Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sNfEHOTB2warUXvgmkSRbymOB0Y.roa
File: sNfEHOTB2warUXvgmkSRbymOB0Y.roa (raw, json)
Hash identifier: lVDvia6P2X2+wqr1n2tjI2dXHt7MNH0pKSu3Ho6lCFs=
Subject key identifier: B0:D7:C4:1C:E4:C1:DB:06:AB:51:7B:E0:9A:44:91:6F:29:8E:07:46
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C04
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sNfEHOTB2warUXvgmkSRbymOB0Y.roa
Signing time: Wed 29 Sep 2021 02:38:57 +0000
ROA not before: Wed 29 Sep 2021 02:38:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 150.116.112.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3076 (0xc04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B0D7C41CE4C1DB06AB517BE09A44916F298E0746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d5:f1:e9:08:e7:fb:e8:7c:dd:c5:d7:e6:29:
b5:a9:2b:6d:b5:ac:98:ff:3e:9b:5a:89:01:46:f7:
2e:8b:e6:13:bb:11:64:c3:97:59:ae:a6:68:a2:45:
1b:bc:b1:79:de:8b:db:e9:28:92:9d:e4:9f:b5:e1:
cb:0a:c9:f3:d6:04:f3:db:6a:88:67:4d:30:b1:0c:
52:dd:6f:03:22:38:78:ab:7d:70:22:49:79:82:96:
b4:8f:a4:34:d6:c9:95:fe:ce:86:f2:15:6b:93:3d:
9e:ef:9a:69:39:8a:88:40:13:bf:36:1e:6c:d9:1e:
a9:3d:e8:3c:fa:7a:ec:66:d4:fb:b8:37:01:fd:01:
d8:eb:6f:04:af:dc:de:d2:ef:ea:1d:e9:31:ec:f3:
bf:30:9f:2d:2b:ae:5a:01:6c:ad:70:77:ed:61:6d:
03:f5:ff:d9:b6:93:d0:b1:f8:02:32:33:15:e2:6b:
26:ac:73:a3:0f:07:d0:94:53:95:0f:55:ae:01:b1:
d1:46:59:03:21:a6:04:a7:48:7c:e7:77:ba:95:93:
31:ea:6b:00:73:c5:9d:35:21:4d:c3:a0:4f:3c:0b:
37:45:7f:e8:19:69:91:c5:12:37:08:98:80:d1:23:
ed:a5:01:29:94:d7:11:12:36:83:b8:97:32:c6:f3:
bd:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D7:C4:1C:E4:C1:DB:06:AB:51:7B:E0:9A:44:91:6F:29:8E:07:46
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sNfEHOTB2warUXvgmkSRbymOB0Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.112.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:3d:1d:9b:db:76:92:4d:69:64:72:41:26:c1:5b:16:0c:d0:
81:f6:2f:86:bf:ef:13:aa:41:cf:66:8e:b9:7d:9e:2d:68:a0:
c2:53:7b:f6:64:8e:e0:fa:87:7d:b3:8e:97:38:cb:cd:f3:10:
21:5e:ea:bd:44:4b:7c:1f:e9:a6:75:5d:88:c7:97:4a:73:79:
16:cd:46:62:6f:bd:e6:c5:de:fb:de:1c:f4:5f:dd:5b:5a:1f:
35:d9:f2:6d:b4:ad:b9:86:33:ee:c1:d7:fe:fb:63:bf:c7:c8:
94:cd:8d:36:f5:d0:df:b5:d2:51:0f:0c:83:1e:01:54:9f:37:
3d:67:09:49:9b:13:d8:d9:21:d2:e3:ae:d9:04:19:ea:18:f1:
45:ab:0f:34:7e:cd:6a:f7:27:5d:6b:95:0a:3e:ec:fe:f5:04:
b5:d0:9d:14:8d:91:3e:0d:11:00:7c:63:ec:2a:51:4b:f5:49:
d6:eb:69:62:30:e8:bb:32:54:53:79:04:8d:4c:2a:24:4d:ea:
0b:87:76:9e:df:be:68:0e:2f:dc:5f:e2:7a:1e:a9:26:a6:b0:
86:21:96:15:56:66:4b:f9:02:30:dd:6c:ec:72:ff:6e:97:39:
76:9a:94:e4:52:ed:fe:96:2c:d0:10:0f:d7:f0:99:7c:16:4e:
f9:df:22:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:56 2025 by rpki-client