Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sYqQU7J-U7vYz8xKNCvMRGcMFd8.roa
File: sYqQU7J-U7vYz8xKNCvMRGcMFd8.roa (raw, json)
Hash identifier: qaZWZK5XIlSiKdtOeHzITeFDHJmjDk2G3PpKuRVYLaU=
Subject key identifier: B1:8A:90:53:B2:7E:53:BB:D8:CF:CC:4A:34:2B:CC:44:67:0C:15:DF
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 088B
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sYqQU7J-U7vYz8xKNCvMRGcMFd8.roa
Signing time: Tue 29 Sep 2020 10:02:36 +0000
ROA not before: Tue 29 Sep 2020 10:02:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2187 (0x88b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B18A9053B27E53BBD8CFCC4A342BCC44670C15DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c2:5c:e0:88:ef:eb:6b:1e:00:3c:9e:c7:94:
d8:9a:49:f1:cd:16:77:9e:c4:ae:9f:e8:98:80:50:
d0:0a:01:4e:8c:f9:20:1f:45:3c:77:35:9c:39:6c:
b4:9b:04:75:7d:9a:03:0e:dc:ba:9e:3f:d7:9b:2b:
13:f0:74:a6:8e:b7:5b:e9:df:b9:5f:ae:8c:10:ae:
ce:e2:0e:33:1b:dc:25:1e:b2:5c:e9:09:7b:4c:8a:
f4:e7:f3:9f:0e:be:63:ff:5c:5f:4c:ac:50:80:97:
8a:34:d4:f6:c0:cf:76:ea:f1:65:d7:46:be:ac:da:
2d:fd:bd:11:56:68:d4:fb:7f:d0:cd:09:a8:64:31:
79:8a:58:9d:3a:bd:0b:f7:bd:ae:a2:55:94:c9:b5:
56:90:06:ac:b3:90:00:b3:f3:fb:28:2c:24:d8:aa:
78:10:0a:14:96:ed:c4:c6:8d:eb:77:93:99:9b:0d:
67:42:54:89:9c:d1:72:79:4c:98:85:a3:93:bb:c5:
82:5f:e0:13:54:29:12:fa:45:0d:8b:65:00:32:91:
e2:7c:6f:dc:c8:40:ed:31:4b:67:54:b1:eb:0a:3c:
0f:a5:e8:c1:66:81:28:b7:33:f9:44:e6:6a:f4:a2:
4b:5e:f8:a8:c9:cb:a0:09:ee:32:c2:e4:23:74:f5:
0c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:8A:90:53:B2:7E:53:BB:D8:CF:CC:4A:34:2B:CC:44:67:0C:15:DF
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sYqQU7J-U7vYz8xKNCvMRGcMFd8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.232.0/22
Signature Algorithm: sha256WithRSAEncryption
80:1a:78:8f:23:b5:b7:80:7d:a7:e6:ab:98:14:49:5d:05:8a:
a8:8c:4d:8f:ba:ff:d5:c9:05:d8:15:30:4c:ea:7d:fe:51:0a:
3d:a1:9e:40:79:b1:5d:9d:e5:d9:d6:82:06:cc:a4:9b:55:7a:
cd:a6:12:11:ef:73:1d:86:97:d4:4b:d9:a6:0d:e2:38:73:50:
04:79:50:44:ac:f7:d9:1b:0d:23:5b:f0:d5:4a:e8:e0:2b:b8:
dc:fb:08:d5:1f:0b:1d:38:8d:bb:df:cc:cb:24:4a:9e:49:45:
be:28:a0:5a:fe:8f:3f:29:21:07:e5:fb:d5:ef:de:f9:f0:66:
77:86:7a:9f:d4:4c:1b:bd:ce:db:13:91:43:3b:2a:c2:da:a9:
05:d6:89:e9:e6:21:ca:13:c7:b3:d8:44:4f:21:c7:93:1c:4e:
c0:c7:dc:20:05:9a:90:ac:46:25:ce:5e:eb:82:7c:38:da:54:
79:79:66:68:61:d1:45:19:22:81:69:09:4a:da:23:13:87:9c:
a0:68:3a:6e:0e:8e:66:e4:40:36:32:2a:6d:33:4f:e5:89:8f:
82:70:03:49:e3:77:d2:a0:4b:34:d8:b1:1b:a9:3e:42:69:88:
fd:1f:8c:c9:7e:46:97:02:b0:06:c7:c6:cf:01:30:65:33:91:
af:6e:57:dd
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDA5Mjkx
MDAyMzZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEIxOEE5MDUzQjI3RTUz
QkJEOENGQ0M0QTM0MkJDQzQ0NjcwQzE1REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDZwlzgiO/rax4APJ7HlNiaSfHNFneexK6f6JiAUNAKAU6M+SAf
RTx3NZw5bLSbBHV9mgMO3LqeP9ebKxPwdKaOt1vp37lfrowQrs7iDjMb3CUeslzp
CXtMivTn858OvmP/XF9MrFCAl4o01PbAz3bq8WXXRr6s2i39vRFWaNT7f9DNCahk
MXmKWJ06vQv3va6iVZTJtVaQBqyzkACz8/soLCTYqngQChSW7cTGjet3k5mbDWdC
VImc0XJ5TJiFo5O7xYJf4BNUKRL6RQ2LZQAykeJ8b9zIQO0xS2dUsesKPA+l6MFm
gSi3M/lE5mr0okte+KjJy6AJ7jLC5CN09Qz9AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUsYqQU7J+U7vYz8xKNCvMRGcMFd8wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9zWXFRVTdKLVU3dll6
OHhLTkN2TVJHY01GZDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQClnToMA0GCSqGSIb3DQEBCwUAA4IBAQCAGniPI7W3gH2n5quYFEldBYqojE2P
uv/VyQXYFTBM6n3+UQo9oZ5AebFdneXZ1oIGzKSbVXrNphIR73MdhpfUS9mmDeI4
c1AEeVBErPfZGw0jW/DVSujgK7jc+wjVHwsdOI2738zLJEqeSUW+KKBa/o8/KSEH
5fvV79758GZ3hnqf1Ewbvc7bE5FDOyrC2qkF1onp5iHKE8ez2ERPIceTHE7Ax9wg
BZqQrEYlzl7rgnw42lR5eWZoYdFFGSKBaQlK2iMTh5ygaDpuDo5m5EA2MiptM0/l
iY+CcANJ43fSoEs02LEbqT5CaYj9H4zJfkaXArAGx8bPATBlM5Gvblfd
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org