Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/vjbsxTZOcRBKWEMMsfArkk4R4zE.roa
File: vjbsxTZOcRBKWEMMsfArkk4R4zE.roa (raw, json)
Hash identifier: +3HRTakJbCpzqq1PTMXcwyZ6e2IJH1j7+27QRq3RQrY=
Subject key identifier: BE:36:EC:C5:36:4E:71:10:4A:58:43:0C:B1:F0:2B:92:4E:11:E3:31
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BD9
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/vjbsxTZOcRBKWEMMsfArkk4R4zE.roa
Signing time: Wed 29 Sep 2021 02:38:45 +0000
ROA not before: Wed 29 Sep 2021 02:38:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131600
IP address blocks: 113.21.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3033 (0xbd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BE36ECC5364E71104A58430CB1F02B924E11E331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4f:34:f3:82:62:53:04:54:4b:fb:fd:9e:61:
95:b2:da:fd:af:0e:76:19:6f:63:ab:c6:b3:73:09:
96:2f:16:7a:91:30:b2:ac:59:85:78:dc:f2:97:d5:
36:df:f3:7b:38:17:5c:1e:06:23:ef:dd:68:53:72:
93:ad:f4:81:4d:79:24:7f:56:53:ee:fe:f4:61:3a:
3d:dd:69:ee:e1:be:33:68:53:6d:1f:8b:30:31:1f:
70:46:a7:35:c8:f3:f2:6f:3f:eb:37:5a:ae:fc:32:
6f:ec:4e:a3:23:a1:82:32:40:bb:51:d1:27:07:e8:
32:31:e1:b8:b1:a6:f1:4e:be:f0:47:eb:2a:33:08:
ed:bf:67:33:44:6f:f0:a5:da:69:ed:49:d7:b2:cb:
cc:90:5d:79:7d:16:9e:34:a3:3f:14:7b:12:45:9c:
42:b6:d7:7c:40:fd:08:53:58:85:f2:7f:24:2f:bc:
a6:b8:b2:41:35:7d:37:26:35:f5:be:e4:82:12:48:
43:c0:3d:f1:9b:05:33:b1:2c:16:0e:33:65:3e:8d:
e7:1c:2b:91:51:fb:3c:d2:ba:cb:f0:44:71:79:e4:
d1:9a:66:f5:3d:c6:ad:71:89:07:85:a3:9e:1f:ff:
d9:78:69:0f:bf:8e:3b:21:a9:46:15:17:e7:7e:3e:
53:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:36:EC:C5:36:4E:71:10:4A:58:43:0C:B1:F0:2B:92:4E:11:E3:31
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/vjbsxTZOcRBKWEMMsfArkk4R4zE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.94.0/24
Signature Algorithm: sha256WithRSAEncryption
86:13:99:59:cb:eb:ea:03:2a:46:1f:c1:9d:64:8a:44:7c:11:
33:86:8c:e4:fa:e9:02:6b:e1:af:77:d1:89:8d:03:03:37:22:
3e:9f:83:14:84:58:32:aa:5b:b8:07:53:da:27:01:de:49:51:
eb:a5:8c:d2:b0:66:79:ef:20:08:24:6f:9e:57:d5:3e:a8:89:
4f:82:f2:1e:0b:6c:15:05:89:db:be:80:c7:49:e4:1e:46:4f:
64:23:3a:99:1d:81:0d:ad:d5:35:a8:dc:4e:e2:3a:70:51:ca:
7e:07:c8:da:43:e3:50:66:db:7d:db:b4:4e:5e:86:ff:8d:9f:
c7:7b:5a:d9:b5:4f:38:ab:ac:3f:14:49:da:cf:0c:f1:56:3c:
09:6d:c0:29:93:fd:fb:79:ea:36:f2:75:84:ce:24:44:f4:e7:
6d:35:06:a5:72:6d:a3:f4:04:c8:ca:50:43:31:a9:3f:42:10:
27:59:94:f2:cc:cc:36:23:8a:33:06:e4:28:10:b1:e5:c1:d7:
d0:13:a1:50:cd:1a:22:58:33:5f:a1:ea:af:77:9e:00:82:13:
51:7b:d3:28:17:ac:00:a4:0a:ff:e7:f6:ca:5f:a2:f6:73:5d:
50:18:be:ef:cb:4e:b0:2d:7b:bb:aa:b5:b3:f2:77:9f:99:53:
8c:45:38:e6
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICC9kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMTA5Mjkw
MjM4NDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEJFMzZFQ0M1MzY0RTcx
MTA0QTU4NDMwQ0IxRjAyQjkyNEUxMUUzMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtTzTzgmJTBFRL+/2eYZWy2v2vDnYZb2OrxrNzCZYvFnqRMLKs
WYV43PKX1Tbf83s4F1weBiPv3WhTcpOt9IFNeSR/VlPu/vRhOj3dae7hvjNoU20f
izAxH3BGpzXI8/JvP+s3Wq78Mm/sTqMjoYIyQLtR0ScH6DIx4bixpvFOvvBH6yoz
CO2/ZzNEb/Cl2mntSdeyy8yQXXl9Fp40oz8UexJFnEK213xA/QhTWIXyfyQvvKa4
skE1fTcmNfW+5IISSEPAPfGbBTOxLBYOM2U+jeccK5FR+zzSusvwRHF55NGaZvU9
xq1xiQeFo54f/9l4aQ+/jjshqUYVF+d+PlNpAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUvjbsxTZOcRBKWEMMsfArkk4R4zEwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy92amJzeFRaT2NSQktX
RU1Nc2ZBcmtrNFI0ekUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAcRVeMA0GCSqGSIb3DQEBCwUAA4IBAQCGE5lZy+vqAypGH8GdZIpEfBEzhozk
+ukCa+Gvd9GJjQMDNyI+n4MUhFgyqlu4B1PaJwHeSVHrpYzSsGZ57yAIJG+eV9U+
qIlPgvIeC2wVBYnbvoDHSeQeRk9kIzqZHYENrdU1qNxO4jpwUcp+B8jaQ+NQZtt9
27ROXob/jZ/He1rZtU84q6w/FEnazwzxVjwJbcApk/37eeo28nWEziRE9OdtNQal
cm2j9ATIylBDMak/QhAnWZTyzMw2I4ozBuQoELHlwdfQE6FQzRoiWDNfoeqvd54A
ghNRe9MoF6wApAr/5/bKX6L2c11QGL7vy06wLXu7qrWz8nefmVOMRTjm
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:06 2025 by rpki-client