Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rOWNbJS95ZdHs0lIvo0V5cO5d94.roa
File: rOWNbJS95ZdHs0lIvo0V5cO5d94.roa (raw, json)
Hash identifier: PfCyubTmRRWA5aY+tPzcKs/z9JDWNkvCIJIlf+eupH0=
Subject key identifier: AC:E5:8D:6C:94:BD:E5:97:47:B3:49:48:BE:8D:15:E5:C3:B9:77:DE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A8C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rOWNbJS95ZdHs0lIvo0V5cO5d94.roa
Signing time: Sun 07 Feb 2021 11:50:26 +0000
ROA not before: Sun 07 Feb 2021 11:50:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 150.117.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2700 (0xa8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:50:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=ACE58D6C94BDE59747B34948BE8D15E5C3B977DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c9:15:b7:45:2d:c7:9a:31:fc:55:61:73:3b:
7e:6d:c8:95:2e:f6:6a:2b:a3:37:a9:75:1e:1f:9c:
0d:02:38:1f:96:da:cb:af:14:85:35:15:a2:54:73:
db:f3:85:1d:0c:48:61:eb:02:d6:7d:75:4f:47:b9:
eb:f6:ec:65:be:12:37:42:11:e8:f8:17:90:19:84:
d7:a1:06:3c:df:f0:0e:c8:7a:10:76:ff:46:6c:2b:
5c:14:4c:36:f1:35:50:a2:84:86:35:0b:ba:f5:c2:
ac:67:fc:e3:a6:99:00:6f:e5:5a:c1:50:8d:8a:84:
1d:6e:8c:c1:2b:68:2c:95:1f:ec:01:d4:1f:50:d1:
e6:0c:82:b7:97:01:9f:ed:76:de:bb:bb:87:ca:09:
99:ac:01:aa:d7:3a:8b:a1:b1:4d:47:72:ec:82:93:
e7:0a:e1:b3:87:24:36:ef:bb:bc:06:31:fa:7a:52:
61:28:87:d3:e1:91:8e:7b:4c:e4:ac:5f:07:48:95:
2d:07:78:4b:0c:84:dc:64:96:a2:2d:8c:d5:2e:4c:
72:fa:53:c7:b9:18:db:1f:c1:2b:d5:b6:dc:06:4f:
7c:1a:ed:d5:53:a5:6e:6a:2e:47:d9:af:9a:4f:58:
23:19:f0:0f:6e:96:c1:dd:9c:1f:f7:5c:37:c1:8f:
85:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:E5:8D:6C:94:BD:E5:97:47:B3:49:48:BE:8D:15:E5:C3:B9:77:DE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rOWNbJS95ZdHs0lIvo0V5cO5d94.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.0.0/20
Signature Algorithm: sha256WithRSAEncryption
60:3d:a5:5a:4c:35:2e:9d:8a:12:6d:3a:bf:7c:a2:ec:78:c6:
d2:0b:08:b7:02:50:5f:1b:82:30:25:5e:dc:28:38:2d:35:5d:
d1:c0:3a:2a:12:91:ad:da:dd:0e:be:f6:8f:06:5a:67:c9:48:
5c:c5:7f:2a:d5:8d:7d:4f:e3:1f:c6:bc:2c:d7:45:96:02:10:
04:99:77:2e:08:4d:37:0d:aa:cf:90:f2:89:90:9b:eb:d5:9a:
a7:2a:85:a8:93:b9:e9:e7:8d:21:52:8d:07:f2:49:e1:51:74:
e8:1c:8d:38:22:f5:4b:7c:5e:80:66:e3:44:e4:b3:3a:b1:14:
3f:af:e1:65:67:39:57:d9:70:a7:94:76:48:df:0b:8e:01:43:
21:d6:02:03:1d:39:fe:c0:37:4f:60:d3:66:fb:0d:cb:6c:8b:
91:f6:74:e1:5e:a8:84:9a:2a:a8:08:9e:cf:d8:37:bb:89:3e:
7c:9e:94:b2:28:73:94:2d:d7:e2:fd:03:53:2a:d4:00:c0:73:
65:dc:75:d1:fd:70:41:39:9a:5b:f5:36:35:63:94:0e:cf:98:
91:1e:74:fb:b0:33:48:1d:b6:b6:9d:d8:ea:29:87:f0:2d:72:
ce:a2:f2:e8:31:9c:78:ed:97:e9:fa:78:11:61:cb:9b:44:9f:
25:84:b4:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:15 2025 by rpki-client