Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1VLYLLVyD5wU53vSLyhSaAlBcKM.roa
File: 1VLYLLVyD5wU53vSLyhSaAlBcKM.roa (raw, json)
Hash identifier: UKzmRMy7ZvMtwS6mfpK6G3cARxp8siENYeuYAQqMN30=
Subject key identifier: D5:52:D8:2C:B5:72:0F:9C:14:E7:7B:D2:2F:28:52:68:09:41:70:A3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B0E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1VLYLLVyD5wU53vSLyhSaAlBcKM.roa
Signing time: Sun 07 Feb 2021 12:59:48 +0000
ROA not before: Sun 07 Feb 2021 12:59:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 203.163.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2830 (0xb0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:59:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D552D82CB5720F9C14E77BD22F285268094170A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e5:9c:69:20:85:24:8b:cf:34:b9:16:59:4f:
b6:e7:e3:34:c8:9e:c1:75:f7:eb:03:bb:9c:29:61:
eb:73:d2:f7:b1:8b:c8:5d:15:67:04:29:c3:cf:8f:
08:62:44:6f:af:9c:63:26:f1:8c:86:74:a9:a3:55:
f0:52:d3:18:27:7c:06:ee:c2:b9:df:99:34:a1:d4:
1d:e0:cf:03:63:11:ca:4f:0f:eb:1b:bb:53:56:39:
66:2d:c5:c1:84:39:ab:f9:43:45:2b:46:10:2c:5a:
aa:9d:20:45:9c:a5:05:2d:2e:8b:b4:36:9a:37:63:
fc:7b:5a:94:95:e6:46:04:17:be:8e:4e:fc:e8:5e:
80:1a:d0:6d:cb:4d:9b:4c:3e:33:0b:07:53:e5:27:
af:01:52:f8:9c:fa:9d:da:75:ba:08:ed:b6:dc:cb:
a6:58:cb:2c:7d:6b:45:41:1c:13:b7:a8:76:ef:c1:
e5:9e:27:e6:b5:2c:e3:05:cb:a4:c8:48:10:7d:65:
90:f2:57:23:78:b8:b8:81:4b:b2:ff:9a:64:72:00:
b5:6e:2d:26:72:62:a5:06:2c:c1:23:9b:dd:ac:02:
9a:9a:73:e0:b0:b5:eb:7d:af:dd:1c:f6:57:ab:e6:
9a:48:9c:c8:b8:e4:4f:e9:ba:cb:78:82:ba:2a:65:
f3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:52:D8:2C:B5:72:0F:9C:14:E7:7B:D2:2F:28:52:68:09:41:70:A3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1VLYLLVyD5wU53vSLyhSaAlBcKM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.196.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:2b:62:e4:b0:b0:ed:c8:c7:d4:69:90:e2:af:8f:fe:44:e3:
3d:cd:18:d3:16:f9:55:32:6c:3b:65:a9:c2:ef:da:c1:58:ae:
d5:9c:67:83:8c:23:d3:57:ff:17:fb:bf:e2:79:50:e3:c3:a2:
66:2c:92:bb:52:99:c4:26:dc:41:63:69:23:6a:76:9a:ac:7e:
8e:0e:4a:b5:12:ba:7c:b4:8e:d9:11:b9:47:62:0e:b4:56:f0:
c1:51:65:49:7e:67:06:06:65:c5:fe:b6:8b:39:be:e1:91:d1:
c1:db:92:82:a8:b2:34:de:cd:75:79:5e:66:86:8c:f1:05:e4:
09:23:f2:a9:99:87:27:ce:78:16:25:e0:e4:90:0c:42:62:57:
1d:20:36:1a:14:37:62:70:75:e7:b5:8c:55:c2:10:a9:f1:d3:
9d:f0:bf:d4:f3:02:9a:30:78:a7:6c:3b:d0:66:0c:d3:6d:c9:
66:18:ce:88:86:ab:f9:2c:a3:9f:68:6b:b8:e5:12:11:f5:07:
f4:72:d9:c6:54:bd:7e:ca:22:58:e7:4a:12:a4:b4:4b:ae:8a:
9a:b4:60:cd:97:aa:82:c1:6c:77:aa:26:8e:82:62:e3:b8:16:
c4:7d:9a:39:3c:07:77:b5:cf:18:35:e9:b0:bf:a8:41:9b:ee:
d9:6b:43:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org