Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/xV4g8hcBX0n6TtCT4iJRhngW0LY.roa
File: xV4g8hcBX0n6TtCT4iJRhngW0LY.roa (raw, json)
Hash identifier: e9VBG2OkHgzBrHDD06ISNYDHsr973o6w4S3M4IYQxtE=
Subject key identifier: C5:5E:20:F2:17:01:5F:49:FA:4E:D0:93:E2:22:51:86:78:16:D0:B6
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0846
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/xV4g8hcBX0n6TtCT4iJRhngW0LY.roa
Signing time: Tue 29 Sep 2020 10:02:16 +0000
ROA not before: Tue 29 Sep 2020 10:02:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 150.116.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2118 (0x846)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C55E20F217015F49FA4ED093E22251867816D0B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:02:ec:ac:e5:67:b1:f7:d0:59:21:c8:26:95:
bb:55:f8:12:1c:8b:93:26:57:3d:0c:6e:5e:39:db:
67:18:b2:fc:69:a3:f6:aa:9e:f3:54:4b:03:41:49:
d7:b1:1b:bc:23:c1:c3:13:53:a7:d0:1c:75:6e:e1:
82:1c:9d:e2:ba:5e:9f:2a:67:1d:5f:37:86:51:e9:
48:03:32:08:8e:90:59:41:12:ea:50:2a:8b:99:26:
b2:92:46:21:02:1c:6c:02:94:11:10:8e:5d:4f:d9:
d3:61:77:ca:5a:0d:64:2b:b5:d3:47:fc:ca:e4:c3:
e1:91:87:ca:c8:3f:6f:4a:92:f3:5f:da:df:62:50:
0a:a4:2a:a0:8d:8c:c6:7c:95:5d:42:da:0b:d6:44:
46:6b:9c:06:87:58:1a:87:05:61:f9:85:fe:7a:bb:
ac:b7:84:50:5a:df:67:d2:4f:b9:94:32:c4:76:7f:
0f:fb:65:f5:a5:eb:0c:5d:a3:81:05:14:50:54:ac:
8d:1f:3f:fc:08:20:92:38:f2:18:f0:15:cc:ca:7c:
8a:43:b1:c8:08:71:f2:7b:e4:07:2a:9f:3a:b9:8f:
77:00:1a:e7:3d:69:28:b0:c8:40:f8:62:fb:60:6b:
e8:38:dc:32:81:7a:dc:6b:72:71:3a:89:65:59:63:
2c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:5E:20:F2:17:01:5F:49:FA:4E:D0:93:E2:22:51:86:78:16:D0:B6
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/xV4g8hcBX0n6TtCT4iJRhngW0LY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.239.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:69:d0:3a:ee:ab:8a:39:31:a8:5d:02:e6:0e:a1:38:c6:5a:
f0:c0:12:da:ee:3b:1a:bd:a1:0a:69:50:04:42:1d:cd:ae:27:
99:61:81:32:a4:38:b8:5c:db:bc:72:45:08:45:42:ab:87:9c:
78:ee:16:5a:a5:0b:4e:95:e7:03:50:5c:bc:cb:8f:a9:24:54:
4b:c2:35:ba:ac:0b:ea:bc:16:5a:5c:cd:15:02:b3:cf:d2:57:
03:02:65:d4:77:ed:d9:e3:2d:42:58:c5:5a:11:e1:9b:a7:fb:
0f:80:ab:1e:23:d5:d3:1b:38:57:98:77:a4:3a:14:41:cd:e0:
29:39:41:00:b5:2c:40:a1:84:53:89:47:53:75:15:9a:a5:62:
63:7d:d1:81:8d:a5:5b:9f:79:ef:02:56:92:57:ae:ee:e4:33:
1a:fc:bf:ab:ad:10:88:19:5c:2a:bd:a3:3e:c7:73:d2:37:ca:
25:d4:60:7e:71:1d:6a:6f:bf:ab:1e:73:62:8b:49:aa:a9:76:
4f:6a:f0:d8:56:cb:08:63:65:7c:f2:f5:c6:f6:a5:2a:e3:d8:
34:9c:a0:9c:ab:bd:5b:b2:6c:5b:0d:0a:03:36:43:00:2b:29:
6a:9f:58:d7:06:bb:26:d2:f2:03:04:a2:84:92:ed:e8:7d:36:
78:22:ae:02
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMDA5Mjkx
MDAyMTZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEM1NUUyMEYyMTcwMTVG
NDlGQTRFRDA5M0UyMjI1MTg2NzgxNkQwQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKAuys5Wex99BZIcgmlbtV+BIci5MmVz0Mbl4522cYsvxpo/aq
nvNUSwNBSdexG7wjwcMTU6fQHHVu4YIcneK6Xp8qZx1fN4ZR6UgDMgiOkFlBEupQ
KouZJrKSRiECHGwClBEQjl1P2dNhd8paDWQrtdNH/Mrkw+GRh8rIP29KkvNf2t9i
UAqkKqCNjMZ8lV1C2gvWREZrnAaHWBqHBWH5hf56u6y3hFBa32fST7mUMsR2fw/7
ZfWl6wxdo4EFFFBUrI0fP/wIIJI48hjwFczKfIpDscgIcfJ75Acqnzq5j3cAGuc9
aSiwyED4Yvtga+g43DKBetxrcnE6iWVZYyyPAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUxV4g8hcBX0n6TtCT4iJRhngW0LYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy94VjRnOGhjQlgwbjZU
dENUNGlKUmhuZ1cwTFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAlnTvMA0GCSqGSIb3DQEBCwUAA4IBAQCOadA67quKOTGoXQLmDqE4xlrwwBLa
7jsavaEKaVAEQh3NrieZYYEypDi4XNu8ckUIRUKrh5x47hZapQtOlecDUFy8y4+p
JFRLwjW6rAvqvBZaXM0VArPP0lcDAmXUd+3Z4y1CWMVaEeGbp/sPgKseI9XTGzhX
mHekOhRBzeApOUEAtSxAoYRTiUdTdRWapWJjfdGBjaVbn3nvAlaSV67u5DMa/L+r
rRCIGVwqvaM+x3PSN8ol1GB+cR1qb7+rHnNii0mqqXZPavDYVssIY2V88vXG9qUq
49g0nKCcq71bsmxbDQoDNkMAKylqn1jXBrsm0vIDBKKEku3ofTZ4Iq4C
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org