Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5yORwc8A8-rQTIEngdGFBItvsOU.roa
File: 5yORwc8A8-rQTIEngdGFBItvsOU.roa (raw, json)
Hash identifier: SIGUbqd9YZFx1jXjIE7nWNFPK74lDfsyh3U9ccXooU4=
Subject key identifier: E7:23:91:C1:CF:00:F3:EA:D0:4C:81:27:81:D1:85:04:8B:6F:B0:E5
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C35
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5yORwc8A8-rQTIEngdGFBItvsOU.roa
Signing time: Wed 29 Sep 2021 02:39:10 +0000
ROA not before: Wed 29 Sep 2021 02:39:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10085
IP address blocks: 203.163.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3125 (0xc35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E72391C1CF00F3EAD04C812781D185048B6FB0E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0c:32:4b:d7:24:7f:15:e9:0b:c2:b2:7d:52:
cf:86:ee:b5:ac:97:9f:cb:7b:0f:13:07:18:6b:dd:
23:2d:53:5a:c2:ca:8d:9a:bb:3c:87:44:2d:4d:f6:
79:c4:37:46:79:1f:9f:64:e8:65:2b:45:48:d2:17:
7a:3e:b2:13:b0:3a:cb:1f:19:e2:80:21:a2:0b:c9:
31:64:a4:dd:3f:35:d3:7a:26:4d:69:fd:49:63:ba:
ea:46:76:d6:96:a0:19:c1:d9:68:c1:e7:9b:3e:67:
5c:07:0d:11:24:3a:2f:42:29:46:12:a6:91:68:e5:
69:22:b7:03:d5:21:09:ef:71:5f:cd:7c:be:ce:52:
e3:fd:73:b0:d3:da:8a:4e:25:c7:65:3e:4d:8e:21:
c2:11:a9:03:b4:86:be:af:ac:59:26:78:a4:ef:36:
c8:7c:9b:68:31:fc:b4:6f:9b:97:bc:09:d6:72:4c:
7c:3a:ef:88:de:ae:00:47:5a:a4:a2:9d:3a:f4:3d:
54:96:35:f9:45:2f:70:f5:c1:6b:13:45:d0:cd:a0:
d9:86:7e:71:be:12:eb:8a:08:84:80:a1:5b:f6:53:
49:5d:8f:fd:f8:03:87:4e:9c:d9:23:7e:0d:2a:e5:
e2:56:f3:05:16:c6:37:34:57:44:8a:3e:fb:32:39:
ed:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:23:91:C1:CF:00:F3:EA:D0:4C:81:27:81:D1:85:04:8B:6F:B0:E5
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5yORwc8A8-rQTIEngdGFBItvsOU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.204.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:fe:42:82:3f:b3:86:e2:ad:96:90:88:d7:cc:27:da:cf:8c:
c6:ea:20:b5:da:46:24:83:8c:87:21:74:51:ee:21:b4:f6:fc:
46:4f:e2:94:bd:8f:33:54:c3:03:da:64:d0:e8:e4:42:09:c9:
d0:3b:a7:dd:55:8b:19:e7:1b:9d:a6:49:85:83:f2:65:fb:51:
ce:a6:22:2a:e7:3e:fe:68:be:ad:55:2c:e1:48:39:ca:7c:0b:
56:7e:83:fa:9f:05:45:f5:ba:dd:30:af:63:08:5b:e6:7f:49:
61:ab:65:e1:4d:81:48:d9:46:f9:4d:81:aa:03:a2:e8:b5:df:
0b:96:1e:6f:4a:05:0f:3c:14:31:b6:15:88:08:ad:5b:9c:58:
c0:03:f4:15:b8:07:9c:75:9d:e1:1c:ef:04:ad:cf:05:dd:a4:
71:35:d5:dc:af:51:e3:07:ed:d3:96:60:a2:ad:9f:73:ab:f7:
08:da:9b:80:4f:77:5b:93:c8:9d:2d:d4:32:84:b4:2a:9c:07:
11:53:15:db:15:d0:bf:ad:e3:38:d0:dc:73:27:72:48:8e:bf:
50:af:70:99:34:50:db:6e:54:5e:12:1e:45:0c:7a:2a:87:ed:
1d:de:e0:c6:27:f4:05:60:da:67:2e:04:88:4e:8e:a4:f5:75:
ba:65:52:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org