Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/uFRyoaM4gsAkdIPRdumLbjmXYMY.roa
File: uFRyoaM4gsAkdIPRdumLbjmXYMY.roa (raw, json)
Hash identifier: kg6jIhBu5S1gT3jLFjErwfdPqwB+FWCL2GfZNje2X84=
Subject key identifier: B8:54:72:A1:A3:38:82:C0:24:74:83:D1:76:E9:8B:6E:39:97:60:C6
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AE0
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/uFRyoaM4gsAkdIPRdumLbjmXYMY.roa
Signing time: Sun 07 Feb 2021 12:43:11 +0000
ROA not before: Sun 07 Feb 2021 12:43:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.144.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2784 (0xae0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:43:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B85472A1A33882C0247483D176E98B6E399760C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f0:ca:14:d9:cc:65:84:d5:5f:2e:f1:e0:8e:
91:99:57:c6:16:ee:d0:f4:43:15:6d:c6:05:c0:99:
50:a6:c6:6d:8a:37:02:5d:86:1b:9a:9a:b1:94:2b:
3f:2e:79:b0:67:bf:fc:68:ca:34:e7:52:ee:f6:9a:
2c:ff:4d:cb:ff:a1:30:9c:47:7c:b5:ff:4f:c2:ef:
4a:4d:c7:b6:a5:2f:81:4e:8f:47:f5:74:b7:4e:59:
ea:28:5a:70:34:af:1e:14:a0:be:e2:db:9a:b2:28:
24:80:be:5e:2c:ac:47:b1:69:6a:43:1a:17:ad:82:
86:b1:0c:f0:d5:d5:46:67:fe:8a:35:43:0a:58:73:
1d:91:04:2c:15:ff:8b:e5:d5:b1:2d:1a:49:6f:46:
7b:ce:c9:ab:f1:74:11:69:13:2b:8c:21:56:f0:da:
1e:b7:eb:2d:2c:db:f4:b8:52:ba:ea:0e:d0:df:f4:
79:b4:f5:7d:f1:89:ec:7a:cd:76:40:ee:78:54:d0:
76:e6:cc:1d:4e:da:d2:ac:9c:a1:36:f8:b8:56:d3:
12:a3:00:36:db:33:de:2f:8c:54:ad:e2:29:1b:b8:
2d:6b:13:9e:a9:0b:b9:fe:de:71:a1:fa:04:f8:3d:
9c:a4:e5:42:af:37:23:3a:b8:21:54:66:25:e4:d1:
5f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:54:72:A1:A3:38:82:C0:24:74:83:D1:76:E9:8B:6E:39:97:60:C6
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/uFRyoaM4gsAkdIPRdumLbjmXYMY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.144.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:ad:e1:94:be:ba:77:79:e5:95:94:93:1b:9f:d1:3c:25:ca:
b7:5e:ee:21:3b:8e:0f:4f:79:b1:10:7c:f9:d9:7c:9e:0b:26:
47:72:af:c1:c0:1a:8b:43:eb:1c:e0:ef:52:73:43:50:bc:08:
dd:79:ed:4e:bc:6a:ff:26:8f:03:0e:13:18:a0:c0:21:be:22:
50:db:82:73:1a:1a:88:78:eb:20:6c:4a:b9:cd:70:ad:4f:88:
b3:31:0b:62:e7:78:14:25:d4:09:54:f4:10:59:e6:24:1a:ab:
84:ad:48:6f:d1:de:b7:5d:64:7f:8a:68:a7:78:84:68:03:d0:
7c:0b:21:e8:a7:0d:9b:cf:22:77:40:9f:e0:1c:d5:28:2b:2c:
72:d8:8a:3c:be:bd:de:2a:7e:c4:c4:39:a4:85:e4:77:fa:2f:
54:92:42:02:e7:57:eb:35:b3:86:c0:2f:47:2c:0b:68:bf:2a:
42:d5:3a:da:77:e4:67:59:85:21:8e:c3:a8:e0:15:a5:06:e6:
5f:59:bc:e8:5e:cd:79:ec:97:10:25:f2:5f:05:ae:79:85:42:
16:36:c8:c0:41:3f:2f:c7:a1:85:ad:9c:67:f8:84:45:07:88:
01:13:21:b2:23:cf:bd:3a:2f:ff:d5:15:21:a0:20:99:2b:73:
be:ae:bc:1e
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCuAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTAyMDcx
MjQzMTFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEI4NTQ3MkExQTMzODgy
QzAyNDc0ODNEMTc2RTk4QjZFMzk5NzYwQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCw8MoU2cxlhNVfLvHgjpGZV8YW7tD0QxVtxgXAmVCmxm2KNwJd
hhuamrGUKz8uebBnv/xoyjTnUu72miz/Tcv/oTCcR3y1/0/C70pNx7alL4FOj0f1
dLdOWeooWnA0rx4UoL7i25qyKCSAvl4srEexaWpDGhetgoaxDPDV1UZn/oo1QwpY
cx2RBCwV/4vl1bEtGklvRnvOyavxdBFpEyuMIVbw2h636y0s2/S4UrrqDtDf9Hm0
9X3xiex6zXZA7nhU0HbmzB1O2tKsnKE2+LhW0xKjADbbM94vjFSt4ikbuC1rE56p
C7n+3nGh+gT4PZyk5UKvNyM6uCFUZiXk0V/xAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUuFRyoaM4gsAkdIPRdumLbjmXYMYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy91RlJ5b2FNNGdzQWtk
SVBSZHVtTGJqbVhZTVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQElnSQMA0GCSqGSIb3DQEBCwUAA4IBAQA/reGUvrp3eeWVlJMbn9E8Jcq3Xu4h
O44PT3mxEHz52XyeCyZHcq/BwBqLQ+sc4O9Sc0NQvAjdee1OvGr/Jo8DDhMYoMAh
viJQ24JzGhqIeOsgbEq5zXCtT4izMQti53gUJdQJVPQQWeYkGquErUhv0d63XWR/
imineIRoA9B8CyHopw2bzyJ3QJ/gHNUoKyxy2Io8vr3eKn7ExDmkheR3+i9UkkIC
51frNbOGwC9HLAtovypC1Trad+RnWYUhjsOo4BWlBuZfWbzoXs157JcQJfJfBa55
hUIWNsjAQT8vx6GFrZxn+IRFB4gBEyGyI8+9Oi//1RUhoCCZK3O+rrwe
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org