Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/no8SXKgc_ffsaC3ZxkriCMIFAVE.roa
File: no8SXKgc_ffsaC3ZxkriCMIFAVE.roa (raw, json)
Hash identifier: iaFnrSEgpY8QqZkdS0K+Doh+i+OuWRYCgbnOWm4pIXA=
Subject key identifier: 9E:8F:12:5C:A8:1C:FD:F7:EC:68:2D:D9:C6:4A:E2:08:C2:05:01:51
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AD2
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/no8SXKgc_ffsaC3ZxkriCMIFAVE.roa
Signing time: Sun 07 Feb 2021 12:42:55 +0000
ROA not before: Sun 07 Feb 2021 12:42:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 203.163.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2770 (0xad2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:42:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9E8F125CA81CFDF7EC682DD9C64AE208C2050151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:67:0f:4b:33:a4:da:24:3a:cb:c4:5f:46:d9:
a3:86:b3:3a:b1:d0:aa:60:77:60:68:ba:b9:2a:9e:
ff:0d:1f:d7:18:a1:03:e3:61:34:b8:24:c2:97:1c:
94:f8:fb:60:44:a7:bb:8a:59:d7:92:35:1c:8f:ee:
d4:2e:32:e6:22:ce:5c:ba:5d:06:85:7d:f3:84:ca:
19:e5:1a:46:4f:77:2c:57:68:1b:45:2b:a3:bc:b5:
4d:2d:2a:b9:93:4e:66:e8:a3:3a:8d:d1:87:81:c4:
c3:66:13:79:9c:03:d9:b8:11:36:17:39:fb:4d:a9:
1e:4b:ca:56:a0:e8:bb:b1:bd:3f:98:a0:14:dd:80:
08:22:53:41:e0:df:51:e2:e2:60:17:e1:a6:bb:f0:
17:cc:8d:de:a0:d9:c2:e1:57:d1:b0:9a:e0:69:92:
59:08:99:ee:3c:8a:ae:66:18:13:b2:bb:06:34:7b:
63:14:48:9f:6c:7f:07:37:e6:c8:ab:e8:ae:52:b9:
38:71:e7:aa:3c:07:1b:26:e9:68:cd:9f:09:ec:08:
2a:80:0e:de:e5:de:fd:fa:ab:e5:ad:79:ae:b8:fa:
1c:c1:98:64:2a:64:58:98:1f:c1:4e:4e:a1:b1:39:
41:5e:cc:9e:e2:5c:b6:9e:a8:ee:55:3f:67:cf:02:
0c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:8F:12:5C:A8:1C:FD:F7:EC:68:2D:D9:C6:4A:E2:08:C2:05:01:51
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/no8SXKgc_ffsaC3ZxkriCMIFAVE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.220.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:a4:96:d3:37:bc:24:8d:fa:fc:07:7f:81:8b:1f:36:2a:19:
de:b8:6d:42:66:dc:90:6b:16:5b:a2:7a:35:ed:e4:3e:a8:17:
3b:e0:18:c3:ea:5c:cf:9f:f5:0a:76:e6:96:2c:50:8e:22:c8:
17:48:b1:10:2a:b1:16:37:17:2f:53:03:8f:c8:fa:11:30:4a:
0b:7d:b8:e8:22:19:b2:92:26:1d:6b:f4:0f:54:26:52:dd:2b:
70:7f:b6:09:38:4b:f3:14:a7:a1:da:c8:bd:a0:b9:17:5d:7c:
41:00:e4:27:57:e5:c0:b1:66:3e:8e:6e:a9:e2:5e:0d:ba:dd:
80:a1:60:29:42:a7:94:3f:7a:67:9d:92:3a:47:fc:74:61:08:
ae:d3:62:8f:21:a1:ea:c6:d9:d7:ad:84:1b:82:bb:55:b9:30:
9f:4f:84:0d:db:4d:48:11:26:c6:70:5a:65:7a:a1:54:d9:45:
3a:fc:81:9d:7f:12:8e:6a:e0:11:43:1c:6e:ae:67:59:97:e1:
8e:15:59:9e:11:90:c3:fd:7b:16:c6:62:17:90:df:f7:66:83:
c5:b7:64:62:59:f6:2a:64:ee:11:c5:44:97:85:56:1a:d2:61:
ae:bc:68:14:f0:7d:e3:7c:70:66:34:ee:28:eb:92:38:94:30:
ac:90:f1:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:26 2025 by rpki-client