Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rgDSEsM1xDs4H6YSv2hYuezPSZ8.roa
File: rgDSEsM1xDs4H6YSv2hYuezPSZ8.roa (raw, json)
Hash identifier: 4jy0z6w7SCueFcED2RzwuBCQbndbBkwMNbGkL+JdRyc=
Subject key identifier: AE:00:D2:12:C3:35:C4:3B:38:1F:A6:12:BF:68:58:B9:EC:CF:49:9F
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0FCC
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rgDSEsM1xDs4H6YSv2hYuezPSZ8.roa
Signing time: Fri 01 Sep 2023 08:29:34 +0000
ROA not before: Fri 01 Sep 2023 08:29:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 10085
IP address blocks: 203.163.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4044 (0xfcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AE00D212C335C43B381FA612BF6858B9ECCF499F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f7:68:97:a0:10:cb:1b:d7:b8:5b:75:2e:a0:
da:3a:a2:62:3b:b3:78:df:cc:3c:6b:0a:0f:bd:1a:
9c:4f:d6:46:6f:f2:16:b2:25:db:4a:02:94:f8:84:
97:e7:ef:0e:22:4f:aa:b3:20:23:1d:50:43:9a:81:
8e:d6:94:88:12:c4:c6:72:a8:87:65:d4:b2:bc:71:
a5:c5:94:ed:10:86:50:d3:99:e5:9e:2e:06:e0:13:
8a:07:d7:42:bf:08:8d:8e:44:81:5f:d6:4f:78:c1:
5c:28:f4:dd:ae:86:8a:63:8a:6b:0e:4b:cc:20:4f:
3e:f3:b5:c6:4a:00:fb:0e:87:81:d5:e3:96:70:5e:
b8:83:37:4b:9f:48:9a:f3:f3:e5:d5:25:cd:fe:3e:
4d:10:ed:d8:75:98:c0:9a:5d:c8:b8:e5:33:f8:01:
fd:54:e3:49:ed:52:a8:8e:be:e8:c8:8d:2d:30:ef:
85:39:33:4d:85:91:32:f9:71:69:f7:ab:cc:b7:e5:
02:2f:a6:ff:df:60:0d:a7:1d:5a:e8:5e:fc:29:e8:
17:d2:b9:2a:9c:ed:75:9a:b5:eb:64:97:f6:44:30:
37:c4:81:5f:41:3d:49:95:1b:d3:61:d3:e8:61:30:
ab:fb:49:04:38:05:fe:15:16:51:cb:a3:d5:d7:7a:
f2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:00:D2:12:C3:35:C4:3B:38:1F:A6:12:BF:68:58:B9:EC:CF:49:9F
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rgDSEsM1xDs4H6YSv2hYuezPSZ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.196.0/22
Signature Algorithm: sha256WithRSAEncryption
10:30:14:5a:01:20:65:a8:9a:d0:5a:1b:ca:b8:f4:07:4f:57:
ee:a9:0d:6d:41:f7:25:48:ad:62:be:86:61:4d:09:1c:6e:09:
b0:c0:02:2b:8c:44:d0:de:5b:80:69:21:18:b7:ed:ee:ab:b5:
d9:22:af:18:f9:4e:f9:f0:a0:99:0c:92:25:d1:06:93:8a:23:
e1:7c:79:40:01:31:ec:02:b2:0e:b0:eb:11:78:7f:01:c0:30:
59:b0:e2:44:3e:a8:c7:ff:65:6b:78:99:ba:0a:20:84:17:a5:
9e:c2:74:8a:8c:70:ca:98:ca:47:d1:96:c8:22:a0:30:bc:11:
12:18:ab:29:ab:2c:19:f5:8b:7c:37:f8:c6:47:49:65:da:09:
87:fe:56:c1:51:6a:6b:02:81:03:41:a2:9d:4d:43:13:37:eb:
bc:e3:66:7b:63:72:c4:41:57:7f:2b:32:d8:67:df:77:67:3e:
d0:43:c9:47:7f:66:a5:fa:75:79:16:9b:50:ec:d6:35:f0:de:
85:d5:89:f2:38:03:8c:53:3f:6b:b0:4d:c8:a6:42:db:31:7d:
96:a0:ee:57:5a:31:90:ad:9b:2e:24:a3:d3:72:ed:bb:bb:78:
3e:5a:e0:22:86:53:00:7c:d0:bb:51:7e:5e:dc:15:6d:d7:c2:
99:fa:0d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:22 2025 by rpki-client