Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/xjIrDQjg7pRgElkj83kYxCP5xTI.roa
File: xjIrDQjg7pRgElkj83kYxCP5xTI.roa (raw, json)
Hash identifier: KywVm5ub36thOF3heAege9CI2pAXgXpoABRIScw2FHs=
Subject key identifier: C6:32:2B:0D:08:E0:EE:94:60:12:59:23:F3:79:18:C4:23:F9:C5:32
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E0B
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/xjIrDQjg7pRgElkj83kYxCP5xTI.roa
Signing time: Thu 29 Dec 2022 09:32:10 +0000
ROA not before: Thu 29 Dec 2022 09:32:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.104.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3595 (0xe0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C6322B0D08E0EE9460125923F37918C423F9C532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8f:1b:8d:4c:a0:cc:4a:75:8c:01:4f:f7:de:
94:c9:ba:05:93:a2:f5:5a:3d:c3:2d:70:35:34:81:
b8:fb:db:fc:cc:3d:fc:e2:05:18:bc:21:c9:4d:0f:
73:b1:09:1d:e9:5e:ff:7a:ae:f6:76:e8:d1:d2:08:
1c:3b:f4:eb:d4:ba:29:3a:07:92:90:29:ca:35:9e:
26:41:eb:c5:a8:c6:4b:1e:93:62:27:b6:ee:ab:77:
18:62:98:56:a3:98:03:b6:e3:07:b9:67:56:76:27:
d4:de:4d:23:d1:47:2c:ad:d0:5d:0e:22:8e:0c:9c:
d2:19:b1:40:5d:75:ad:d7:2e:89:c9:fb:bb:9d:5b:
87:47:bf:ce:a4:61:5b:1c:7c:dc:dc:b6:22:f9:f0:
43:96:2f:b3:7d:ef:56:8a:ff:90:08:db:eb:88:72:
61:26:39:42:2b:d9:4a:d1:cc:41:e5:21:f4:a8:35:
4e:58:a2:1f:9a:e1:c7:3d:48:75:bc:42:12:6d:71:
e3:e0:24:25:5e:b5:53:5a:46:61:08:9c:0c:5f:5f:
bf:20:e2:0e:36:b6:6e:75:a1:08:9e:83:ac:56:73:
d1:55:54:2e:88:8e:37:90:02:6f:4c:52:4f:27:77:
83:95:54:87:47:7d:a4:cc:1a:50:4c:8b:65:d0:55:
da:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:32:2B:0D:08:E0:EE:94:60:12:59:23:F3:79:18:C4:23:F9:C5:32
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/xjIrDQjg7pRgElkj83kYxCP5xTI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.104.0/21
Signature Algorithm: sha256WithRSAEncryption
79:f2:b6:89:a9:79:34:5c:fc:68:36:c7:4b:86:87:66:6d:ce:
3f:f3:9f:3a:cf:b4:13:41:7a:77:94:ea:32:30:12:dd:73:a8:
70:da:ad:96:c3:c6:c2:07:59:94:c6:6d:f4:90:e8:49:12:07:
9a:a1:85:65:9d:1c:39:ae:c3:9c:76:97:66:83:0f:f7:12:82:
5f:e4:30:3d:50:65:e4:f3:cd:25:cf:00:83:b3:81:a8:d7:f8:
19:a6:65:7f:e5:8e:60:5e:90:9f:2f:00:01:79:28:5d:d7:4d:
66:cf:dd:3e:f1:16:f0:8a:58:3c:ed:61:a6:f0:dc:8e:c2:44:
ac:54:70:7a:28:80:82:8d:ca:48:a1:90:36:54:ce:df:a1:ad:
3e:cf:4d:37:2e:13:96:9c:43:dd:8f:4d:14:31:88:d3:c2:f5:
65:80:86:d9:44:75:52:2d:31:28:f8:5c:d8:0c:85:8c:c6:e5:
1b:b0:3d:6f:4e:bb:c4:54:c4:be:62:08:5d:a7:0d:c9:13:b1:
96:e7:e3:60:a3:f1:5d:7b:3f:c6:ef:54:c4:16:fa:38:d3:c0:
d4:9f:82:dd:28:23:73:81:e8:0d:9e:e8:50:40:1c:70:f7:f9:
f0:2a:4e:88:20:3b:bf:1d:db:60:3f:64:36:d7:77:de:5b:29:
5d:0e:01:93
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDgswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMjEyMjkw
OTMyMTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEM2MzIyQjBEMDhFMEVF
OTQ2MDEyNTkyM0YzNzkxOEM0MjNGOUM1MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCkjxuNTKDMSnWMAU/33pTJugWTovVaPcMtcDU0gbj72/zMPfzi
BRi8IclND3OxCR3pXv96rvZ26NHSCBw79OvUuik6B5KQKco1niZB68Woxksek2In
tu6rdxhimFajmAO24we5Z1Z2J9TeTSPRRyyt0F0OIo4MnNIZsUBdda3XLonJ+7ud
W4dHv86kYVscfNzctiL58EOWL7N971aK/5AI2+uIcmEmOUIr2UrRzEHlIfSoNU5Y
oh+a4cc9SHW8QhJtcePgJCVetVNaRmEInAxfX78g4g42tm51oQieg6xWc9FVVC6I
jjeQAm9MUk8nd4OVVIdHfaTMGlBMi2XQVdo/AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUxjIrDQjg7pRgElkj83kYxCP5xTIwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy94aklyRFFqZzdwUmdF
bGtqODNrWXhDUDV4VEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDlnRoMA0GCSqGSIb3DQEBCwUAA4IBAQB58raJqXk0XPxoNsdLhodmbc4/8586
z7QTQXp3lOoyMBLdc6hw2q2Ww8bCB1mUxm30kOhJEgeaoYVlnRw5rsOcdpdmgw/3
EoJf5DA9UGXk880lzwCDs4Go1/gZpmV/5Y5gXpCfLwABeShd101mz90+8Rbwilg8
7WGm8NyOwkSsVHB6KICCjcpIoZA2VM7foa0+z003LhOWnEPdj00UMYjTwvVlgIbZ
RHVSLTEo+FzYDIWMxuUbsD1vTrvEVMS+Yghdpw3JE7GW5+Ngo/Fdez/G71TEFvo4
08DUn4LdKCNzgegNnuhQQBxw9/nwKk6IIDu/HdtgP2Q213feWyldDgGT
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org