Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1r37jvc3hTAAVrZTOVPzNhN_TVU.roa
File: 1r37jvc3hTAAVrZTOVPzNhN_TVU.roa (raw, json)
Hash identifier: +F027xD4V6kZfAot7mr7IG9Kcq+qMN4hGg2FtYigcOA=
Subject key identifier: D6:BD:FB:8E:F7:37:85:30:00:56:B6:53:39:53:F3:36:13:7F:4D:55
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1r37jvc3hTAAVrZTOVPzNhN_TVU.roa
Signing time: Thu 15 Sep 2022 02:39:27 +0000
ROA not before: Thu 15 Sep 2022 02:39:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.144.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D6BDFB8EF73785300056B6533953F336137F4D55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9e:38:4a:73:ab:5b:32:f9:83:5d:a3:70:48:
08:32:bb:09:97:83:c0:0c:b9:51:cd:a8:39:fc:e8:
21:ab:38:4a:38:23:3a:24:01:46:67:97:ac:7e:4c:
a2:e2:85:5b:ce:eb:05:ae:15:75:bb:c5:6c:42:3b:
56:cf:1c:28:51:1e:58:0d:d2:01:35:88:1b:94:9e:
30:d5:b8:64:6d:dd:b1:83:62:1b:6c:d1:44:39:ce:
2a:98:2d:c5:91:77:2e:a1:8a:3a:8a:45:61:52:21:
cb:29:41:28:d9:dc:c0:52:d3:82:11:5c:be:5d:37:
6e:b1:64:61:ff:96:84:45:98:df:0f:ed:4a:2e:bd:
b8:9e:35:67:03:60:f1:16:2a:33:87:e2:92:96:b3:
45:7b:7d:d8:af:52:34:99:c6:4f:09:7c:a8:34:ef:
66:61:e5:8f:61:13:b4:74:3c:89:00:0d:ee:d6:a8:
e0:33:21:8e:d1:cc:5d:b4:a9:46:8e:3e:bf:75:c8:
5a:b9:33:ed:01:29:5d:ea:1a:bb:eb:d8:c7:f9:88:
36:d8:2f:0f:b0:82:e2:0d:c1:77:19:23:77:b5:60:
69:68:73:f0:5d:12:d7:fa:17:24:ee:a5:b6:15:24:
ff:f0:f4:6e:cc:20:93:fa:57:ee:a3:9d:91:0a:f0:
b6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:BD:FB:8E:F7:37:85:30:00:56:B6:53:39:53:F3:36:13:7F:4D:55
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1r37jvc3hTAAVrZTOVPzNhN_TVU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.144.0/20
Signature Algorithm: sha256WithRSAEncryption
08:a5:ea:af:7b:4b:71:e1:b1:13:5a:fd:13:94:4b:41:c3:b2:
0f:4b:be:97:ad:8e:64:96:7f:4f:62:b4:16:c8:cb:bd:fb:99:
f8:22:e0:ce:38:14:50:b1:20:56:14:25:c1:98:21:d2:8a:9e:
c2:4f:85:ba:b6:21:7b:bd:b6:da:bd:07:46:47:33:61:82:e7:
3f:f7:81:f7:80:21:a5:f7:c8:dd:b2:9e:5f:f1:a0:7c:d1:8d:
23:2d:51:64:f2:a3:00:dc:9a:c0:5e:f7:dd:e5:8e:16:f1:c6:
74:9d:9a:34:cb:5b:89:5f:19:ce:a2:e9:fa:f6:68:8a:14:a7:
37:bb:78:88:73:37:98:fd:89:3c:11:10:ba:b6:73:f1:3c:f9:
d2:82:5f:a6:81:e8:fb:86:9e:08:b9:91:11:91:c1:fa:cb:d0:
5a:86:55:35:84:8f:08:ca:ab:a1:40:28:9d:6a:31:9e:5e:17:
74:8e:e6:6b:50:d8:f9:7d:ab:76:5c:4f:51:6f:76:16:2b:5b:
1a:51:77:b5:99:79:c9:a5:07:c6:b6:ca:4c:a9:93:a1:71:e9:
c1:08:f3:b7:56:43:ed:3a:a7:60:05:cd:c0:ed:5b:d4:0a:5f:
5a:d2:c5:24:db:4e:bb:f1:02:f1:fd:54:43:3f:35:8f:aa:b3:
08:0b:91:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org