Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5H4KAOfhSMiTDBornF-bI96UQ2Q.roa
File: 5H4KAOfhSMiTDBornF-bI96UQ2Q.roa (raw, json)
Hash identifier: b5DlDkpohn1OpMnYCKJHX1TRwkO7fHXFAaJ1V2mG0gQ=
Subject key identifier: E4:7E:0A:00:E7:E1:48:C8:93:0C:1A:2B:9C:5F:9B:23:DE:94:43:64
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5H4KAOfhSMiTDBornF-bI96UQ2Q.roa
Signing time: Thu 15 Sep 2022 02:39:15 +0000
ROA not before: Thu 15 Sep 2022 02:39:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 150.116.120.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E47E0A00E7E148C8930C1A2B9C5F9B23DE944364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:51:ad:1a:56:ce:3b:f0:40:24:23:33:b6:bf:
54:db:ef:85:16:1a:f9:d3:b1:52:ed:94:e9:81:fc:
f5:0f:38:af:71:2a:9f:08:24:56:ad:86:26:d7:2e:
b3:a8:7c:7d:ad:03:d8:60:ff:a4:e7:f4:c6:ba:25:
34:b9:51:f1:43:5d:76:83:21:91:79:9f:9e:4f:29:
ab:04:c0:91:5d:68:1c:45:2e:7d:2e:11:4a:17:e5:
97:dd:08:b2:7e:82:b1:e0:d4:2b:40:38:7b:0d:a0:
93:e9:93:36:d9:c0:fd:77:10:6b:38:b6:80:4f:d2:
ce:6d:b9:3f:f9:fd:a7:73:50:4d:53:4e:0f:02:3b:
87:9e:c7:49:60:ae:4f:10:a3:04:a5:ae:6a:52:c9:
77:7d:3a:c0:c3:ff:a2:21:a3:96:f0:81:d8:3d:9d:
c8:81:4d:13:0a:7b:1f:e8:91:ef:31:4b:6f:a1:c0:
52:43:95:63:ed:fd:82:ae:67:ac:3a:5e:b4:cd:77:
6f:49:76:2b:25:87:a4:88:3f:a0:0e:b9:26:1d:a3:
ce:43:aa:c3:61:f2:50:68:a1:c8:2d:35:0d:ed:b7:
ae:9a:5e:b2:b2:f2:ef:c6:e1:ab:31:ae:80:2e:f5:
fc:2d:71:41:21:91:bb:19:7b:19:01:2f:e5:d3:5c:
50:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7E:0A:00:E7:E1:48:C8:93:0C:1A:2B:9C:5F:9B:23:DE:94:43:64
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5H4KAOfhSMiTDBornF-bI96UQ2Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.120.0/21
Signature Algorithm: sha256WithRSAEncryption
09:99:ef:ad:36:0e:a4:f5:5b:f9:37:a7:22:2e:b3:c0:ba:04:
18:c6:85:fd:fb:f9:3b:5c:7f:24:37:44:00:2b:9d:1a:11:f6:
58:99:4b:17:59:48:f9:34:bc:ac:7f:a5:3a:f1:43:7d:46:a2:
53:3e:4b:7a:ff:d0:42:7f:6c:0e:a1:19:67:88:cd:41:e4:04:
d0:40:f6:4e:67:0c:d9:56:d1:6c:3a:a2:18:37:6c:5e:d4:6e:
8d:97:c4:02:e9:a0:eb:90:ad:71:04:aa:74:11:db:fe:7f:3d:
b7:d2:ff:77:c9:bf:5e:63:5f:31:dc:db:c0:21:7c:de:86:3b:
3c:f9:dc:42:19:19:08:34:9e:64:88:a6:e7:73:83:5d:5f:e8:
e7:f9:0e:8a:16:f4:67:ec:45:e7:61:cb:0f:18:1c:43:8c:28:
6f:96:aa:a6:e7:27:5e:18:37:59:7f:e1:7f:0f:1b:2c:67:60:
e9:25:a4:a6:b7:78:f5:eb:ea:29:fd:d8:40:6e:b9:6f:f6:35:
17:ca:a9:0d:99:5b:94:f8:75:29:45:a7:cc:8d:14:70:e5:c0:
8d:3f:44:8c:14:64:29:65:8c:ff:74:90:f7:a5:74:9a:54:7c:
9f:27:3b:72:64:99:b1:21:7e:55:e8:44:dc:be:28:01:45:0c:
a1:9c:9b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org