Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nM_c9op5nDHQ7sEbTfrXF8xOBYM.roa
File: nM_c9op5nDHQ7sEbTfrXF8xOBYM.roa (raw, json)
Hash identifier: gx/j2LCCQ75pFm38whp24xNe39+1tCzrFuVwFxaFZb8=
Subject key identifier: 9C:CF:DC:F6:8A:79:9C:31:D0:EE:C1:1B:4D:FA:D7:17:CC:4E:05:83
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nM_c9op5nDHQ7sEbTfrXF8xOBYM.roa
Signing time: Thu 15 Sep 2022 02:39:21 +0000
ROA not before: Thu 15 Sep 2022 02:39:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9CCFDCF68A799C31D0EEC11B4DFAD717CC4E0583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6f:7c:d3:b4:c0:9b:10:06:f1:ee:ed:b7:6b:
ca:c3:95:27:97:d4:06:21:d5:f7:20:94:9d:b6:bb:
fd:bc:04:2e:fc:48:74:b3:82:a4:ef:51:fe:94:9c:
e0:9d:d3:a6:22:16:06:73:60:55:af:ca:31:1b:58:
dd:2a:2c:d4:bf:de:99:d3:cc:61:e5:16:9f:f3:0f:
0f:ac:bc:75:c4:3b:54:36:ed:fa:b4:b9:b3:3f:92:
d5:17:45:1c:14:ff:15:77:4a:aa:b0:56:33:3d:0c:
6a:1f:9c:10:4a:99:2f:c6:a6:42:04:c9:40:3c:ad:
97:38:6f:00:3a:7a:34:78:5c:e6:55:38:1d:55:46:
dd:ad:0d:cc:0a:2d:b8:9c:c5:86:0e:0a:aa:4f:a4:
98:52:43:aa:ab:bf:bc:3a:1b:ba:f8:d3:ff:3e:5b:
07:d8:c9:ec:2e:88:1b:9e:47:5c:77:2f:7a:e1:ca:
7a:cf:95:0f:6e:1a:82:ff:f8:f4:99:f5:63:62:bc:
26:11:3b:e2:e6:0b:5e:27:b6:81:82:00:40:4a:50:
38:66:dc:ba:79:ca:bb:da:bd:d2:c6:16:4c:ae:59:
79:5c:f2:dc:2e:8e:b5:24:7c:12:55:d9:35:cf:22:
12:52:a9:c2:20:08:e2:71:86:7e:31:85:3e:10:91:
f6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:CF:DC:F6:8A:79:9C:31:D0:EE:C1:1B:4D:FA:D7:17:CC:4E:05:83
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nM_c9op5nDHQ7sEbTfrXF8xOBYM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.239.0/24
Signature Algorithm: sha256WithRSAEncryption
29:5b:20:de:ac:db:d7:34:71:4d:fb:8a:a5:dd:c5:da:af:00:
57:45:83:11:b5:8b:69:04:a7:8a:b4:06:ec:47:61:1f:b5:9c:
7b:b0:4a:df:4d:7c:6c:0e:5f:3f:86:59:f8:52:1b:c8:9d:ec:
9a:f2:ab:2f:b7:9e:d5:f4:92:83:0a:3d:f9:fa:ad:5b:b0:3a:
3f:76:5f:91:82:09:33:d2:7a:e9:a5:a5:b8:90:8b:73:db:5a:
38:d3:ed:84:a9:30:e2:5f:77:4e:ac:6b:a9:fd:30:30:51:ee:
9f:30:88:4b:cd:cc:a8:37:4d:54:bd:65:3f:1a:5a:c8:22:a0:
9b:b6:5c:ac:d8:c6:c2:5b:b1:34:c0:84:0a:31:43:3a:c4:33:
6b:a9:a4:b5:bc:24:90:fe:39:78:7e:e0:ff:d5:9c:45:74:47:
62:8c:a5:6c:4a:90:13:bf:6d:60:ad:45:55:31:11:64:66:7c:
2c:5f:ea:8c:58:42:8c:a1:c9:0c:24:63:db:71:31:f7:cb:42:
d9:6d:ad:2b:5f:18:60:4c:4f:0b:e4:d3:c9:0d:7e:a0:7e:b6:
cf:78:54:1d:84:95:b6:1b:92:5d:2e:d3:6f:a8:ad:44:f8:4a:
16:33:03:de:9a:99:0f:35:37:21:b4:80:b3:7b:a6:b5:c1:3b:
7b:5f:f7:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:57 2025 by rpki-client