Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2rxf6M53uyiQDN8yr5rwbpVVaqw.roa
File: 2rxf6M53uyiQDN8yr5rwbpVVaqw.roa (raw, json)
Hash identifier: lZvgkM56gCSJGGhh7XTNQSnGdts6C+zIZ+nki8DzndQ=
Subject key identifier: DA:BC:5F:E8:CE:77:BB:28:90:0C:DF:32:AF:9A:F0:6E:95:55:6A:AC
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2rxf6M53uyiQDN8yr5rwbpVVaqw.roa
Signing time: Thu 15 Sep 2022 02:39:10 +0000
ROA not before: Thu 15 Sep 2022 02:39:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DABC5FE8CE77BB28900CDF32AF9AF06E95556AAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8e:b5:ca:3a:78:21:b4:75:b1:14:10:c8:c9:
c9:30:14:9d:32:6b:80:a7:2b:03:8f:8d:ee:d9:59:
2e:5a:4f:c5:95:ac:41:c5:1d:61:4e:a7:76:32:84:
d1:5f:69:9a:29:a0:60:9f:9f:a0:63:93:8b:3e:0f:
52:b9:3b:89:dc:06:c5:9b:5a:ec:7d:29:c2:66:56:
95:52:43:97:91:f1:73:bc:d9:2c:90:d1:68:20:5d:
af:1a:52:63:46:32:55:02:52:ce:07:84:ff:56:76:
49:bb:e0:92:c7:28:4b:d7:b6:e6:dd:af:85:a3:ad:
15:72:e1:39:c7:c2:32:b8:fb:c4:0f:dd:70:7f:63:
e1:0a:b8:ba:a0:0a:00:41:b8:5c:8e:74:c7:ff:4b:
97:22:8f:f6:3a:2a:42:8e:c4:3d:50:0d:bd:5a:f6:
ec:c4:9f:9b:36:82:bb:13:3a:84:6a:a2:29:0a:34:
2d:42:00:65:da:a3:bc:b4:33:68:90:e8:62:90:21:
49:f7:09:87:74:ed:88:e3:ee:4b:d8:40:f9:45:21:
7d:69:d0:b3:54:cc:a1:fb:52:85:d4:31:2b:e0:f4:
85:1d:7a:76:9b:cd:76:a1:0a:98:d2:c5:17:07:9b:
94:c9:be:76:3b:35:af:69:4e:7a:c5:8a:fe:d8:f7:
a1:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:BC:5F:E8:CE:77:BB:28:90:0C:DF:32:AF:9A:F0:6E:95:55:6A:AC
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2rxf6M53uyiQDN8yr5rwbpVVaqw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.224.0/21
Signature Algorithm: sha256WithRSAEncryption
54:9a:28:93:7e:17:56:a2:60:da:8f:89:b6:56:c9:b7:51:05:
0b:70:4e:c6:4f:ac:aa:9a:a3:4a:06:ec:cd:7d:ac:ad:cc:33:
ca:15:63:aa:c4:38:74:d4:22:6e:ee:e8:f2:d7:36:c3:8b:b9:
68:25:ce:9c:6c:63:ec:ae:3e:cf:06:4e:33:e5:c0:d1:a1:32:
2f:bb:52:12:5d:4f:86:82:36:25:32:14:96:fc:89:e3:ab:ea:
ed:3b:a2:66:d3:e0:43:fe:0b:f2:b1:e7:03:c0:ac:31:f8:56:
69:61:d9:13:e2:c5:4c:43:81:0d:d3:33:92:c1:0c:62:23:9b:
9b:9c:41:17:ac:64:a9:11:bd:46:25:3f:0b:10:95:f6:2b:32:
d4:dd:a4:e4:b6:94:3e:3d:7e:30:53:eb:a9:fa:07:d3:55:67:
bf:b4:75:f7:ef:25:96:86:8f:26:d5:5f:1c:d4:c7:4e:0e:0a:
b4:e7:7e:e5:63:36:c9:d0:25:01:e5:7f:fd:da:1a:d5:d4:24:
66:41:2f:65:01:b3:40:52:3d:d8:c6:7f:4e:91:a0:dd:2c:90:
78:ec:d9:79:99:cd:81:9f:23:4b:bd:e2:54:a9:6b:15:9d:5b:
81:04:80:63:60:e5:9c:e8:0c:e1:aa:75:15:74:f5:e8:93:c8:
5c:93:c3:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org