Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rRQnSSVgOIK7UHvdpZyntNdsAr4.roa
File: rRQnSSVgOIK7UHvdpZyntNdsAr4.roa (raw, json)
Hash identifier: D9Ngq6B0SgAS5uR5kOBUzXqZ88TZAin2L90BUWhgEYA=
Subject key identifier: AD:14:27:49:25:60:38:82:BB:50:7B:DD:A5:9C:A7:B4:D7:6C:02:BE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C1B
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rRQnSSVgOIK7UHvdpZyntNdsAr4.roa
Signing time: Wed 29 Sep 2021 02:39:02 +0000
ROA not before: Wed 29 Sep 2021 02:39:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10133
IP address blocks: 203.163.222.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3099 (0xc1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AD14274925603882BB507BDDA59CA7B4D76C02BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0a:05:df:7e:d6:62:1c:c5:1f:20:b3:db:3d:
d8:37:0c:8d:f8:45:88:06:ff:7c:eb:66:b9:d1:18:
35:95:f4:52:30:ca:c2:39:0e:f7:b7:5e:64:33:b4:
54:b7:02:fc:12:e9:67:7b:67:35:29:cd:3e:82:47:
47:f1:5f:fc:a5:2c:a8:65:39:c6:48:e6:72:e1:2a:
25:0e:54:b6:01:ab:e2:1e:46:98:5a:5e:33:83:0a:
c2:ab:9f:8a:33:cc:04:b2:e9:39:ab:5c:df:75:b9:
3e:52:07:e8:1e:b3:2b:41:6a:88:45:b5:60:34:dd:
00:7f:23:42:c5:58:d7:7b:65:f1:22:f8:e6:b5:3c:
af:52:da:9a:82:3e:6f:41:7c:76:f4:0c:27:16:3a:
82:3b:b5:17:6e:4d:f4:37:40:72:be:5d:b2:5a:d8:
69:85:72:b7:ae:f5:14:4f:0c:57:a6:ac:e2:98:0a:
be:4b:59:b4:94:6e:de:8b:5d:b1:75:83:76:c5:2a:
e3:88:2d:42:a5:df:48:eb:11:e2:a4:bd:f2:3f:ab:
54:74:dc:55:7f:76:8c:90:e2:8f:9d:87:50:9a:ca:
b3:e8:85:72:fa:8a:d1:71:81:a9:a4:ad:f7:e1:ef:
36:62:dd:bf:0b:84:60:b9:80:f4:e4:0d:5b:31:a3:
05:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:14:27:49:25:60:38:82:BB:50:7B:DD:A5:9C:A7:B4:D7:6C:02:BE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rRQnSSVgOIK7UHvdpZyntNdsAr4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.222.0/23
Signature Algorithm: sha256WithRSAEncryption
98:c5:e3:62:9e:6e:03:f4:7c:39:e4:c3:63:5f:77:bd:53:94:
32:26:2c:ed:6d:0d:e3:b4:e6:2c:17:8e:6c:ec:06:2e:f4:28:
c5:13:ef:c1:05:bb:a5:9b:d1:6d:f7:81:d1:9d:ec:18:a7:0e:
fc:95:86:39:d5:6f:55:80:ea:cf:21:49:47:8e:f1:8b:f6:12:
c2:01:b2:d6:89:a4:b5:8e:cb:e0:05:cf:25:da:f5:42:70:3e:
28:b1:e0:61:4e:c6:47:17:5c:36:64:03:13:b4:b3:87:50:ec:
cd:e8:2f:48:4c:2e:6f:57:f8:f5:f4:af:d8:10:3b:89:11:bc:
b7:82:07:66:e6:f0:34:5d:bd:96:f5:88:c0:9e:5e:c5:9a:e4:
29:57:d5:12:47:29:d1:cb:65:b1:d8:43:a4:5d:e0:7d:5b:4e:
6c:6a:b5:f3:02:42:f1:0d:06:51:78:0e:7e:6d:80:82:9f:0c:
39:bd:26:03:f6:9b:02:8f:21:a2:f3:0c:10:47:9f:01:da:c9:
da:e7:c5:81:a7:9d:24:81:ec:60:bb:26:1f:a6:f7:5f:00:80:
4c:63:a2:76:98:30:86:a3:be:da:07:30:7e:9e:26:1f:88:99:
ae:8c:e8:0a:0b:3e:c7:2f:f8:88:02:4d:bd:53:51:e3:45:ec:
8f:c6:93:1f
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDBswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM5MDJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEFEMTQyNzQ5MjU2MDM4
ODJCQjUwN0JEREE1OUNBN0I0RDc2QzAyQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCaCgXfftZiHMUfILPbPdg3DI34RYgG/3zrZrnRGDWV9FIwysI5
Dve3XmQztFS3AvwS6Wd7ZzUpzT6CR0fxX/ylLKhlOcZI5nLhKiUOVLYBq+IeRpha
XjODCsKrn4ozzASy6TmrXN91uT5SB+gesytBaohFtWA03QB/I0LFWNd7ZfEi+Oa1
PK9S2pqCPm9BfHb0DCcWOoI7tRduTfQ3QHK+XbJa2GmFcreu9RRPDFemrOKYCr5L
WbSUbt6LXbF1g3bFKuOILUKl30jrEeKkvfI/q1R03FV/doyQ4o+dh1CayrPohXL6
itFxgamkrffh7zZi3b8LhGC5gPTkDVsxowWNAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUrRQnSSVgOIK7UHvdpZyntNdsAr4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9yUlFuU1NWZ09JSzdV
SHZkcFp5bnROZHNBcjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQBy6PeMA0GCSqGSIb3DQEBCwUAA4IBAQCYxeNinm4D9Hw55MNjX3e9U5QyJizt
bQ3jtOYsF45s7AYu9CjFE+/BBbulm9Ft94HRnewYpw78lYY51W9VgOrPIUlHjvGL
9hLCAbLWiaS1jsvgBc8l2vVCcD4oseBhTsZHF1w2ZAMTtLOHUOzN6C9ITC5vV/j1
9K/YEDuJEby3ggdm5vA0Xb2W9YjAnl7FmuQpV9USRynRy2Wx2EOkXeB9W05sarXz
AkLxDQZReA5+bYCCnww5vSYD9psCjyGi8wwQR58B2sna58WBp50kgexguyYfpvdf
AIBMY6J2mDCGo77aBzB+niYfiJmujOgKCz7HL/iIAk29U1HjReyPxpMf
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org