Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/m3bj-HJWKuLMbFrA1t3Beme0lNg.roa
File: m3bj-HJWKuLMbFrA1t3Beme0lNg.roa (raw, json)
Hash identifier: 7bnqxjdnHb64OVlDAKjtzYiv6QR1emOQdRTE5dpO5gk=
Subject key identifier: 9B:76:E3:F8:72:56:2A:E2:CC:6C:5A:C0:D6:DD:C1:7A:67:B4:94:D8
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B1C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/m3bj-HJWKuLMbFrA1t3Beme0lNg.roa
Signing time: Sun 07 Feb 2021 13:04:54 +0000
ROA not before: Sun 07 Feb 2021 13:04:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9831
IP address blocks: 203.163.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2844 (0xb1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 13:04:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9B76E3F872562AE2CC6C5AC0D6DDC17A67B494D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:65:a6:2f:15:c1:a4:90:51:48:a9:28:af:fe:
05:70:da:d5:86:d1:8e:71:4e:33:d0:38:8f:77:59:
7d:49:37:57:eb:c9:15:e7:68:0d:6d:fa:bd:84:4d:
ad:c3:3b:0a:13:73:c3:4b:5c:50:fe:a3:ab:63:10:
01:ba:40:66:2f:51:b4:f5:df:33:cb:d1:1d:0b:5b:
7c:a9:ff:45:05:21:0b:6c:9f:98:b6:b2:24:22:9b:
01:28:3c:ae:3b:de:a2:3c:fd:5a:e5:df:aa:66:dc:
71:03:8d:65:d0:db:50:12:b6:4a:da:d0:3f:5e:2b:
44:f5:7b:a9:fc:07:6c:ae:e2:5a:08:04:ee:51:87:
10:9f:36:15:4c:ff:16:85:47:58:0b:d2:d4:6f:8e:
6f:3a:8a:1e:b7:af:f0:15:2d:a5:cb:47:d9:76:f7:
a1:f9:ca:4e:e4:04:80:47:30:02:0f:85:3d:3d:6e:
98:13:8e:b3:82:22:38:13:e9:ae:c2:b8:5e:49:24:
1f:5c:d9:c6:92:8c:b2:2f:ca:de:3e:a1:16:ac:65:
39:84:3c:d8:09:8d:c2:40:28:0b:18:ff:c4:13:72:
73:e0:0b:f6:de:06:79:4e:71:ff:89:4d:d4:e1:be:
2f:d8:51:69:0c:a7:b0:1e:92:4b:69:5b:f9:06:42:
4d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:76:E3:F8:72:56:2A:E2:CC:6C:5A:C0:D6:DD:C1:7A:67:B4:94:D8
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/m3bj-HJWKuLMbFrA1t3Beme0lNg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.201.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:69:07:89:4e:a0:da:3a:12:56:52:56:48:1a:b6:5a:96:47:
42:cd:32:b3:98:41:46:1f:07:b6:d0:29:67:cb:99:c7:05:f7:
a0:6a:55:46:48:43:86:11:2f:86:7c:d8:67:b9:15:01:d7:75:
7b:7b:e4:7d:24:fc:0c:1e:1c:1c:3a:5a:e5:d9:ea:38:3b:ad:
ad:45:a5:60:1e:d9:95:1c:9a:08:63:18:7e:96:fa:b1:a9:46:
19:09:6b:b8:dd:0e:87:00:36:a0:f4:28:ce:09:86:64:1b:80:
66:ad:16:e2:de:1d:33:8b:ed:75:ba:0b:ae:5f:2e:77:e5:27:
62:31:f7:83:81:48:30:5b:7a:78:15:82:c1:02:da:01:f8:1d:
b1:1c:17:e5:b7:54:12:76:18:9a:e4:d8:5c:5c:91:57:84:ee:
a2:f6:cf:89:4d:24:28:f2:74:bc:6e:e4:5a:9f:25:12:8c:be:
32:5b:b2:a9:84:b2:12:93:e1:ff:d4:a1:f3:db:a8:f3:c2:17:
26:9e:b1:5c:03:1f:64:9e:34:36:00:e1:a0:49:ba:3a:30:33:
f3:22:bf:ed:c1:22:c2:23:d6:9c:88:10:d8:22:4b:2f:8a:cf:
33:8d:3e:49:e6:cb:66:ee:a2:aa:93:b9:db:c9:90:db:56:8d:
c6:56:ab:19
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCxwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTAyMDcx
MzA0NTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDlCNzZFM0Y4NzI1NjJB
RTJDQzZDNUFDMEQ2RERDMTdBNjdCNDk0RDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCZaYvFcGkkFFIqSiv/gVw2tWG0Y5xTjPQOI93WX1JN1fryRXn
aA1t+r2ETa3DOwoTc8NLXFD+o6tjEAG6QGYvUbT13zPL0R0LW3yp/0UFIQtsn5i2
siQimwEoPK473qI8/Vrl36pm3HEDjWXQ21AStkra0D9eK0T1e6n8B2yu4loIBO5R
hxCfNhVM/xaFR1gL0tRvjm86ih63r/AVLaXLR9l296H5yk7kBIBHMAIPhT09bpgT
jrOCIjgT6a7CuF5JJB9c2caSjLIvyt4+oRasZTmEPNgJjcJAKAsY/8QTcnPgC/be
BnlOcf+JTdThvi/YUWkMp7AekktpW/kGQk0VAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUm3bj+HJWKuLMbFrA1t3Beme0lNgwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9tM2JqLUhKV0t1TE1i
RnJBMXQzQmVtZTBsTmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAy6PJMA0GCSqGSIb3DQEBCwUAA4IBAQBraQeJTqDaOhJWUlZIGrZalkdCzTKz
mEFGHwe20Clny5nHBfegalVGSEOGES+GfNhnuRUB13V7e+R9JPwMHhwcOlrl2eo4
O62tRaVgHtmVHJoIYxh+lvqxqUYZCWu43Q6HADag9CjOCYZkG4BmrRbi3h0zi+11
uguuXy535SdiMfeDgUgwW3p4FYLBAtoB+B2xHBflt1QSdhia5NhcXJFXhO6i9s+J
TSQo8nS8buRanyUSjL4yW7KphLISk+H/1KHz26jzwhcmnrFcAx9knjQ2AOGgSbo6
MDPzIr/twSLCI9aciBDYIksvis8zjT5J5stm7qKqk7nbyZDbVo3GVqsZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org