Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nDi41m4Qs3EBbzg6KXnTGkMGfys.roa
File: nDi41m4Qs3EBbzg6KXnTGkMGfys.roa (raw, json)
Hash identifier: Jnkjw4k9YM8TdmlafYFQwVzzW/MsaU05zrdq7sSRzKo=
Subject key identifier: 9C:38:B8:D6:6E:10:B3:71:01:6F:38:3A:29:79:D3:1A:43:06:7F:2B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nDi41m4Qs3EBbzg6KXnTGkMGfys.roa
Signing time: Thu 15 Sep 2022 02:39:04 +0000
ROA not before: Thu 15 Sep 2022 02:39:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 223.26.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9C38B8D66E10B371016F383A2979D31A43067F2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:00:67:89:44:cb:3f:bc:d0:1c:51:94:f5:94:
8e:69:4f:2a:4b:da:5b:1a:c9:2b:10:44:66:23:0f:
74:db:e5:8e:26:39:71:5a:34:86:a1:03:87:14:5b:
6e:a6:43:2a:e6:7a:87:16:f1:bd:ed:42:78:71:e0:
5d:8b:66:94:08:b2:b8:fc:23:9e:55:cc:d0:c2:2e:
a6:96:cb:a3:6c:4b:a6:60:92:2c:68:9c:bf:b0:d7:
4a:38:84:2d:a2:f4:f7:d7:26:65:a7:5f:3d:e1:fa:
9a:0b:a2:62:f3:fd:23:f1:f8:bf:6b:a4:6f:05:e4:
a3:1d:0f:d6:4e:35:b3:91:36:34:98:5a:98:f1:5e:
a7:98:de:2d:55:3e:77:b2:cc:b0:3a:82:a9:5b:47:
e9:92:4c:5c:1e:0d:8c:47:13:8a:c5:b5:40:2c:3c:
db:3a:67:0f:66:31:d1:13:4c:48:09:2d:62:c0:8b:
00:26:57:9e:82:48:5b:6d:b2:90:42:f2:8c:06:ce:
80:a1:22:a1:b8:7d:79:0a:09:59:76:22:af:63:0c:
fc:19:c6:6b:dc:f1:d1:7c:ee:86:72:cf:94:50:da:
63:ee:af:15:bb:92:59:db:e6:85:8f:5f:c2:55:6b:
23:7f:49:c8:9f:38:0b:de:ea:80:3f:94:fd:1a:be:
e1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:38:B8:D6:6E:10:B3:71:01:6F:38:3A:29:79:D3:1A:43:06:7F:2B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nDi41m4Qs3EBbzg6KXnTGkMGfys.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.84.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:bd:73:f8:95:50:dc:85:94:f1:ef:87:f0:b2:f9:67:08:09:
7c:f8:0b:14:3f:20:b0:76:f9:b6:f9:cb:36:3b:c0:35:1b:46:
92:47:d3:5c:a2:c4:40:08:f1:86:0d:13:db:60:31:c3:31:e4:
27:5e:0f:45:5c:35:8c:34:35:f4:aa:2e:4e:7b:dd:67:b0:d0:
7f:2b:3d:ba:be:41:bb:d7:f3:53:f3:d2:8d:71:85:48:e9:68:
88:84:ea:b7:23:fe:72:e4:23:f8:41:d0:3f:88:bd:d5:61:69:
a1:53:bf:66:51:e9:7a:b6:2b:1e:a2:7d:94:9a:4d:8b:6d:68:
4f:7d:a0:27:77:1d:07:5f:28:b0:52:b7:00:3c:f1:37:2d:4e:
6e:f6:5c:58:cc:72:90:09:cb:b7:1f:8c:02:d7:5d:c8:04:70:
a9:0f:f7:23:90:cb:d9:76:e4:f5:78:84:c9:6b:32:f6:8e:c1:
e7:11:19:9b:51:ea:58:e2:e5:8a:1c:0a:e0:18:c0:c5:65:aa:
bf:ac:0e:35:a6:ce:4a:e9:60:6e:11:f7:1d:b1:b4:6a:34:15:
28:58:8b:b7:79:3c:11:bb:82:dc:e9:1d:42:5f:e9:4c:a4:94:
cd:3c:da:7c:20:bc:c8:8c:fa:72:0e:66:f0:1c:a1:58:3d:e1:
4e:51:a5:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:47 2025 by rpki-client