Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mCQdCHMzjzoCMGTYavlZFQj58ss.roa
File: mCQdCHMzjzoCMGTYavlZFQj58ss.roa (raw, json)
Hash identifier: 51nzIVKy5T1VVHYnOxG3yOepQmb6VjQrCihV1pvwkwo=
Subject key identifier: 98:24:1D:08:73:33:8F:3A:02:30:64:D8:6A:F9:59:15:08:F9:F2:CB
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mCQdCHMzjzoCMGTYavlZFQj58ss.roa
Signing time: Thu 15 Sep 2022 02:38:58 +0000
ROA not before: Thu 15 Sep 2022 02:38:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 223.26.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:38:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=98241D0873338F3A023064D86AF9591508F9F2CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:60:68:fd:cf:59:1f:a9:a9:c0:8c:b6:98:49:
af:05:98:87:f9:4c:25:66:c6:92:81:89:a3:fd:02:
b2:61:60:fb:66:99:92:5a:c5:1b:d6:d1:9b:da:9d:
85:84:70:44:c2:bc:43:17:7d:b6:b9:f9:56:17:ca:
3b:a8:75:2f:25:e2:f7:fb:96:96:7f:36:17:da:a7:
0a:84:d1:37:ff:6d:17:96:b3:f5:0f:eb:ea:eb:cd:
62:04:03:da:60:f2:96:f0:a0:16:69:6f:bb:6e:47:
ab:7e:c8:b6:62:fa:1a:49:81:12:6c:69:bb:d4:0e:
ad:d9:b1:58:7b:c1:ce:5f:d5:2d:65:55:26:c4:43:
24:31:dd:b4:e9:6e:58:1c:a3:57:60:20:35:c2:3e:
61:4d:89:31:53:88:d0:f7:c7:5e:a0:3c:97:4a:5b:
19:de:40:00:96:39:43:02:b4:12:29:67:c0:ed:d0:
74:95:64:18:9a:1e:1e:75:7e:dc:98:7e:bb:8a:84:
02:8b:55:2a:03:08:33:e2:4b:26:4a:e1:ac:6e:fb:
0a:27:17:9f:25:d1:fc:6a:20:f1:4b:2c:cb:97:2a:
a3:74:f3:6f:e4:7f:ec:18:76:69:2a:6d:c2:ae:57:
40:f0:6d:84:b3:78:8a:d5:0a:f1:ac:a7:52:8b:6a:
86:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:24:1D:08:73:33:8F:3A:02:30:64:D8:6A:F9:59:15:08:F9:F2:CB
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mCQdCHMzjzoCMGTYavlZFQj58ss.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.108.0/22
Signature Algorithm: sha256WithRSAEncryption
77:9e:8e:d2:c8:ba:9f:4b:fb:34:41:09:2f:63:d9:88:51:63:
53:7a:c7:a0:6f:5a:eb:1b:c6:85:1a:4e:3b:ac:ec:d9:99:9d:
24:5f:a3:d0:1f:26:d8:09:c3:01:4f:84:fe:4e:35:ce:01:5d:
30:7b:a1:83:c1:ab:8c:a6:88:6c:82:b1:65:4c:7d:4b:af:ef:
0d:3b:eb:18:c4:fd:d1:1b:00:3a:a0:63:68:40:be:ac:e2:81:
d9:75:a2:53:12:a1:8c:f0:1a:ba:d2:b7:aa:0b:59:29:80:4f:
0f:33:83:86:31:fe:1a:e8:99:58:a2:23:36:a2:c5:ed:5d:c0:
d0:fa:c1:95:0c:4c:18:6a:8b:ff:30:e5:e5:14:e3:b3:c8:8e:
1f:05:d8:6a:7e:79:1e:ae:3e:29:a2:55:28:3d:3f:b9:1f:98:
08:c7:3e:5e:c1:bd:4e:ce:20:01:b3:00:40:c8:0d:4e:84:fd:
e0:e5:28:bc:b9:ba:6e:ae:2c:fe:e3:94:a6:38:9d:50:2d:d8:
c7:fd:60:eb:1d:c4:7e:9a:82:f9:ca:e8:1b:a5:a9:42:59:61:
4e:51:cb:93:96:57:c5:28:34:e7:e2:64:b3:90:39:b0:ec:f9:
71:42:a9:c0:0d:ff:75:e8:49:d2:e0:5c:8f:05:00:c9:3e:5f:
8a:09:b1:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:25 2025 by rpki-client