Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-aZFeG3LzM8pEnVUibdyY77Z1lI.roa
File: -aZFeG3LzM8pEnVUibdyY77Z1lI.roa (raw, json)
Hash identifier: xgXgxWWOKyQRrC5yeBtQrN/h+gyu/ge8ZQ2sPvr1QgQ=
Subject key identifier: F9:A6:45:78:6D:CB:CC:CF:29:12:75:54:89:B7:72:63:BE:D9:D6:52
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-aZFeG3LzM8pEnVUibdyY77Z1lI.roa
Signing time: Thu 15 Sep 2022 02:39:03 +0000
ROA not before: Thu 15 Sep 2022 02:39:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.96.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F9A645786DCBCCCF2912755489B77263BED9D652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:af:b9:e0:59:11:ef:b4:71:61:31:bd:18:ac:
93:d3:62:18:9f:74:12:5d:39:a5:fa:80:ce:6d:30:
fd:c1:84:b4:0b:82:0a:da:2a:7d:13:3f:dd:35:b8:
52:ce:fa:e8:f3:31:fb:5d:ad:c8:ef:f4:c2:27:9c:
8b:a1:ee:98:a0:aa:03:7a:26:b8:4d:f9:04:a4:e3:
f8:31:bf:ac:55:d4:a2:d7:df:6f:d0:a8:59:67:c7:
c9:50:c3:43:5b:9f:df:0f:e6:95:6c:c3:e2:ce:80:
3e:bd:9f:55:28:e7:98:76:dd:5a:e9:63:1c:18:e5:
4e:a5:1f:1b:2f:00:35:f0:36:91:d9:ff:9f:cf:d7:
a7:d1:7b:fd:90:7a:c6:80:e8:a5:1c:f2:5a:08:ce:
ca:15:0c:b3:c0:2e:34:d0:03:c3:d7:b4:49:68:74:
e3:4c:e7:79:f7:65:40:2d:fb:63:c6:ca:da:0a:f1:
07:a6:1c:58:ac:19:3c:93:07:a9:0d:81:89:4c:b6:
cb:0c:8e:c8:2b:6c:56:1c:ea:94:6b:ee:23:ec:1f:
9c:6a:bc:a1:bd:4a:a8:64:4d:f5:92:8f:bd:32:47:
4b:26:ae:66:07:1d:34:cc:5d:99:f6:aa:76:fd:a7:
16:89:44:c5:ab:43:80:66:8a:06:bc:0f:f7:04:71:
92:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:A6:45:78:6D:CB:CC:CF:29:12:75:54:89:B7:72:63:BE:D9:D6:52
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-aZFeG3LzM8pEnVUibdyY77Z1lI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.96.0/21
Signature Algorithm: sha256WithRSAEncryption
08:34:e0:a7:ba:03:f0:cf:84:50:a6:3b:1f:50:a3:04:0b:12:
f2:9b:25:9c:ed:06:57:a3:d3:b0:f5:a2:50:f0:81:71:a1:c2:
d2:04:b1:6a:93:1a:67:9b:a4:c5:26:6d:01:84:97:51:c0:e3:
40:72:9c:29:c8:27:1f:e2:7c:b5:df:37:b6:69:22:89:13:8d:
12:e7:9f:bc:bc:9f:60:4b:6b:b3:be:08:23:a9:b8:10:2d:05:
e6:44:07:35:f4:c7:32:97:df:24:28:69:ab:3b:01:6e:42:1a:
b2:a9:96:73:7e:b6:43:1f:de:b9:7f:44:fe:cf:f6:48:8a:43:
2a:60:94:46:e3:48:91:f4:72:80:7a:b0:1c:ed:1d:a2:bc:8d:
dc:8d:8d:c1:bf:b5:66:a1:cb:38:f7:a5:af:0e:aa:0b:d3:31:
12:72:a3:27:81:5c:ed:6a:40:f6:a7:2d:91:e9:79:3d:08:26:
24:0a:26:85:45:15:ab:ad:b7:60:56:95:c8:53:bc:80:7c:db:
07:36:86:1a:d6:98:f3:cd:dd:43:2c:25:f0:5c:cf:5c:be:76:
ef:45:7f:b3:7c:1f:93:1b:b9:cd:cd:2b:14:32:d5:30:62:18:
df:02:30:4a:2c:e8:ea:0e:1e:93:b0:d5:f0:e3:e5:f9:44:68:
6c:23:6b:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org