrk9nGnh1uo4urEzEfTdcuaZY
OkcXYh5MNtClroddJifRMIfRn6N/mnMt1xoXZ7FMLyTa8bfjEncj+g+m
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:42 2025 by rpki-client