Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nyCkisHhPxtHUwgZRZJeX4cgj0Q.roa
File: nyCkisHhPxtHUwgZRZJeX4cgj0Q.roa (raw, json)
Hash identifier: +EU7GZAiU+BVWl4g4+TMkgbWlYWNZK9uDljUVpMbFv8=
Subject key identifier: 9F:20:A4:8A:C1:E1:3F:1B:47:53:08:19:45:92:5E:5F:87:20:8F:44
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DDA
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nyCkisHhPxtHUwgZRZJeX4cgj0Q.roa
Signing time: Thu 29 Dec 2022 09:31:55 +0000
ROA not before: Thu 29 Dec 2022 09:31:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.117.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3546 (0xdda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9F20A48AC1E13F1B4753081945925E5F87208F44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:38:dc:ec:14:61:2f:b5:e6:81:6b:f6:6c:fa:
5f:2f:fe:a8:0e:dd:24:e7:c8:74:bc:76:63:06:f2:
60:ae:0a:b4:c6:e7:71:6e:37:1a:2a:b2:35:9c:74:
e9:43:06:35:5d:8f:8d:91:aa:07:1e:aa:93:dc:58:
ba:ff:29:30:4a:cb:b5:2b:98:0b:ce:55:44:88:5d:
b0:0e:8b:24:26:e7:b0:ab:b0:a9:29:86:0d:94:2c:
13:dc:03:40:8d:1c:c5:8c:f3:0a:05:7c:ce:ab:41:
07:c3:97:78:22:0e:da:c2:fe:1a:a8:74:02:86:c6:
50:5b:c9:22:b2:96:4e:91:16:6d:ee:a1:75:3c:cb:
95:78:f4:f1:67:2f:1e:10:81:20:46:a9:c4:78:69:
b1:10:c9:52:18:df:fc:6f:4d:05:c9:8e:62:59:24:
8d:79:cd:b7:d6:eb:01:d7:b4:78:44:cc:71:31:5f:
a6:6e:43:bc:09:25:17:ab:80:66:39:fb:45:63:22:
2c:69:21:75:2d:5e:8f:6c:92:b4:12:fd:9f:6f:80:
4e:78:e0:03:ec:31:aa:c5:43:fc:22:82:94:70:43:
e1:20:12:06:e8:49:84:9b:14:2d:f6:43:78:f4:8b:
59:31:7d:5d:13:e3:b9:12:22:7e:44:02:09:cd:6d:
b4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:20:A4:8A:C1:E1:3F:1B:47:53:08:19:45:92:5E:5F:87:20:8F:44
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nyCkisHhPxtHUwgZRZJeX4cgj0Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.232.0/21
Signature Algorithm: sha256WithRSAEncryption
a9:d5:07:88:6d:bd:0d:3e:08:2b:d7:7d:15:d9:81:93:53:ec:
07:ae:84:4a:77:ae:09:e1:fa:f2:64:35:01:b6:9f:14:e1:ba:
91:a4:52:d1:1f:00:c7:42:ad:1b:40:f1:96:aa:d5:03:07:df:
99:46:9c:a3:4e:99:25:4d:3b:6c:07:5b:96:74:ee:c1:2e:03:
3a:1f:1f:f9:56:60:64:6e:a5:c6:26:78:f4:27:be:2f:f2:ef:
5c:5b:53:d1:73:46:67:5e:47:bc:ba:96:6f:9e:1b:89:97:f1:
7d:eb:8d:1b:0e:e9:bd:d7:e2:a3:9c:0f:3d:d6:8e:35:1e:a2:
f7:5d:45:6b:67:3f:58:91:18:5e:28:55:9d:cb:aa:cb:2c:16:
85:ac:5d:ef:62:c3:42:ff:13:d8:94:6c:9a:82:43:27:44:2d:
b2:e4:99:42:c5:70:46:11:5d:16:c2:8f:bb:6d:97:22:6b:5a:
6c:b7:d9:97:cd:b0:5c:9a:61:54:e2:00:da:79:6e:ea:be:03:
09:b2:c8:a8:94:4c:dc:46:a4:48:a9:73:54:9f:8e:95:a6:9d:
2b:5b:95:1e:9c:51:bf:71:fc:26:17:d7:d6:57:5c:6a:34:b2:
d9:c8:3e:95:c3:20:30:cc:6e:82:9d:e1:46:50:79:7b:db:08:
4f:3d:cb:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:24 2025 by rpki-client