Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rxqyRqFcQqtPtZG0rOELVXDIr4Q.roa
File: rxqyRqFcQqtPtZG0rOELVXDIr4Q.roa (raw, json)
Hash identifier: 1wcVJ2+P9MgY5ZtgLBEIpUVbd+kNycbOtBQJ7jDkFbc=
Subject key identifier: AF:1A:B2:46:A1:5C:42:AB:4F:B5:91:B4:AC:E1:0B:55:70:C8:AF:84
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DE9
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rxqyRqFcQqtPtZG0rOELVXDIr4Q.roa
Signing time: Thu 29 Dec 2022 09:32:00 +0000
ROA not before: Thu 29 Dec 2022 09:32:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 150.117.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3561 (0xde9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AF1AB246A15C42AB4FB591B4ACE10B5570C8AF84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:db:5a:93:72:df:3e:09:17:29:1c:fe:3f:27:
3c:78:af:df:2f:62:36:08:57:61:b6:ac:c6:95:d7:
4b:11:3e:4c:6f:e8:ab:6e:71:6d:0c:57:c8:77:cb:
58:7c:59:58:ba:73:f3:a0:ea:dc:9c:a3:f4:6c:e3:
ff:1f:31:5b:0e:b1:4d:43:a8:dd:d3:b6:5d:0c:bf:
f3:88:67:18:56:58:be:cd:b0:af:c2:f5:d3:ae:7b:
7c:b3:1a:25:f8:2d:a8:06:35:91:6c:da:de:4a:85:
9a:3d:e0:10:e2:81:62:7d:bd:41:4e:82:15:eb:ca:
f6:1d:d3:23:04:8e:34:bb:26:a7:27:b3:01:58:5c:
d2:f5:70:da:60:89:10:b3:b6:b5:7c:36:90:e3:33:
80:e1:a1:fb:47:2d:d2:20:1b:30:55:63:45:2d:a6:
e5:b1:38:82:e8:2d:28:60:dd:c0:64:89:85:e4:58:
ab:06:70:8a:9e:66:42:fd:00:f8:9e:82:cd:c1:96:
8d:2e:93:65:d3:85:d4:8e:89:82:85:e3:f4:c1:3f:
aa:2f:43:7d:d5:17:70:ea:44:05:0d:ff:7a:4a:52:
3d:9b:06:f4:89:c5:17:0f:47:31:d6:8d:24:f3:98:
94:56:17:44:74:f5:35:42:24:d1:16:5d:a9:7b:f9:
0a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:1A:B2:46:A1:5C:42:AB:4F:B5:91:B4:AC:E1:0B:55:70:C8:AF:84
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/rxqyRqFcQqtPtZG0rOELVXDIr4Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.192.0/19
Signature Algorithm: sha256WithRSAEncryption
81:37:1c:57:26:4f:de:4a:36:89:c2:e4:68:06:7c:5b:17:b9:
ab:d7:aa:0c:0f:35:94:c2:8e:f4:b4:e8:a3:68:8a:8f:ed:c8:
7b:2c:ad:ac:d9:54:bc:9a:41:ed:8b:62:7f:0c:22:c3:e2:82:
09:92:87:fe:c7:5e:bb:50:c6:3a:39:ef:5f:36:ee:45:07:d8:
99:90:f7:36:ff:d6:ce:46:e7:75:45:06:0d:ce:4f:dc:4f:96:
30:48:b2:a1:4d:9c:9e:00:b7:f9:d2:82:34:29:44:f0:5b:80:
26:ef:fb:07:3f:1f:d7:a3:80:e6:29:7a:26:44:51:d0:2b:b8:
27:be:82:f3:24:76:e6:5d:be:6c:b3:2d:a6:ea:20:c8:af:a5:
39:da:3f:65:b2:9b:f5:1c:2e:8b:1e:2c:24:f8:e7:03:a6:70:
41:fd:c5:2d:52:dc:3c:e6:70:f6:21:4d:a3:23:f2:86:02:45:
6b:60:25:82:63:3a:fc:50:e0:28:21:a2:4f:b0:2a:cc:9f:0e:
91:7b:76:ff:da:09:c3:ee:3c:1a:3f:7a:20:ad:23:20:45:1d:
33:51:30:3b:42:75:e5:3b:b9:37:ae:41:96:be:25:09:70:f6:
12:c5:dc:f9:4b:29:7c:cb:1f:3e:8a:ba:60:16:84:fc:84:93:
9f:48:13:13
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDekwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMyMDBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEFGMUFCMjQ2QTE1QzQy
QUI0RkI1OTFCNEFDRTEwQjU1NzBDOEFGODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQ21qTct8+CRcpHP4/Jzx4r98vYjYIV2G2rMaV10sRPkxv6Ktu
cW0MV8h3y1h8WVi6c/Og6tyco/Rs4/8fMVsOsU1DqN3Ttl0Mv/OIZxhWWL7NsK/C
9dOue3yzGiX4LagGNZFs2t5KhZo94BDigWJ9vUFOghXryvYd0yMEjjS7JqcnswFY
XNL1cNpgiRCztrV8NpDjM4DhoftHLdIgGzBVY0UtpuWxOILoLShg3cBkiYXkWKsG
cIqeZkL9APiegs3Blo0uk2XThdSOiYKF4/TBP6ovQ33VF3DqRAUN/3pKUj2bBvSJ
xRcPRzHWjSTzmJRWF0R09TVCJNEWXal7+QpPAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUrxqyRqFcQqtPtZG0rOELVXDIr4QwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9yeHF5UnFGY1FxdFB0
Wkcwck9FTFZYRElyNFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQFlnXAMA0GCSqGSIb3DQEBCwUAA4IBAQCBNxxXJk/eSjaJwuRoBnxbF7mr16oM
DzWUwo70tOijaIqP7ch7LK2s2VS8mkHti2J/DCLD4oIJkof+x167UMY6Oe9fNu5F
B9iZkPc2/9bORud1RQYNzk/cT5YwSLKhTZyeALf50oI0KUTwW4Am7/sHPx/Xo4Dm
KXomRFHQK7gnvoLzJHbmXb5ssy2m6iDIr6U52j9lspv1HC6LHiwk+OcDpnBB/cUt
Utw85nD2IU2jI/KGAkVrYCWCYzr8UOAoIaJPsCrMnw6Re3b/2gnD7jwaP3ogrSMg
RR0zUTA7QnXlO7k3rkGWviUJcPYSxdz5Syl8yx8+irpgFoT8hJOfSBMT
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org