Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kXG1QQ-7lywTXKpXwGAOyaz14ZM.roa
File: kXG1QQ-7lywTXKpXwGAOyaz14ZM.roa (raw, json)
Hash identifier: CBHH/Os1Oz5f4aAYukJCfzPOMfbupXsVVERDlAopsBo=
Subject key identifier: 91:71:B5:41:0F:BB:97:2C:13:5C:AA:57:C0:60:0E:C9:AC:F5:E1:93
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F90
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kXG1QQ-7lywTXKpXwGAOyaz14ZM.roa
Signing time: Fri 01 Sep 2023 08:29:18 +0000
ROA not before: Fri 01 Sep 2023 08:29:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131607
IP address blocks: 150.117.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3984 (0xf90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9171B5410FBB972C135CAA57C0600EC9ACF5E193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f6:83:0d:fe:8a:29:45:34:d1:00:de:30:3e:
d8:58:52:2c:8a:6c:f8:82:2b:d3:5c:6d:95:3a:7e:
20:af:cb:18:2e:81:28:25:0f:a5:01:a6:69:e1:b3:
bf:a2:85:1c:cb:3e:0c:ca:80:b2:72:6b:de:c5:4b:
b4:0c:42:22:5e:f3:40:a1:42:d3:0b:f1:15:cf:4d:
a0:89:2d:aa:9e:c7:27:76:68:ac:c3:c3:c4:18:42:
16:d1:07:b9:b0:16:2a:d0:10:dc:74:fa:da:21:4e:
cf:43:22:c0:3d:d3:c1:4a:32:f6:7d:5d:72:04:8e:
ab:22:fb:ad:57:77:0f:ca:50:c6:38:5a:b3:93:60:
a5:71:d7:10:db:6a:23:51:92:00:db:5e:d8:c4:94:
e6:bb:92:53:36:87:ac:3e:b7:0c:6a:1e:17:c4:48:
61:58:b0:6b:6a:c0:c5:39:8c:22:5e:f5:3c:41:11:
e7:b5:a2:52:a2:18:f2:81:59:74:d3:cc:2e:83:31:
fc:fd:24:dc:81:70:ca:53:59:a7:eb:98:ce:a8:f6:
3d:c5:6f:81:a5:68:f2:31:6d:71:f9:16:4f:4f:a9:
16:60:95:4a:f5:15:be:40:5b:6c:08:7f:85:54:f8:
d7:59:0e:44:a2:1b:0c:ae:05:2d:7c:6e:f7:e6:4a:
63:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:71:B5:41:0F:BB:97:2C:13:5C:AA:57:C0:60:0E:C9:AC:F5:E1:93
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kXG1QQ-7lywTXKpXwGAOyaz14ZM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.192.0/19
Signature Algorithm: sha256WithRSAEncryption
53:a4:a2:82:7a:d2:80:02:1a:af:74:37:8e:0c:88:fe:06:bc:
63:10:6d:f6:67:fe:5c:43:32:8f:cf:f6:84:9e:0a:b4:0a:a3:
17:bb:8c:05:29:7b:e5:ab:e4:1d:e0:4f:53:ea:4b:c0:82:76:
c4:ef:66:35:0c:64:5f:27:b5:fd:80:50:6e:41:74:c3:11:79:
87:fe:7f:a5:cc:ab:d5:c1:21:0d:0f:fb:84:ec:6c:97:52:03:
08:1c:7a:02:a9:bb:8f:bb:f7:7f:97:dc:78:6f:86:31:b2:2d:
de:50:c5:7f:68:cd:cc:17:34:8e:5b:6b:3c:ad:9a:bd:38:66:
59:cc:70:bf:37:4b:29:3c:1c:93:35:7b:94:a6:a7:68:90:4b:
c7:20:d3:d7:ba:a7:de:64:1b:bc:a5:d2:d3:bb:c6:82:a5:14:
bc:b0:e7:03:a3:72:bc:40:1b:06:27:a3:12:f9:d1:bd:44:c5:
39:b2:79:88:97:99:40:6c:fa:fb:39:9c:a5:3e:36:f6:23:9e:
50:4c:16:25:10:21:c4:e8:03:02:2b:dd:42:0d:28:41:66:07:
af:6a:1b:cc:8e:7e:be:c4:32:c0:8c:6d:45:d3:3a:01:0d:78:
07:aa:c6:8f:e1:36:a7:8d:e3:d8:43:37:83:74:40:99:35:d7:
38:c8:ec:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:59 2025 by rpki-client