Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/50OQqF_EsaCqVXrSodMvegZbI74.roa
File: 50OQqF_EsaCqVXrSodMvegZbI74.roa (raw, json)
Hash identifier: L90EbSUwQ2/j6mxYJtWJKbo/GNaqSEqzRSu63qcSCws=
Subject key identifier: E7:43:90:A8:5F:C4:B1:A0:AA:55:7A:D2:A1:D3:2F:7A:06:5B:23:BE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D1D
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/50OQqF_EsaCqVXrSodMvegZbI74.roa
Signing time: Fri 10 Jun 2022 09:11:43 +0000
ROA not before: Fri 10 Jun 2022 09:11:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 132157
IP address blocks: 150.116.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3357 (0xd1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Jun 10 09:11:43 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E74390A85FC4B1A0AA557AD2A1D32F7A065B23BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:64:3b:72:72:d4:85:4c:e5:2e:2d:03:e3:90:
53:22:cf:d4:a9:ce:ab:2e:66:78:48:dd:f2:a5:c3:
be:a1:ff:fe:7f:0a:43:e2:7f:d9:a1:2c:36:8c:08:
24:c5:a0:c9:47:48:4d:bd:a8:41:4e:7b:d7:c3:0c:
be:44:93:71:77:6a:9a:ea:75:7d:ba:86:51:0b:99:
1f:99:80:21:a5:c9:44:36:b2:5f:b7:8a:5e:f6:47:
92:74:f2:e0:70:58:0e:10:57:7c:32:e8:44:e5:60:
ce:63:96:b2:d4:33:c1:44:4a:e8:36:6b:62:25:2f:
6c:ff:72:de:59:56:ab:f2:e4:28:b7:01:34:b5:0a:
3e:16:1c:f3:a8:2e:0e:8b:90:33:b3:b9:39:d3:fe:
0e:1c:bf:b2:11:ca:4e:27:f1:a7:07:3c:4f:f3:61:
87:54:38:00:6a:a4:bc:1e:fd:ea:08:6c:b0:b2:35:
49:b1:57:a8:67:4d:95:4b:0b:77:e6:f7:6b:8f:b3:
d7:5d:76:b5:f3:ca:91:48:2e:9f:9c:69:42:11:e8:
ec:03:92:03:30:42:91:70:6b:1d:68:37:4b:b7:eb:
a8:b9:fd:89:84:55:06:8f:1e:e0:56:ae:cd:64:1a:
3f:36:70:77:a2:3e:75:69:42:59:81:04:74:29:32:
c7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:43:90:A8:5F:C4:B1:A0:AA:55:7A:D2:A1:D3:2F:7A:06:5B:23:BE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/50OQqF_EsaCqVXrSodMvegZbI74.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.118.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:1b:9e:e3:2e:89:dc:52:6e:73:a8:7f:06:4f:83:b7:d6:f2:
80:56:87:1d:b0:9a:63:0b:85:64:d4:00:44:91:d8:7b:69:94:
ee:5b:09:89:4e:9f:c1:83:f1:aa:66:2d:86:91:22:73:68:e9:
f1:6b:fd:63:c0:54:f3:b1:62:91:fd:f5:88:02:2f:04:47:96:
9d:8e:22:db:c6:52:23:3b:c4:be:e2:11:6c:00:a7:00:ac:45:
80:74:75:a4:c5:c1:30:ab:5e:15:ef:f1:26:1d:f2:71:4a:a2:
f9:16:b9:6f:37:a7:f6:a4:f1:77:f4:e9:65:ee:e2:b2:e4:ae:
e7:79:e8:ba:b3:52:6b:48:73:11:17:f1:53:67:fb:f1:ff:da:
92:27:31:a6:bd:39:95:5e:57:16:9c:9f:91:d3:f8:2b:8e:10:
4c:d8:9a:f3:fe:6c:20:65:b9:f8:1c:c7:78:ef:0d:a1:2a:a3:
c2:15:64:37:f3:f7:a2:80:81:46:fc:83:13:d3:d3:e2:42:cb:
ff:b3:38:1b:9d:a4:ee:79:6c:7d:9b:b7:12:d6:8b:55:56:41:
3d:7a:54:8d:39:52:c5:c5:22:62:b8:87:ce:a3:89:a1:3d:b3:
3a:fb:c8:63:7a:ab:fa:b3:c2:14:85:ae:0d:5f:1b:79:ae:77:
06:1a:a5:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org