Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4T_hYYCJCLO51nNBFIEOkQluSCc.roa
File: 4T_hYYCJCLO51nNBFIEOkQluSCc.roa (raw, json)
Hash identifier: emumwegkRGtvphwsw82JwWsq7mrw5qS6xYxcDsn78D8=
Subject key identifier: E1:3F:E1:61:80:89:08:B3:B9:D6:73:41:14:81:0E:91:09:6E:48:27
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A78
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4T_hYYCJCLO51nNBFIEOkQluSCc.roa
Signing time: Sun 07 Feb 2021 11:49:52 +0000
ROA not before: Sun 07 Feb 2021 11:49:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2680 (0xa78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:49:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E13FE161808908B3B9D6734114810E91096E4827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:03:77:2c:4d:96:d3:fa:71:60:6f:ed:3b:04:
bc:e7:67:d1:f7:ab:29:95:20:9d:35:f0:0c:d6:6a:
26:ba:b4:7e:5b:57:b7:63:c5:a0:fa:1b:e3:de:e1:
15:77:e7:be:a0:c7:e0:7f:18:ae:5d:e4:f7:d9:d5:
25:f2:dc:5a:75:b0:85:72:01:a1:25:04:f6:fc:3f:
c6:5b:e7:ca:f6:ae:42:1f:09:f6:3c:cd:6a:53:cf:
8e:f8:8a:5f:5d:ff:5f:73:67:76:af:ee:f0:12:cf:
52:5f:94:b1:73:aa:75:93:3f:ac:cd:4c:25:c0:e6:
b8:a0:68:36:e3:87:55:99:4e:49:76:b3:b4:f3:c8:
86:27:32:d9:5d:e3:2f:1c:90:7b:f9:3f:1e:aa:72:
1a:f6:45:e2:ff:44:5d:8e:11:af:c3:b1:78:38:9b:
99:e7:1e:8b:69:26:29:01:c6:c3:48:13:a9:02:1a:
67:62:80:58:ca:4d:d8:89:d0:bd:2c:93:52:fd:b9:
4f:31:40:c4:bb:14:37:51:25:75:b7:62:92:9a:72:
60:69:74:63:1d:33:1d:cf:e8:5c:1c:7a:78:60:8e:
fe:dc:92:06:ce:97:5b:e6:a3:4a:96:18:df:fa:0a:
16:04:75:4a:13:fb:9e:33:5c:1e:7d:d3:67:7f:6d:
4a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:3F:E1:61:80:89:08:B3:B9:D6:73:41:14:81:0E:91:09:6E:48:27
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4T_hYYCJCLO51nNBFIEOkQluSCc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.160.0/21
Signature Algorithm: sha256WithRSAEncryption
a9:34:95:df:2f:80:00:ad:97:81:9b:cd:3f:ee:03:dc:d3:5e:
b7:8d:b8:9b:e4:4a:78:a5:a0:c8:45:e7:a2:b2:46:41:1a:c5:
16:77:0d:de:82:8f:23:1e:57:85:2a:70:ea:16:f5:88:bd:91:
71:c9:2f:78:f3:91:27:b5:0a:c7:7a:47:64:1b:e3:6e:47:ac:
5d:56:4d:ea:9f:f8:7a:a0:2e:10:7b:a8:46:9b:58:d9:2d:e1:
6b:2f:c0:f5:84:06:17:7b:7d:5d:2e:13:8e:3a:0d:c5:cb:8c:
5a:6a:6a:4f:75:bc:90:8a:98:86:c0:94:6b:f6:8a:57:3c:35:
6f:b0:95:a2:e0:29:64:b0:5f:27:8f:d4:71:77:4c:15:19:17:
2a:97:86:9a:f4:a5:8b:80:a9:92:de:36:db:85:b8:2c:f4:04:
06:04:8c:49:3a:06:27:b1:fe:8a:af:4a:b5:cf:fe:8c:2b:30:
88:5a:9c:01:7f:5c:9c:f2:a3:ef:21:35:da:fd:2f:80:68:90:
8d:7c:da:6f:b6:ce:9c:6f:a8:86:ea:49:57:48:ca:8c:81:cf:
3b:ba:07:d0:9b:f9:b0:60:4a:ed:06:7f:96:34:f6:17:58:be:
45:3f:e1:16:5c:1a:2e:2d:ac:3c:3d:cd:af:0b:e7:b6:5b:bb:
60:a4:7d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org