Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zKu5Gt3sVTndn32M3e3n3Pg4QeE.roa
File: zKu5Gt3sVTndn32M3e3n3Pg4QeE.roa (raw, json)
Hash identifier: ARutZRMiMHHSw5LD2wwAAAUt2x8qoVp+OO9sswzarrw=
Subject key identifier: CC:AB:B9:1A:DD:EC:55:39:DD:9F:7D:8C:DD:ED:E7:DC:F8:38:41:E1
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zKu5Gt3sVTndn32M3e3n3Pg4QeE.roa
Signing time: Thu 15 Sep 2022 02:39:22 +0000
ROA not before: Thu 15 Sep 2022 02:39:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.117.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CCABB91ADDEC5539DD9F7D8CDDEDE7DCF83841E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:70:e1:b9:02:8a:03:be:c3:fe:d8:63:c3:d4:
b6:ae:13:1b:57:92:3e:2e:8c:06:db:3e:d6:52:47:
4c:cb:51:d4:0c:62:15:75:10:d3:69:d5:47:57:ae:
f7:7a:b6:c9:f6:5f:cd:bf:6a:a1:35:69:f6:00:7c:
83:f0:3e:68:97:28:ea:86:4f:60:f4:e8:6e:69:2e:
5f:90:82:b0:d3:58:34:e6:03:cd:d4:35:51:c5:da:
15:5d:73:6d:49:3f:fc:45:41:d9:d0:ab:7d:31:e5:
14:a8:a0:6a:6f:a3:7c:9b:9a:f1:26:8d:e6:1a:45:
c1:30:31:e6:ad:6f:50:c9:1d:80:04:9c:c9:ae:37:
45:00:7f:ef:f3:dc:24:ec:c5:9c:06:4e:11:e7:7e:
68:8c:63:0c:18:9a:5b:8a:5b:b1:89:02:d5:b1:67:
cc:87:53:66:30:f0:f6:08:a8:5c:5c:77:23:34:1a:
30:df:e5:b2:86:30:82:95:b8:70:54:26:64:0c:42:
84:8e:71:96:af:30:37:6b:e1:f1:41:cd:28:34:be:
2d:6f:4f:3e:01:ca:df:d5:45:77:c1:4e:72:3f:6b:
43:10:14:f2:28:4c:60:98:a3:0c:da:d0:68:5f:db:
0d:35:9b:30:8a:c6:a0:b7:ee:06:0a:0b:9b:35:77:
49:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:AB:B9:1A:DD:EC:55:39:DD:9F:7D:8C:DD:ED:E7:DC:F8:38:41:E1
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zKu5Gt3sVTndn32M3e3n3Pg4QeE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.128.0/19
Signature Algorithm: sha256WithRSAEncryption
47:af:4f:a8:40:ed:44:26:c2:6a:f9:2d:21:1e:23:6b:22:9d:
f9:ea:d6:49:b5:19:1e:33:86:7c:3c:5f:3a:d4:68:53:af:5f:
75:82:90:78:5b:4b:8f:95:35:f2:06:44:58:2c:7d:59:4b:61:
e3:9f:53:43:90:e0:1e:6c:2a:02:1b:d5:72:5d:18:09:40:fd:
9f:0e:f7:00:7d:e5:7f:6b:fd:d4:6f:79:ed:a0:c1:c7:fa:1e:
66:1f:2f:14:64:dd:01:e3:0b:d4:04:34:8f:22:cf:0f:b5:e6:
f7:28:f3:fe:a7:0a:86:80:69:74:df:ca:e9:18:e9:5d:ba:bd:
97:3e:6d:7d:b0:2c:12:83:a8:63:f5:ea:4c:9d:24:a1:6e:81:
f4:e2:96:be:23:25:2a:7e:a9:8f:ed:e2:9c:73:ab:4f:71:9c:
fa:b8:71:37:8e:80:80:5f:63:cd:24:a6:cb:86:40:17:48:e9:
6b:8d:e3:c1:4a:54:d3:96:8e:c7:5e:da:62:ab:3c:ea:a5:c3:
c8:84:ce:a7:a4:aa:aa:b7:a3:bc:b9:b1:b9:5c:e6:f3:98:31:
3f:a5:73:b2:d7:80:01:d2:97:d6:ea:bc:fb:c3:e4:41:6b:73:
fc:e2:4f:fb:28:46:5a:e3:e7:12:5f:75:ce:c7:bf:b2:0f:dc:
f1:d5:e9:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:36 2025 by rpki-client