Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5C3R62MWIK56rxzHqS5Ta0_vqJw.roa
File: 5C3R62MWIK56rxzHqS5Ta0_vqJw.roa (raw, json)
Hash identifier: RL4uhLxNV6PsbXZA4LFG1HfmvsKIzbrRDhSCuFBlIsw=
Subject key identifier: E4:2D:D1:EB:63:16:20:AE:7A:AF:1C:C7:A9:2E:53:6B:4F:EF:A8:9C
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C13
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5C3R62MWIK56rxzHqS5Ta0_vqJw.roa
Signing time: Wed 29 Sep 2021 02:39:01 +0000
ROA not before: Wed 29 Sep 2021 02:39:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 203.163.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3091 (0xc13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E42DD1EB631620AE7AAF1CC7A92E536B4FEFA89C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bd:b8:a7:06:6c:35:cc:58:de:98:8c:86:a5:
20:2c:23:fb:16:96:a3:31:f0:42:1c:a6:89:6e:83:
cd:44:7a:fd:51:08:98:1b:e8:3e:ed:2b:17:3c:89:
45:0d:d4:6d:e4:3e:9f:d9:40:d8:6a:77:08:92:16:
45:f1:3f:c3:6a:ff:0b:b5:6b:ef:3f:ca:89:de:10:
67:ae:b1:ba:8b:23:08:32:7c:6d:68:b1:99:ec:ac:
1e:2c:12:55:e6:fc:24:6f:97:ae:2e:95:41:62:f7:
13:9a:69:01:51:94:76:d1:01:27:b2:16:2a:ba:7e:
72:54:5d:3b:ad:d8:ec:6f:fe:ad:a3:4f:f7:58:74:
c2:a0:49:4c:bb:0f:da:1c:cb:9f:ae:43:31:6d:2e:
c3:87:fa:b5:7a:1e:bd:ec:f9:5d:d2:f0:ca:1a:83:
83:19:a9:51:61:ac:cf:8d:8f:3e:cb:1a:12:b0:3c:
f8:67:39:3a:70:7d:e2:a5:4c:13:56:4c:eb:9a:db:
3a:37:40:f6:21:a4:40:93:c0:aa:8c:8b:34:f1:fa:
f1:f0:9b:ee:83:c0:5c:69:15:41:ee:29:72:08:82:
ed:46:a5:81:4e:5b:72:e3:c4:f7:50:7c:f4:89:a2:
6e:b9:2b:a2:98:0d:b4:c3:08:08:1d:69:4a:e5:23:
ef:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:2D:D1:EB:63:16:20:AE:7A:AF:1C:C7:A9:2E:53:6B:4F:EF:A8:9C
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5C3R62MWIK56rxzHqS5Ta0_vqJw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.220.0/23
Signature Algorithm: sha256WithRSAEncryption
39:8d:be:fd:e8:7a:4b:9c:2a:7a:ab:b3:0b:0f:3b:a3:81:27:
dd:02:30:7f:43:25:ba:56:44:cc:f0:51:62:ba:fc:fb:6a:82:
4d:5c:70:cf:4c:7b:81:1a:9f:86:9d:42:a4:4e:bf:17:a6:82:
3f:65:ad:00:f7:d6:d6:5e:d7:f8:88:80:86:3d:22:c9:0a:53:
38:9b:e6:c2:76:6f:05:d8:1a:8a:92:57:80:ab:55:cf:01:a4:
be:1e:8d:82:7b:ed:bc:7b:b4:fb:c0:36:31:d8:a7:f9:ae:d8:
e5:7b:92:b2:39:b5:ad:1f:b7:44:de:5e:94:e4:27:7a:7e:a3:
0e:1c:39:1d:08:8d:1a:f7:dd:9a:e6:2c:f3:28:ff:54:2c:d1:
4b:6e:41:1a:31:57:d8:cf:38:5e:37:07:65:51:bb:7f:5c:28:
88:75:8d:f3:8e:26:7e:65:d3:7d:61:d4:e6:ad:3b:c5:75:bf:
f1:68:54:19:61:08:31:9e:4c:02:43:d4:55:33:ad:e5:93:89:
9c:fa:19:87:87:bb:7e:b3:7d:6d:b2:90:42:28:e1:4f:17:dd:
ab:28:9a:fb:0d:56:e1:c0:e4:31:c8:fc:c8:56:e4:de:01:68:
e2:41:83:a0:a7:a2:20:8b:7d:9b:13:1b:ca:bc:1c:23:d8:39:
ba:a7:05:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org