Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lOJLc13cu3pYaxigcf27VpmN6I0.roa
File: lOJLc13cu3pYaxigcf27VpmN6I0.roa (raw, json)
Hash identifier: D+lyxljjhpFOXe3/NmlRrQxnX9aePrLd+Tr/JtABFAg=
Subject key identifier: 94:E2:4B:73:5D:DC:BB:7A:58:6B:18:A0:71:FD:BB:56:99:8D:E8:8D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DF9
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lOJLc13cu3pYaxigcf27VpmN6I0.roa
Signing time: Thu 29 Dec 2022 09:32:06 +0000
ROA not before: Thu 29 Dec 2022 09:32:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 150.116.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3577 (0xdf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=94E24B735DDCBB7A586B18A071FDBB56998DE88D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d0:58:54:67:d1:9f:9d:b9:ff:3c:0b:af:42:
83:a5:70:da:9c:70:18:d2:db:bb:74:ed:38:63:5f:
6b:9b:2c:fe:9f:c6:cb:57:67:7a:0a:2c:33:a8:5c:
85:48:99:f8:12:38:ec:1a:99:1f:d9:f3:a7:f4:cc:
0d:1d:e3:5a:69:e3:dd:f6:45:8c:4c:66:29:01:64:
7a:71:28:2b:3c:b0:e3:04:9c:91:5c:e0:9c:ec:1c:
a9:e3:49:6e:7c:ad:3c:eb:30:50:93:0e:11:e6:53:
2b:0d:90:22:fe:ae:b4:71:4d:d4:61:ff:ef:b3:41:
71:9a:08:6e:86:43:5e:80:aa:77:91:37:89:31:44:
1d:82:81:6b:38:45:80:da:c6:ca:4a:fa:35:3e:55:
07:e9:70:c2:17:b0:1b:41:d2:ee:4e:bd:72:e1:aa:
65:ee:c8:de:39:ad:a9:cc:f2:03:61:07:f1:e4:3c:
ea:e3:39:2f:c1:34:d6:73:5a:78:76:38:79:6b:6a:
96:68:c2:d3:f6:85:c2:03:4f:94:58:3f:93:5c:17:
8d:2d:0f:c3:c0:0c:da:ca:f9:8a:81:4c:d7:67:3c:
c2:f6:3d:46:ca:76:a2:99:73:c4:9d:8a:0e:df:28:
b1:1f:c0:7f:7a:33:5b:29:16:29:a8:ac:28:a7:41:
f2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:E2:4B:73:5D:DC:BB:7A:58:6B:18:A0:71:FD:BB:56:99:8D:E8:8D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lOJLc13cu3pYaxigcf27VpmN6I0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.119.0/24
Signature Algorithm: sha256WithRSAEncryption
61:3c:30:2a:6d:2b:18:58:a4:36:a0:1d:29:c8:fc:7f:ee:69:
e9:01:78:31:c6:aa:a4:70:74:68:7d:ec:55:3d:90:80:0e:87:
fb:31:54:08:f5:e7:a3:28:01:34:d3:4a:af:9c:22:a8:98:31:
aa:3b:b7:a4:d5:3b:ea:04:20:45:35:d9:00:3a:b6:c7:6f:33:
fb:52:78:24:80:49:c9:38:d7:da:f6:b9:b8:3b:70:8d:68:13:
03:c8:ef:45:4c:b0:f3:75:45:c2:74:43:4e:f9:bf:a1:ad:08:
5b:a2:fc:ab:43:20:a2:1c:47:b8:5e:89:ae:4e:39:c7:3c:b5:
6d:79:e6:07:6b:16:b8:4c:5a:ba:b8:7f:fc:2d:ce:1d:06:85:
61:a4:db:b1:d1:43:df:f6:aa:71:81:36:7b:99:0b:cc:78:81:
98:6c:46:e1:e4:3c:3d:01:a4:3f:b2:36:bb:30:00:97:0d:eb:
b5:f3:f4:d3:54:82:23:22:7e:14:b1:e1:55:b9:0a:d7:79:33:
5c:e7:60:e4:f8:2d:8b:9b:71:b1:d2:36:7f:a7:72:d5:8d:d6:
d8:ab:50:e5:dd:44:11:15:09:ef:e7:3e:3e:05:f4:60:53:ec:
f8:e7:72:5b:dc:78:35:47:a4:d7:8d:e8:4a:33:02:e2:c0:23:
2a:4f:c3:29
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDfkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMyMDZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk0RTI0QjczNUREQ0JC
N0E1ODZCMThBMDcxRkRCQjU2OTk4REU4OEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCz0FhUZ9Gfnbn/PAuvQoOlcNqccBjS27t07ThjX2ubLP6fxstX
Z3oKLDOoXIVImfgSOOwamR/Z86f0zA0d41pp4932RYxMZikBZHpxKCs8sOMEnJFc
4JzsHKnjSW58rTzrMFCTDhHmUysNkCL+rrRxTdRh/++zQXGaCG6GQ16AqneRN4kx
RB2CgWs4RYDaxspK+jU+VQfpcMIXsBtB0u5OvXLhqmXuyN45ranM8gNhB/HkPOrj
OS/BNNZzWnh2OHlrapZowtP2hcIDT5RYP5NcF40tD8PADNrK+YqBTNdnPML2PUbK
dqKZc8Sdig7fKLEfwH96M1spFimorCinQfL/AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUlOJLc13cu3pYaxigcf27VpmN6I0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9sT0pMYzEzY3UzcFlh
eGlnY2YyN1ZwbU42STAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAlnR3MA0GCSqGSIb3DQEBCwUAA4IBAQBhPDAqbSsYWKQ2oB0pyPx/7mnpAXgx
xqqkcHRofexVPZCADof7MVQI9eejKAE000qvnCKomDGqO7ek1TvqBCBFNdkAOrbH
bzP7UngkgEnJONfa9rm4O3CNaBMDyO9FTLDzdUXCdENO+b+hrQhbovyrQyCiHEe4
XomuTjnHPLVteeYHaxa4TFq6uH/8Lc4dBoVhpNux0UPf9qpxgTZ7mQvMeIGYbEbh
5Dw9AaQ/sja7MACXDeu18/TTVIIjIn4UseFVuQrXeTNc52Dk+C2Lm3Gx0jZ/p3LV
jdbYq1Dl3UQRFQnv5z4+BfRgU+z453Jb3Hg1R6TXjehKMwLiwCMqT8Mp
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org