Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sMlh_lqz9MSIJ8CmGMBke2ftITY.roa
File: sMlh_lqz9MSIJ8CmGMBke2ftITY.roa (raw, json)
Hash identifier: cpuoefNdNE603gETeehQ0s3BYvzKKMZWMiE6ng90uQI=
Subject key identifier: B0:C9:61:FE:5A:B3:F4:C4:88:27:C0:A6:18:C0:64:7B:67:ED:21:36
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 088E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sMlh_lqz9MSIJ8CmGMBke2ftITY.roa
Signing time: Tue 29 Sep 2020 10:02:37 +0000
ROA not before: Tue 29 Sep 2020 10:02:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9922
IP address blocks: 118.150.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2190 (0x88e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:37 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B0C961FE5AB3F4C48827C0A618C0647B67ED2136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7a:fe:63:d0:8d:4f:d3:7e:d7:63:f1:b7:e9:
7d:e3:4d:a1:d5:b0:4f:9c:99:56:65:57:63:4c:a1:
2e:7f:ea:da:53:c7:3a:4b:03:11:d0:0c:bc:a7:26:
2b:61:7e:cf:3b:b7:c7:47:5d:d3:00:c9:bb:6a:a4:
2c:7a:fa:a4:9e:42:19:5f:9d:c4:56:42:4e:86:0d:
29:cc:f1:1f:02:a2:1b:73:12:2f:69:ef:71:82:39:
5a:ba:b9:16:e6:5f:ab:e0:00:30:99:8d:83:55:49:
87:87:64:e1:a8:ae:57:a3:d3:6e:87:4f:1d:5c:a3:
00:6c:93:df:96:68:df:0b:95:e9:21:b0:78:54:dc:
02:16:0b:f3:02:3a:45:a5:9f:93:0c:8e:66:fd:db:
cd:9f:a3:d9:16:48:8f:3f:68:ab:99:fc:78:6a:18:
f3:ca:f3:49:9c:a6:96:db:aa:e6:aa:c6:4c:d7:df:
9c:11:dc:ad:39:a4:11:0d:04:bc:8f:f7:4d:0d:6b:
06:2f:ed:11:f2:b2:70:e8:a9:ef:03:9a:31:97:e0:
91:4c:ba:8e:11:5a:e2:72:39:66:2c:f5:3f:79:3a:
76:0f:0b:1d:c4:fc:b9:28:4b:2f:66:53:e7:59:8e:
e8:41:c1:1a:76:11:8f:ce:8a:ac:b9:58:57:a2:bb:
fa:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C9:61:FE:5A:B3:F4:C4:88:27:C0:A6:18:C0:64:7B:67:ED:21:36
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sMlh_lqz9MSIJ8CmGMBke2ftITY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.252.0/22
Signature Algorithm: sha256WithRSAEncryption
22:12:23:a4:2a:40:ba:d4:09:d2:73:04:f0:58:d2:9c:03:3a:
d8:e1:cb:88:fa:ab:ee:6c:c6:41:dd:9c:7c:9f:02:0e:de:5f:
b7:fa:33:d8:5d:ea:5f:c6:99:1b:de:2b:1d:97:62:f8:81:28:
b4:24:90:14:bf:c4:27:73:c0:4b:b0:7e:0b:bc:cf:f5:2b:51:
d0:34:b8:8c:f7:67:55:37:7e:ce:68:b6:76:9a:1b:db:81:6d:
84:62:e8:6b:ef:c0:99:0e:f3:de:58:0e:f6:b3:e3:9a:d6:ec:
d4:c6:d5:0d:f2:82:e6:4e:85:96:bb:77:2f:3b:32:b5:60:2c:
4c:40:8b:3d:66:84:1a:dc:30:cc:09:cf:c9:0e:d8:8f:5e:f0:
a9:56:91:77:aa:d0:69:e9:09:2f:0a:5d:a2:f7:a1:48:5b:cc:
6c:3f:fa:bd:aa:d9:2e:a5:c5:a0:81:75:66:d2:11:0e:8c:3f:
47:66:a8:fa:ee:5a:81:20:a2:b9:18:91:79:26:23:12:08:8e:
09:73:98:49:af:59:7c:4e:75:28:48:f9:fb:ce:8f:dd:67:b4:
1c:0a:16:2d:ef:fd:02:f6:7b:2c:4e:a3:89:4c:4d:b3:b8:d1:
19:a3:7f:16:1a:51:70:44:92:fc:e5:43:af:d2:f6:fe:63:b9:
8a:cc:e6:d6
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDA5Mjkx
MDAyMzdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEIwQzk2MUZFNUFCM0Y0
QzQ4ODI3QzBBNjE4QzA2NDdCNjdFRDIxMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDXev5j0I1P037XY/G36X3jTaHVsE+cmVZlV2NMoS5/6tpTxzpL
AxHQDLynJithfs87t8dHXdMAybtqpCx6+qSeQhlfncRWQk6GDSnM8R8CohtzEi9p
73GCOVq6uRbmX6vgADCZjYNVSYeHZOGorlej026HTx1cowBsk9+WaN8LlekhsHhU
3AIWC/MCOkWln5MMjmb9282fo9kWSI8/aKuZ/HhqGPPK80mcppbbquaqxkzX35wR
3K05pBENBLyP900NawYv7RHysnDoqe8DmjGX4JFMuo4RWuJyOWYs9T95OnYPCx3E
/LkoSy9mU+dZjuhBwRp2EY/Oiqy5WFeiu/qVAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUsMlh/lqz9MSIJ8CmGMBke2ftITYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9zTWxoX2xxejlNU0lK
OENtR01Ca2UyZnRJVFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCdpb8MA0GCSqGSIb3DQEBCwUAA4IBAQAiEiOkKkC61AnScwTwWNKcAzrY4cuI
+qvubMZB3Zx8nwIO3l+3+jPYXepfxpkb3isdl2L4gSi0JJAUv8Qnc8BLsH4LvM/1
K1HQNLiM92dVN37OaLZ2mhvbgW2EYuhr78CZDvPeWA72s+Oa1uzUxtUN8oLmToWW
u3cvOzK1YCxMQIs9ZoQa3DDMCc/JDtiPXvCpVpF3qtBp6QkvCl2i96FIW8xsP/q9
qtkupcWggXVm0hEOjD9HZqj67lqBIKK5GJF5JiMSCI4Jc5hJr1l8TnUoSPn7zo/d
Z7QcChYt7/0C9nssTqOJTE2zuNEZo38WGlFwRJL85UOv0vb+Y7mKzObW
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:18 2025 by rpki-client