Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lcyWvbMk2jA7rS2cBBy5IXnB4QQ.roa
File: lcyWvbMk2jA7rS2cBBy5IXnB4QQ.roa (raw, json)
Hash identifier: Rcekgq12P+D7OABDTlIQtPRg5vhCc7l/wk3sC2r43UI=
Subject key identifier: 95:CC:96:BD:B3:24:DA:30:3B:AD:2D:9C:04:1C:B9:21:79:C1:E1:04
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AC8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lcyWvbMk2jA7rS2cBBy5IXnB4QQ.roa
Signing time: Sun 07 Feb 2021 12:38:06 +0000
ROA not before: Sun 07 Feb 2021 12:38:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.117.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2760 (0xac8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:38:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=95CC96BDB324DA303BAD2D9C041CB92179C1E104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:3e:a1:3a:b9:d4:99:16:96:a8:fd:82:38:fe:
e3:d0:ef:5e:b7:26:67:af:c7:00:68:02:28:60:d2:
7a:19:e4:0f:fd:29:99:89:15:35:06:5a:5e:17:6d:
e1:61:28:ce:8e:59:97:4b:f8:66:30:a6:11:78:79:
9e:24:a2:e8:3b:8b:29:3c:9f:b7:28:87:66:bc:c0:
f5:09:fa:52:42:1b:d4:7f:f1:85:5c:94:0e:cd:7b:
12:f9:ac:2f:32:bb:6a:78:52:73:93:e8:73:6d:36:
0d:18:7e:a0:7e:0e:c3:c7:6f:44:38:a0:44:90:9d:
ad:af:86:41:db:01:1b:f2:7a:06:c1:78:83:84:80:
31:f9:5b:16:5c:9c:ea:16:2c:71:26:bf:95:0c:bb:
8e:8f:c6:b7:79:f4:50:6c:2a:7d:67:e8:4c:50:ac:
aa:6f:32:ad:b9:5d:ff:8f:64:3e:24:eb:cb:50:6c:
26:2e:78:6a:47:15:43:c6:53:d6:38:9e:10:5f:14:
d8:62:9d:d2:72:b3:79:b1:05:47:c7:55:c6:80:b8:
82:88:0f:d0:eb:d4:50:16:2d:1a:3d:a3:61:33:51:
4f:4c:d6:42:5c:4e:ac:2d:a4:e7:4a:35:0d:a6:70:
81:ed:37:b2:ec:77:67:02:3d:d2:0e:3e:ab:96:f0:
2b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:CC:96:BD:B3:24:DA:30:3B:AD:2D:9C:04:1C:B9:21:79:C1:E1:04
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lcyWvbMk2jA7rS2cBBy5IXnB4QQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.128.0/19
Signature Algorithm: sha256WithRSAEncryption
6b:ee:7b:1f:f9:d5:8d:d8:7e:56:3c:33:01:85:b3:03:7f:74:
00:8b:8f:c3:11:bf:73:bb:12:f2:c8:e0:f0:23:20:52:d9:bf:
50:3e:bf:89:0b:46:1e:f0:74:e6:64:fe:28:74:82:54:ea:5f:
b3:93:70:d2:18:5d:e1:77:44:b8:ca:db:d8:39:a7:f2:6a:9e:
d2:c2:5e:72:47:d9:4d:da:4c:d9:bc:b2:d6:db:90:e3:9f:8d:
7f:99:9d:06:27:cc:4e:cb:3c:d9:a6:9e:09:ff:e1:bf:e8:3b:
99:26:50:54:f4:96:70:e0:a7:59:5b:a0:60:e4:e7:30:70:37:
6d:7d:9a:71:62:af:00:20:ee:d9:34:17:cf:39:d5:e8:12:96:
63:49:1b:f2:90:6a:0e:f0:ed:11:0c:27:2d:45:65:89:d5:bf:
70:5e:65:51:e2:15:8a:08:0d:29:3e:23:05:c0:53:e4:6e:53:
d9:34:72:29:8c:5f:04:3a:03:4f:aa:8a:1a:28:8c:77:e1:e7:
a0:97:f3:6a:14:bc:b1:70:21:26:30:a3:13:39:5a:63:6d:50:
93:c1:3d:48:eb:42:c8:73:93:fd:bc:73:bf:30:8c:65:96:68:
78:49:33:46:f1:a1:fd:88:83:ff:88:6c:1f:7b:c0:ae:cb:bd:
b8:6f:1e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:56 2025 by rpki-client