Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rfNeP-hsOcBjlnpzFGW7WibCZ9s.roa
File: rfNeP-hsOcBjlnpzFGW7WibCZ9s.roa (raw, json)
Hash identifier: xEmy4VaKJxwkLsOBkcTCjJBvbxBq02gh765NIs6alD0=
Subject key identifier: AD:F3:5E:3F:E8:6C:39:C0:63:96:7A:73:14:65:BB:5A:26:C2:67:DB
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B06
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rfNeP-hsOcBjlnpzFGW7WibCZ9s.roa
Signing time: Sun 07 Feb 2021 12:59:40 +0000
ROA not before: Sun 07 Feb 2021 12:59:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 203.163.194.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2822 (0xb06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:59:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=ADF35E3FE86C39C063967A731465BB5A26C267DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:dd:85:19:c7:52:4c:d7:c8:57:13:a4:d8:3f:
70:14:c6:59:bb:f2:87:ff:cc:93:ae:5c:38:f5:fa:
72:ee:55:30:76:73:69:37:14:23:ad:2b:5f:6a:67:
bf:40:f5:9e:e7:50:81:2f:8c:d5:36:a2:05:5d:1f:
6d:d0:20:fd:d9:a2:fa:33:49:6a:4b:5f:0c:26:59:
8c:dd:e9:92:e8:ee:de:55:e0:49:6b:47:0e:d8:e2:
fd:3a:5f:ed:b4:3c:9f:91:82:0c:8d:bc:9a:df:92:
0b:d7:6f:09:41:51:1a:71:cb:48:e5:33:08:f6:35:
fe:3d:65:b7:db:a4:1d:63:cb:4c:95:42:d7:44:33:
a9:a4:e7:c7:31:51:b6:6f:c9:2e:9b:f4:62:25:79:
17:7e:2f:15:d4:e8:81:2c:31:fc:ee:3d:9d:e3:ff:
d5:b8:38:28:f6:4a:23:fe:7b:f2:f2:80:d8:14:6c:
25:eb:a5:ad:4a:8e:b8:db:bf:8b:cd:cc:af:97:71:
e3:b0:c3:5f:60:02:b4:83:a8:9e:32:ac:f2:ed:3f:
c9:ac:d4:e0:9a:12:f2:d6:67:7c:8c:75:95:5a:b1:
99:4a:0b:08:f9:fa:d4:bb:6e:cd:5e:e6:44:39:24:
1c:46:bd:79:cd:48:f7:03:40:44:10:d4:a2:87:22:
9e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F3:5E:3F:E8:6C:39:C0:63:96:7A:73:14:65:BB:5A:26:C2:67:DB
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rfNeP-hsOcBjlnpzFGW7WibCZ9s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.194.0/23
Signature Algorithm: sha256WithRSAEncryption
70:89:b2:b3:8d:a7:55:92:6d:22:ec:81:bf:e5:d8:8a:b1:f5:
8b:57:83:2e:e0:f5:11:6a:e7:63:1a:a6:c8:35:d0:7a:fd:c0:
4f:ef:b1:9a:a7:2d:3f:55:a0:f1:fc:c7:01:87:36:0c:5e:d3:
f5:8a:87:d8:6d:e6:db:93:1c:fb:1b:78:5d:e6:eb:59:e3:81:
cb:b5:fe:88:69:9f:d1:d6:5d:25:27:c4:25:d9:bf:f0:c1:10:
60:b2:d3:fc:96:34:86:5b:02:9c:a4:55:b4:ed:35:ab:94:05:
b8:04:2a:ca:67:98:84:2f:6a:b0:12:17:a5:20:75:dc:e2:fc:
24:bf:b7:e3:6a:6a:ff:7d:cd:42:e6:19:0a:8e:cb:eb:b8:ac:
e1:46:9c:0e:4a:50:74:bd:8d:dc:73:79:a1:a9:d4:89:84:a4:
08:ad:e9:f1:e4:7c:59:13:eb:5c:c6:a5:ab:40:1d:15:5d:1d:
5d:b1:3e:d5:c2:c8:3f:cc:79:8e:47:41:58:c8:32:96:b1:2a:
6c:5d:c5:9b:d0:65:5c:c5:6f:db:f7:c2:bd:28:24:4a:f4:db:
50:8b:a4:89:43:6d:55:ec:41:51:aa:3d:56:fe:30:2a:cd:a7:
49:4e:33:4f:ec:78:59:72:f3:45:0f:34:88:0c:ef:83:fc:0b:
0b:ae:26:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:57 2025 by rpki-client