Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/l-OkrBMUvNGbfZrr7iqjXPKKeu8.roa
File: l-OkrBMUvNGbfZrr7iqjXPKKeu8.roa (raw, json)
Hash identifier: JTNYIPB4eK5whQyfJbNvbxNxyRIw6+Xkjkc+z/CZCWc=
Subject key identifier: 97:E3:A4:AC:13:14:BC:D1:9B:7D:9A:EB:EE:2A:A3:5C:F2:8A:7A:EF
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0859
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/l-OkrBMUvNGbfZrr7iqjXPKKeu8.roa
Signing time: Tue 29 Sep 2020 10:02:21 +0000
ROA not before: Tue 29 Sep 2020 10:02:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9922
IP address blocks: 118.150.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2137 (0x859)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=97E3A4AC1314BCD19B7D9AEBEE2AA35CF28A7AEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:49:5a:a9:07:3e:da:47:13:f2:68:d7:34:03:
b6:55:42:df:95:9a:f9:f4:27:5f:cf:6e:9a:1e:d9:
3d:a8:11:df:ac:dd:d7:56:2e:54:b1:7c:34:a7:e7:
14:ed:7d:f5:59:5f:ca:b8:c8:d6:33:1a:ef:d4:23:
95:8a:ed:f8:9c:2a:8a:a4:6e:50:db:23:c0:19:22:
76:c0:32:89:44:1f:bf:fb:dd:d8:94:5f:84:7a:4a:
0a:2c:3f:d8:82:31:99:81:fa:8f:55:0d:e2:d6:68:
1b:2d:fe:c8:a2:c2:4f:bc:35:18:32:85:5a:c7:75:
02:a7:b9:d1:bd:b3:70:c8:38:ce:02:ab:b7:40:b4:
75:26:2f:75:31:e8:64:57:a2:e7:91:b7:2f:9a:e7:
19:73:b3:20:1d:dc:b8:eb:2c:88:9c:7c:2f:42:c2:
88:b1:aa:e1:a2:d7:c7:f7:39:e0:ca:15:db:29:bf:
32:52:c9:6d:9a:2b:cd:c0:65:09:fc:31:7f:c0:b3:
b6:6e:54:86:87:d2:28:c8:d0:a8:3d:ce:bb:f5:6b:
47:06:09:4f:55:92:38:b5:b1:b2:59:de:07:02:df:
93:86:45:eb:ac:28:da:ed:f6:3b:1f:c0:6d:c6:9b:
d0:47:93:93:19:b0:bc:e3:8c:8a:49:c8:e8:e3:c1:
c3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E3:A4:AC:13:14:BC:D1:9B:7D:9A:EB:EE:2A:A3:5C:F2:8A:7A:EF
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/l-OkrBMUvNGbfZrr7iqjXPKKeu8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.240.0/21
Signature Algorithm: sha256WithRSAEncryption
8c:cf:4f:d0:05:fc:dd:93:f6:64:1f:91:08:c8:07:5d:77:5a:
53:ad:8b:4d:de:89:4b:87:6f:a9:fb:be:ac:12:0a:ae:a9:59:
50:35:25:8a:60:88:5b:67:ed:07:a1:0c:7f:23:6b:7f:49:11:
c2:dc:5f:02:98:71:d6:b4:8d:33:af:d6:f6:07:6c:99:78:f4:
20:3f:ce:e4:6d:27:41:f5:eb:e8:f4:66:eb:2f:75:34:3c:60:
ab:34:9a:b5:57:5a:64:e6:a8:9d:b2:55:11:c9:be:4f:19:82:
43:f4:9d:60:48:0c:f5:3d:78:42:30:b5:68:3a:59:23:1a:25:
d9:28:5e:13:4b:2c:bb:d1:0d:90:21:4b:1b:35:1e:08:2f:b9:
71:25:30:bf:65:9c:e5:91:6f:26:d9:b7:3a:73:18:0b:ca:1d:
6d:57:5d:35:44:df:23:1d:91:b5:60:14:fe:87:0d:66:cf:fd:
87:8c:39:68:4a:de:b6:90:b4:d9:9d:8c:be:ab:8c:0f:59:00:
a5:45:0b:0f:c8:71:d8:ae:dc:2f:d8:49:01:10:1f:a1:0a:e6:
35:9a:aa:f8:98:ee:24:d6:34:bf:1d:06:5d:d2:5b:26:08:b2:
0f:74:09:56:5d:3d:b6:d1:20:12:ad:34:70:87:9a:d4:54:3a:
45:4c:14:2b
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCFkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDA5Mjkx
MDAyMjFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk3RTNBNEFDMTMxNEJD
RDE5QjdEOUFFQkVFMkFBMzVDRjI4QTdBRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCTSVqpBz7aRxPyaNc0A7ZVQt+Vmvn0J1/Pbpoe2T2oEd+s3ddW
LlSxfDSn5xTtffVZX8q4yNYzGu/UI5WK7ficKoqkblDbI8AZInbAMolEH7/73diU
X4R6SgosP9iCMZmB+o9VDeLWaBst/siiwk+8NRgyhVrHdQKnudG9s3DIOM4Cq7dA
tHUmL3Ux6GRXoueRty+a5xlzsyAd3LjrLIicfC9CwoixquGi18f3OeDKFdspvzJS
yW2aK83AZQn8MX/As7ZuVIaH0ijI0Kg9zrv1a0cGCU9Vkji1sbJZ3gcC35OGReus
KNrt9jsfwG3Gm9BHk5MZsLzjjIpJyOjjwcM/AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUl+OkrBMUvNGbfZrr7iqjXPKKeu8wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9sLU9rckJNVXZOR2Jm
WnJyN2lxalhQS0tldTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDdpbwMA0GCSqGSIb3DQEBCwUAA4IBAQCMz0/QBfzdk/ZkH5EIyAddd1pTrYtN
3olLh2+p+76sEgquqVlQNSWKYIhbZ+0HoQx/I2t/SRHC3F8CmHHWtI0zr9b2B2yZ
ePQgP87kbSdB9evo9GbrL3U0PGCrNJq1V1pk5qidslURyb5PGYJD9J1gSAz1PXhC
MLVoOlkjGiXZKF4TSyy70Q2QIUsbNR4IL7lxJTC/ZZzlkW8m2bc6cxgLyh1tV101
RN8jHZG1YBT+hw1mz/2HjDloSt62kLTZnYy+q4wPWQClRQsPyHHYrtwv2EkBEB+h
CuY1mqr4mO4k1jS/HQZd0lsmCLIPdAlWXT220SASrTRwh5rUVDpFTBQr
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:48 2023 by rpki-client on console-ams.rpki-client.org