Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qXEKWBQsFZ8pdWSHg7377HJnqx0.roa
File: qXEKWBQsFZ8pdWSHg7377HJnqx0.roa (raw, json)
Hash identifier: hzvBG4HyF7YtccJeRUM9DVqNxvO6xywU6ceJIxzyqGM=
Subject key identifier: A9:71:0A:58:14:2C:15:9F:29:75:64:87:83:BD:FB:EC:72:67:AB:1D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DEF
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qXEKWBQsFZ8pdWSHg7377HJnqx0.roa
Signing time: Thu 29 Dec 2022 09:32:02 +0000
ROA not before: Thu 29 Dec 2022 09:32:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7532
IP address blocks: 150.116.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3567 (0xdef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A9710A58142C159F2975648783BDFBEC7267AB1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:69:e8:87:6b:94:df:ff:f0:3d:48:51:03:df:
b9:0d:65:9d:7c:1f:3a:4e:00:5d:a5:d9:ad:83:f0:
74:2e:c5:53:e4:f7:47:06:03:ed:77:d7:1f:43:7a:
2b:9c:7a:44:b0:a9:19:2c:f0:8f:d9:85:9a:34:8c:
21:8c:a7:04:66:e7:22:83:ca:81:ff:31:26:49:2f:
2f:d7:50:31:bb:a0:0f:11:68:70:02:1f:4d:b2:30:
61:57:81:c0:8a:56:07:dd:3e:d9:c8:e1:8b:34:83:
a8:ac:18:c2:49:ed:84:f8:c1:ce:a8:a3:3c:b9:09:
06:f3:d4:67:54:d1:6d:bc:c8:5d:c3:2f:bc:80:5d:
0a:be:39:bb:e9:81:cd:78:da:c2:01:de:21:b3:6a:
2a:ce:3d:ad:12:8b:7b:23:7a:7a:28:2a:64:e2:34:
e1:af:c2:36:c9:e1:aa:a3:1f:f0:50:28:31:66:62:
11:23:e7:06:0d:28:0e:db:db:47:74:d2:70:ff:f2:
ca:fc:4d:80:de:58:9f:68:aa:2b:8f:ab:31:2e:0f:
d9:5c:2d:3f:77:4d:54:f0:f2:06:33:ef:19:bc:41:
8e:ee:eb:01:dd:fe:57:ff:51:b0:44:3b:30:95:9c:
9b:e9:f2:78:c4:8b:1a:ae:67:c6:90:f7:4c:73:7d:
25:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:71:0A:58:14:2C:15:9F:29:75:64:87:83:BD:FB:EC:72:67:AB:1D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qXEKWBQsFZ8pdWSHg7377HJnqx0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.55.0/24
Signature Algorithm: sha256WithRSAEncryption
22:d0:ce:16:9f:02:b4:ea:9b:1a:00:34:63:bc:5a:89:60:8f:
b2:8d:10:78:ac:6c:bb:ea:0e:0c:1b:c8:28:5c:53:a6:fb:42:
15:59:1b:9f:ca:61:30:c1:81:bb:07:a4:ae:6b:b5:d0:2b:33:
bc:34:53:22:04:75:e8:96:d5:2f:54:a5:2f:6d:a2:9b:32:48:
6f:a3:c5:1b:cd:ff:6e:96:19:b2:ff:20:50:af:6c:e1:09:3f:
8e:da:44:32:f5:26:cb:7d:49:cf:df:cb:98:e1:2b:0a:79:b8:
d2:76:a7:b0:30:63:c5:cb:88:c2:b0:4b:e9:00:b2:fa:50:32:
6f:6b:5e:1b:ed:70:d0:a0:fa:38:e9:66:fe:15:38:1e:e4:8f:
ac:4d:aa:e5:5f:73:21:0f:6c:52:9c:78:63:7c:76:82:85:92:
4c:b9:92:4d:b9:86:a3:fc:ab:2d:4b:20:08:6a:61:20:ff:ee:
df:66:a9:66:7e:10:d5:4b:f8:43:27:58:06:62:4e:3b:c8:cf:
e4:77:a9:b6:83:1a:64:a5:74:54:50:2a:18:e0:50:4f:48:ec:
a4:42:a1:85:59:f6:fe:25:ed:fb:d6:ea:51:9c:cb:c1:bd:77:
63:f1:61:de:a0:6f:cb:cb:24:b5:9b:22:3b:52:03:66:96:10:
4a:6b:00:ab
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDe8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMyMDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE5NzEwQTU4MTQyQzE1
OUYyOTc1NjQ4NzgzQkRGQkVDNzI2N0FCMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDmaeiHa5Tf//A9SFED37kNZZ18HzpOAF2l2a2D8HQuxVPk90cG
A+131x9DeiucekSwqRks8I/ZhZo0jCGMpwRm5yKDyoH/MSZJLy/XUDG7oA8RaHAC
H02yMGFXgcCKVgfdPtnI4Ys0g6isGMJJ7YT4wc6oozy5CQbz1GdU0W28yF3DL7yA
XQq+Obvpgc142sIB3iGzairOPa0Si3sjenooKmTiNOGvwjbJ4aqjH/BQKDFmYhEj
5wYNKA7b20d00nD/8sr8TYDeWJ9oqiuPqzEuD9lcLT93TVTw8gYz7xm8QY7u6wHd
/lf/UbBEOzCVnJvp8njEixquZ8aQ90xzfSXvAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUqXEKWBQsFZ8pdWSHg7377HJnqx0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9xWEVLV0JRc0ZaOHBk
V1NIZzczNzdISm5xeDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAlnQ3MA0GCSqGSIb3DQEBCwUAA4IBAQAi0M4WnwK06psaADRjvFqJYI+yjRB4
rGy76g4MG8goXFOm+0IVWRufymEwwYG7B6Sua7XQKzO8NFMiBHXoltUvVKUvbaKb
Mkhvo8Ubzf9ulhmy/yBQr2zhCT+O2kQy9SbLfUnP38uY4SsKebjSdqewMGPFy4jC
sEvpALL6UDJva14b7XDQoPo46Wb+FTge5I+sTarlX3MhD2xSnHhjfHaChZJMuZJN
uYaj/KstSyAIamEg/+7fZqlmfhDVS/hDJ1gGYk47yM/kd6m2gxpkpXRUUCoY4FBP
SOykQqGFWfb+Je371upRnMvBvXdj8WHeoG/LyyS1myI7UgNmlhBKawCr
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org