Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/16hhPqh7s--SOj-WDCCftB3s75w.roa
File: 16hhPqh7s--SOj-WDCCftB3s75w.roa (raw, json)
Hash identifier: jiyAKc7hxMCoy2CaIYAV4aNVps6cTan4fUfotuE3J5M=
Subject key identifier: D7:A8:61:3E:A8:7B:B3:EF:92:3A:3F:96:0C:20:9F:B4:1D:EC:EF:9C
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DDD
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/16hhPqh7s--SOj-WDCCftB3s75w.roa
Signing time: Thu 29 Dec 2022 09:31:57 +0000
ROA not before: Thu 29 Dec 2022 09:31:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3549 (0xddd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D7A8613EA87BB3EF923A3F960C209FB41DECEF9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3c:0d:73:76:cc:fc:de:cf:05:07:70:21:a1:
6f:f4:d9:3e:2a:0c:06:a0:6c:a9:94:7b:04:92:00:
7e:90:66:57:b2:2d:32:51:ee:16:09:a3:1e:8f:ad:
84:e7:d3:83:70:0f:fa:39:6c:29:12:0d:e3:9e:aa:
4f:19:b2:de:e4:26:3d:f6:d2:0a:e8:63:78:38:d4:
04:c0:b9:e5:00:35:c6:53:e0:2b:c6:65:91:0b:35:
3d:fa:e2:23:26:23:0b:80:8b:ad:47:b2:56:80:e3:
ce:b8:83:f3:f6:f4:a7:2a:9f:71:50:e6:a0:97:60:
e0:2d:5d:e5:de:d2:b9:c4:e4:77:83:a6:51:8e:6b:
66:d3:9e:1b:28:70:c4:ac:e7:93:28:45:42:a2:ab:
ef:c3:c1:ae:a4:37:c9:f5:9b:2d:37:24:24:6a:29:
bd:30:3e:65:30:6a:92:5f:d4:2f:78:56:6c:8a:4b:
c3:ef:f3:88:a9:de:1f:21:09:22:ef:49:94:3f:50:
91:80:94:df:f7:d1:2b:0e:48:3a:08:82:d7:b9:85:
d6:19:b7:e2:32:48:d7:c5:ea:7e:92:8d:ab:e3:70:
82:8c:47:ad:af:99:27:cf:5e:fe:8f:cc:cf:4c:ca:
97:e1:ce:b7:46:85:ee:93:ae:ae:6a:d5:f7:40:7a:
b8:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A8:61:3E:A8:7B:B3:EF:92:3A:3F:96:0C:20:9F:B4:1D:EC:EF:9C
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/16hhPqh7s--SOj-WDCCftB3s75w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.84.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:2b:dd:56:f8:5e:29:44:dd:2e:e8:e2:78:11:b4:5c:e0:db:
6d:9e:ae:66:3e:9a:8f:e5:30:66:2d:f5:60:d0:db:79:23:b0:
81:5c:d6:b9:e7:35:7b:bc:d1:0b:cb:ce:ad:a6:43:0a:bf:c4:
2a:b4:5b:49:bd:a8:a9:c6:3b:c6:3a:82:3d:91:7f:11:b9:58:
bb:17:76:bb:e9:cb:2b:ec:49:f6:f0:93:fe:89:85:9f:32:37:
57:c8:37:5a:25:0d:96:b3:73:2e:6c:3b:61:50:90:f8:09:95:
c4:ec:79:ac:70:4a:31:ec:5f:26:b3:67:d4:10:47:22:ce:79:
de:20:9f:b4:5f:15:20:18:98:54:31:f8:a1:32:7d:5a:25:32:
52:43:88:45:78:13:c8:6c:8c:eb:d1:cf:21:3a:59:4d:25:31:
cf:0e:2c:c2:4a:39:98:1e:82:e3:f7:01:8e:ef:fe:68:6c:50:
04:69:9b:d4:5b:5f:b0:93:37:ef:97:72:ac:36:40:6a:30:3b:
80:d4:f8:c1:ea:0a:fb:bf:85:57:00:df:14:eb:5c:d5:f0:23:
58:55:77:28:91:3f:e6:73:83:9f:03:d7:af:f9:f9:01:cc:51:
61:68:f1:cf:52:38:47:93:e2:cb:d5:0a:56:e6:74:2b:07:9d:
f5:98:b3:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org