Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nGEC-NUaq9IL-LBl6s5qLSNQW9c.roa
File: nGEC-NUaq9IL-LBl6s5qLSNQW9c.roa (raw, json)
Hash identifier: DQ/3h48OlnLZE6qfc35JARehN+NstPDT6VyM3SkS6ys=
Subject key identifier: 9C:61:02:F8:D5:1A:AB:D2:0B:F8:B0:65:EA:CE:6A:2D:23:50:5B:D7
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nGEC-NUaq9IL-LBl6s5qLSNQW9c.roa
Signing time: Thu 15 Sep 2022 02:39:20 +0000
ROA not before: Thu 15 Sep 2022 02:39:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63199
IP address blocks: 150.116.92.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9C6102F8D51AABD20BF8B065EACE6A2D23505BD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:77:64:3a:39:25:eb:94:65:81:e7:23:9b:3f:
c7:ff:c7:ca:b6:47:74:70:56:59:98:bb:b7:48:bc:
38:99:87:35:ab:b8:07:c7:ed:7d:e2:22:bf:fa:d3:
bf:e4:f2:31:a0:e5:61:25:27:06:cc:6a:af:5d:85:
e3:7a:3a:36:fa:c2:6c:c0:07:81:01:3e:07:bd:8f:
27:b1:a2:91:c9:5d:33:dd:0f:d5:52:e6:3f:69:10:
d5:02:0e:ec:3d:b9:f5:05:52:05:03:1e:4c:fc:4b:
dc:26:5e:27:7b:e6:ae:0c:81:09:c9:88:55:b9:5c:
ee:a4:68:6e:5d:01:d0:41:db:8e:05:78:cb:ae:0b:
be:77:1b:96:77:65:f3:de:65:e8:e3:92:2d:24:a0:
7f:ad:c6:89:fb:55:4a:7c:5f:a2:ac:cd:ac:9f:3f:
67:b6:76:d6:98:01:38:2d:51:83:5f:43:7a:0b:02:
9d:10:09:6c:0c:93:58:58:26:b6:53:ae:7d:b4:fd:
d9:0d:04:fd:f7:a2:8c:4b:58:c7:7e:ae:f8:2d:4e:
e4:10:03:52:72:8c:21:2b:bd:db:46:4a:ab:93:6e:
7b:e4:00:12:e4:3b:e7:5c:a5:f2:f3:ad:7d:0f:45:
1b:47:20:71:eb:fb:ee:31:1e:79:dd:e7:6a:ec:1b:
d9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:61:02:F8:D5:1A:AB:D2:0B:F8:B0:65:EA:CE:6A:2D:23:50:5B:D7
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nGEC-NUaq9IL-LBl6s5qLSNQW9c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.92.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:96:04:9f:4c:6a:43:bb:66:31:39:5f:de:6a:20:78:d0:b5:
26:7c:83:b3:de:fa:82:5d:5b:ba:3f:9f:4e:61:9a:b4:01:ee:
58:5a:ee:c2:50:67:bc:f2:de:da:04:d0:ce:17:e1:8a:aa:32:
d9:48:2f:32:ad:8f:e8:3b:24:ad:88:d2:d0:b6:7d:79:23:6e:
15:5f:c8:e3:bb:a8:4d:11:46:04:a6:5e:98:c3:3e:bf:39:29:
49:a2:fc:d4:6d:16:3d:dd:d7:a3:4a:06:13:e9:9c:ba:20:ee:
54:57:c8:c5:de:4a:5a:56:32:8f:7d:dd:9a:86:e9:83:3f:db:
69:74:37:04:bf:b6:8e:e4:12:f7:91:3f:e7:fa:b9:45:91:9b:
bf:63:cf:02:b3:79:d5:3e:40:5b:f3:b8:b1:5a:a5:f6:e2:f4:
a2:bb:86:dc:18:ad:96:a7:2d:b2:58:93:5c:2b:45:8f:fa:41:
63:01:6c:f5:de:80:fe:55:42:79:88:57:4f:41:af:62:1f:b2:
2f:78:30:8c:1d:f2:91:05:08:df:8a:aa:c5:be:22:06:9a:fe:
d9:e3:29:05:8c:5f:7a:1b:7f:c9:07:b9:17:4e:6d:86:0c:8b:
b7:d3:6c:05:53:36:13:fd:32:cd:4c:09:c7:8b:e8:53:88:89:
3a:73:43:72
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjA5MTUw
MjM5MjBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDlDNjEwMkY4RDUxQUFC
RDIwQkY4QjA2NUVBQ0U2QTJEMjM1MDVCRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTd2Q6OSXrlGWB5yObP8f/x8q2R3RwVlmYu7dIvDiZhzWruAfH
7X3iIr/607/k8jGg5WElJwbMaq9dheN6Ojb6wmzAB4EBPge9jyexopHJXTPdD9VS
5j9pENUCDuw9ufUFUgUDHkz8S9wmXid75q4MgQnJiFW5XO6kaG5dAdBB244FeMuu
C753G5Z3ZfPeZejjki0koH+txon7VUp8X6KszayfP2e2dtaYATgtUYNfQ3oLAp0Q
CWwMk1hYJrZTrn20/dkNBP33ooxLWMd+rvgtTuQQA1JyjCErvdtGSquTbnvkABLk
O+dcpfLzrX0PRRtHIHHr++4xHnnd52rsG9mXAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUnGEC+NUaq9IL+LBl6s5qLSNQW9cwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9uR0VDLU5VYXE5SUwt
TEJsNnM1cUxTTlFXOWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQClnRcMA0GCSqGSIb3DQEBCwUAA4IBAQCalgSfTGpDu2YxOV/eaiB40LUmfIOz
3vqCXVu6P59OYZq0Ae5YWu7CUGe88t7aBNDOF+GKqjLZSC8yrY/oOyStiNLQtn15
I24VX8jju6hNEUYEpl6Ywz6/OSlJovzUbRY93dejSgYT6Zy6IO5UV8jF3kpaVjKP
fd2ahumDP9tpdDcEv7aO5BL3kT/n+rlFkZu/Y88Cs3nVPkBb87ixWqX24vSiu4bc
GK2Wpy2yWJNcK0WP+kFjAWz13oD+VUJ5iFdPQa9iH7IveDCMHfKRBQjfiqrFviIG
mv7Z4ykFjF96G3/JB7kXTm2GDIu302wFUzYT/TLNTAnHi+hTiIk6c0Ny
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org