Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qCPOWtvCdiqIS74FYbCwHrKGiLs.roa
File: qCPOWtvCdiqIS74FYbCwHrKGiLs.roa (raw, json)
Hash identifier: BhbQ9SmreOj7wHXJ81EP10lLe0nYJsdOlw4P/a6GSm0=
Subject key identifier: A8:23:CE:5A:DB:C2:76:2A:88:4B:BE:05:61:B0:B0:1E:B2:86:88:BB
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qCPOWtvCdiqIS74FYbCwHrKGiLs.roa
Signing time: Thu 15 Sep 2022 02:39:02 +0000
ROA not before: Thu 15 Sep 2022 02:39:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131600
IP address blocks: 113.21.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A823CE5ADBC2762A884BBE0561B0B01EB28688BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a9:22:98:42:36:49:df:1f:ad:5f:75:e9:51:
04:97:5f:14:fc:0f:42:4f:08:7f:04:b7:33:36:af:
c3:a7:e2:78:b6:d3:5b:03:6f:5e:16:b6:b9:9c:ec:
52:c2:1a:d1:88:89:73:13:5a:ec:4e:61:9c:8f:13:
e6:6c:d8:25:7f:a5:6b:96:6a:c1:78:3a:2a:51:dd:
a8:0c:bd:b8:b7:ee:1a:57:53:2d:83:bf:e9:28:ae:
77:9e:7e:56:ae:dc:8e:6e:11:2c:ed:ec:14:a1:02:
18:32:64:cb:c9:12:af:50:8c:16:82:76:29:49:6b:
6e:a7:3b:87:d5:59:96:c5:bf:23:b9:dd:69:e8:85:
e6:91:8e:7b:b6:1e:a4:f2:ec:70:76:63:c2:b1:75:
d8:0c:e6:9f:34:e9:43:8f:a5:69:d1:29:73:8e:70:
12:d4:cc:4d:a0:ad:2b:b6:3e:d2:ed:53:c7:6e:3f:
c1:c5:ef:69:77:09:f0:61:9d:48:ea:c4:02:3d:6b:
a9:72:e3:00:f3:7a:e5:6b:72:7f:f2:2e:23:f0:32:
01:22:16:10:3a:fa:fa:a3:3e:78:61:a5:3b:f6:89:
6c:0a:0e:17:ee:c8:9e:87:bf:f3:c9:c6:7e:af:80:
b5:67:81:f1:fe:ef:36:79:c1:e7:b0:37:ce:35:68:
8d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:23:CE:5A:DB:C2:76:2A:88:4B:BE:05:61:B0:B0:1E:B2:86:88:BB
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qCPOWtvCdiqIS74FYbCwHrKGiLs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.94.0/24
Signature Algorithm: sha256WithRSAEncryption
47:28:da:b6:f0:c2:26:26:25:37:2b:14:f8:11:68:f1:4c:1f:
75:6e:0e:b5:39:55:d0:28:87:ca:8e:80:11:51:2a:72:0c:dd:
e5:3f:60:a6:bd:66:e0:d3:5c:47:6c:8c:85:74:ef:01:46:04:
5e:c3:19:f5:f8:3a:93:54:2a:55:8b:0d:bf:83:61:f2:3b:31:
89:f8:f5:5b:55:f4:fa:e7:e0:91:d2:1b:fe:5b:78:de:02:8f:
e6:7f:65:fa:8b:3f:cf:45:88:a0:7d:ed:33:03:71:c7:86:14:
fe:1f:7b:a1:20:b5:ee:0e:1d:93:62:fc:b8:2d:99:c6:de:a7:
b9:8d:8a:1a:0f:1a:c3:de:77:76:87:97:d1:79:34:e6:fb:ea:
da:c1:b2:7f:1b:19:52:33:c8:a3:92:6d:aa:eb:40:fe:85:bf:
5d:8e:1e:03:4b:22:db:af:bd:30:7d:d7:0f:c2:a2:25:1e:3c:
68:22:9f:a4:ad:01:cf:80:4c:a5:48:48:4c:6a:69:9e:5a:e7:
ff:1c:59:38:64:54:94:5d:e1:b6:af:4a:ec:d1:c9:e4:b1:71:
97:80:5d:8c:4a:73:10:fc:5b:3d:e2:4f:83:70:d9:a6:e0:1a:
ee:b8:0b:e3:f8:49:2e:1f:d5:4d:89:4d:49:03:a9:11:43:87:
e1:ee:8e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:21 2025 by rpki-client