Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/53Ivj2hty3ONsCc_e6bzOZX59Iw.roa
File: 53Ivj2hty3ONsCc_e6bzOZX59Iw.roa (raw, json)
Hash identifier: S4h5Ft6ZzdmfgFFq8DEGVcGeLrqESiHDE6Owv1IAR3s=
Subject key identifier: E7:72:2F:8F:68:6D:CB:73:8D:B0:27:3F:7B:A6:F3:39:95:F9:F4:8C
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 085B
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/53Ivj2hty3ONsCc_e6bzOZX59Iw.roa
Signing time: Tue 29 Sep 2020 10:02:21 +0000
ROA not before: Tue 29 Sep 2020 10:02:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 223.26.92.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2139 (0x85b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E7722F8F686DCB738DB0273F7BA6F33995F9F48C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e3:fc:c3:35:c3:5a:5c:09:f8:32:76:95:4f:
7f:9c:5a:bb:e2:9c:83:f2:29:3c:d2:6e:da:50:a6:
85:13:f3:d9:e0:10:1f:13:f9:e1:00:f7:6a:f8:a3:
3d:58:82:f2:21:f9:b9:f4:c5:ca:08:8e:53:db:b1:
7e:d3:40:2d:ab:47:d3:2f:28:d7:f9:37:f2:a6:97:
75:7a:da:ac:df:4d:59:bb:31:08:92:04:98:6a:e4:
cf:ed:29:e1:cf:b3:7b:0e:50:76:78:68:ef:ba:30:
97:3e:dc:49:a6:13:18:a2:1e:fe:b1:b0:c3:c2:53:
30:12:c0:9d:e1:93:ab:3d:a1:54:2f:cf:5a:45:20:
41:c0:3c:c5:04:57:4b:fa:b9:77:71:9d:c1:ed:f0:
6e:a1:ad:3c:36:ef:4a:60:bd:a2:3d:b9:bd:b5:79:
38:7e:39:61:e9:d9:0a:50:2e:fc:a3:dc:1a:0d:d5:
bd:be:fd:32:a9:a7:6c:5a:7d:b2:5e:98:c2:5e:3f:
e0:cc:38:63:1d:a5:8e:21:25:0c:8b:a7:54:c6:f7:
f0:8a:aa:19:5e:fa:08:e8:5b:b1:fd:02:84:fd:87:
11:50:20:b1:4d:7b:1f:79:61:32:60:78:30:99:de:
bd:ea:3b:54:85:9b:64:5a:f0:9d:ac:ef:e6:2a:78:
fc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:72:2F:8F:68:6D:CB:73:8D:B0:27:3F:7B:A6:F3:39:95:F9:F4:8C
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/53Ivj2hty3ONsCc_e6bzOZX59Iw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.92.0/22
Signature Algorithm: sha256WithRSAEncryption
84:b4:fa:14:5e:73:72:e2:00:9a:2a:d5:43:2e:70:c1:e4:17:
74:47:59:ac:13:12:91:51:6d:ce:e2:31:a3:c3:c5:1c:54:f4:
7b:fa:33:60:b4:57:35:e4:af:df:01:75:ee:c3:c4:ea:fa:04:
68:ba:14:98:ff:9f:22:aa:b0:84:16:c8:8a:80:c9:1e:39:66:
a1:42:11:ae:2b:f3:ff:68:c1:06:31:3f:ee:3c:05:f7:4e:3d:
d0:77:06:ea:fb:49:a1:36:fc:81:60:a6:31:a8:fd:c3:b9:a2:
e3:fd:e3:41:a4:91:ce:ea:67:bf:68:b7:58:56:e1:41:8c:7e:
97:72:d1:1c:95:56:fb:d1:63:5b:ac:23:4d:ee:1a:5f:c9:db:
6d:08:a9:a5:9b:60:10:cd:6c:9b:46:5f:4e:79:09:70:0d:f0:
02:33:96:38:4b:37:85:c7:2d:2e:d2:79:81:88:e3:83:a5:ff:
d3:2c:83:9b:53:c3:66:5f:c2:fa:52:9e:60:54:12:6e:2d:a9:
29:b3:83:44:45:af:de:c2:33:12:21:28:c8:8c:61:af:a6:bf:
a3:a0:1c:0c:65:5a:9c:53:2a:d8:bf:3a:d3:3b:c7:55:47:93:
65:cf:17:19:51:e8:6f:f7:8f:41:c6:25:3e:91:9a:85:13:11:
ac:8c:c8:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:58 2023 by rpki-client on console-fra.rpki-client.org