Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/uYneTksYISyz5840IwnkVUwoY4o.roa
File: uYneTksYISyz5840IwnkVUwoY4o.roa (raw, json)
Hash identifier: GscKqQTRUBurVzLwVizTwlVLeUnOUoIuY0bpPzH2tWU=
Subject key identifier: B9:89:DE:4E:4B:18:21:2C:B3:E7:CE:34:23:09:E4:55:4C:28:63:8A
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E0C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/uYneTksYISyz5840IwnkVUwoY4o.roa
Signing time: Thu 29 Dec 2022 09:32:10 +0000
ROA not before: Thu 29 Dec 2022 09:32:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3596 (0xe0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B989DE4E4B18212CB3E7CE342309E4554C28638A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:98:e4:76:9e:5f:dc:5e:92:22:71:0f:4e:1a:
9f:96:f4:a1:24:72:08:43:36:bc:ba:82:25:96:ce:
74:b4:79:d5:bc:9e:40:4f:c9:81:3a:8a:f6:23:5b:
77:10:56:5c:b3:bf:05:09:be:ef:59:f8:fd:a5:6d:
94:6e:12:c2:3a:81:8b:76:2d:54:62:f6:21:b0:e4:
e6:2b:a9:af:2f:14:84:5f:31:cd:70:36:26:42:43:
a3:9c:7b:64:3c:2c:7e:0a:32:29:ec:89:77:86:d1:
07:f9:56:44:26:57:e3:54:6b:f9:57:01:a5:e8:0a:
df:d5:f1:95:e4:65:f3:4b:02:1d:56:3f:70:4d:03:
8e:06:77:1e:5e:f1:ed:cb:3c:32:e3:8a:28:a0:e2:
61:35:5f:50:21:8f:6a:1b:08:ae:69:94:93:4d:b2:
84:5b:fe:02:78:63:cc:9b:d4:c5:ca:fd:6f:93:eb:
6f:7b:94:61:16:b6:f7:92:3b:d0:fd:ef:a0:56:20:
18:c9:8a:4f:53:fb:47:a5:a5:1a:22:a6:b1:95:d6:
ca:82:22:46:b9:54:82:38:6f:00:f2:eb:d6:5a:f8:
48:37:7e:01:38:a8:14:8a:ca:26:4e:11:9d:91:5c:
26:eb:d9:7d:f0:5b:6b:0f:37:80:13:55:bd:7f:05:
91:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:89:DE:4E:4B:18:21:2C:B3:E7:CE:34:23:09:E4:55:4C:28:63:8A
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/uYneTksYISyz5840IwnkVUwoY4o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.240.0/20
Signature Algorithm: sha256WithRSAEncryption
7d:59:2d:08:7f:ef:fb:63:c8:0b:d1:31:92:84:16:43:be:d6:
c0:e0:23:61:ce:cf:a1:e1:b3:b2:a9:e3:03:02:67:a1:44:10:
59:dc:ef:59:a5:4e:bc:c0:b3:50:43:ee:3b:01:06:a3:37:47:
e8:0e:47:6e:c1:fd:b8:0a:a4:d3:27:ed:32:dc:0a:a9:02:06:
f8:c4:0a:c1:48:51:fb:ad:3f:36:69:18:b9:31:f8:32:a8:de:
bf:51:44:de:f7:d0:71:f9:80:00:ae:1d:2a:60:45:b6:50:e6:
0d:2f:74:03:7f:e2:a6:91:67:28:10:b6:ee:b0:4c:f5:87:09:
e1:7a:9b:42:96:1c:d0:97:76:0c:4e:4a:2e:59:f0:ab:f0:59:
7c:97:0e:64:2d:30:31:bc:6a:a5:cf:d2:19:14:1d:45:61:93:
23:11:80:06:b9:b4:62:bc:9b:5f:1a:62:fd:72:63:c9:c2:49:
38:4e:6a:c9:0c:ee:df:fa:fe:52:17:38:ea:df:3e:53:ee:14:
10:4c:49:4a:f7:16:ee:e9:a4:bf:7b:16:fe:39:73:97:88:44:
b5:74:b9:1e:1d:2c:91:46:77:8d:f5:34:71:07:28:78:67:81:
f3:c6:fe:cf:18:ae:c1:90:c4:fb:d1:9d:90:cd:ad:80:5a:70:
18:f0:ba:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:33 2025 by rpki-client