Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/61DKAlRuYHsUe3b2FhL54TT0GoU.roa
File: 61DKAlRuYHsUe3b2FhL54TT0GoU.roa (raw, json)
Hash identifier: tPpqRGZokOCpsYKDE0zCZ/MCXm6xGHTVISGRSp0hr+Q=
Subject key identifier: EB:50:CA:02:54:6E:60:7B:14:7B:76:F6:16:12:F9:E1:34:F4:1A:85
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AD6
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/61DKAlRuYHsUe3b2FhL54TT0GoU.roa
Signing time: Sun 07 Feb 2021 12:42:59 +0000
ROA not before: Sun 07 Feb 2021 12:42:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 223.26.68.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2774 (0xad6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:42:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EB50CA02546E607B147B76F61612F9E134F41A85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:26:18:b4:ba:fb:5c:e6:2d:99:08:d6:01:01:
2b:b6:a3:cf:39:ff:b5:a9:3c:dc:86:ab:1d:d0:41:
e4:48:e2:71:d5:f3:cc:bf:f9:1f:ce:4c:aa:5c:7d:
57:67:81:fb:4c:7b:9d:21:95:cd:28:7a:82:08:13:
f8:e8:d6:d7:1d:e4:88:e2:2d:0c:e8:95:1a:a5:c1:
a7:0b:27:94:bc:89:cd:8e:fc:8b:46:cb:a8:8b:d5:
a8:08:36:3e:3b:3a:0f:5d:0c:df:8f:7c:01:30:13:
58:14:04:b4:82:0c:ce:18:d7:1e:f3:3e:fe:22:46:
7e:61:77:ff:67:34:63:59:a4:75:9f:e9:83:16:38:
3d:04:cc:c8:d7:c6:f2:6a:fb:b3:65:ee:9a:9b:ac:
92:9d:01:36:a4:d0:c9:70:55:c6:73:f0:c5:3a:8a:
87:8e:e0:ea:45:be:56:1a:07:37:3c:e7:4d:4d:08:
47:49:2a:4c:db:7c:a1:ca:66:fa:c5:18:30:d7:d5:
01:7b:28:87:c7:35:3c:48:dc:2c:55:73:d0:60:a5:
e8:06:6c:a8:5c:94:48:5b:bb:18:18:89:62:a4:da:
47:26:df:aa:4e:b7:6b:14:d4:5c:cf:3c:b5:5f:83:
68:5e:24:58:bd:52:1c:dd:c4:66:bf:3f:3b:54:a8:
a5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:50:CA:02:54:6E:60:7B:14:7B:76:F6:16:12:F9:E1:34:F4:1A:85
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/61DKAlRuYHsUe3b2FhL54TT0GoU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.68.0/23
Signature Algorithm: sha256WithRSAEncryption
47:68:4c:5a:27:db:c3:75:3e:7a:c3:80:a1:53:95:87:44:b1:
41:be:49:c8:f9:43:e1:ca:b2:4a:f4:3f:8f:1b:9a:07:f8:e8:
47:8c:58:89:4f:f0:e3:30:7d:fd:4f:98:cd:53:ba:79:6b:c4:
e6:36:0b:19:09:51:50:c7:6b:41:ac:dc:0f:f7:44:a7:17:60:
01:64:f7:c0:a6:01:36:0c:d0:fa:67:7c:b0:44:92:e7:66:a8:
92:6f:1c:91:70:52:db:99:fb:c6:f0:f3:df:c5:9e:25:73:d2:
5a:16:df:be:b1:81:c2:6a:be:74:98:74:32:d2:a0:26:5c:8e:
f2:30:10:54:69:dd:76:60:04:e6:76:6c:5d:87:81:39:f3:9d:
37:fe:75:2f:b2:48:1b:31:29:03:a3:58:c5:67:f9:ad:94:cb:
10:71:e7:9c:8f:3c:a8:31:2c:f2:62:10:4d:4b:a5:d6:7d:8c:
f5:3c:22:7c:fe:14:af:a1:da:b2:12:a2:0b:59:af:09:66:25:
98:8f:f8:35:3f:d9:db:17:d2:f9:53:b5:e8:a5:d6:51:a6:4e:
ae:a8:68:44:89:0d:c0:86:7d:76:e5:c2:8f:49:a1:71:d8:f4:
f6:bc:d7:58:29:54:4f:21:1d:ee:78:a3:48:1e:c8:c3:87:3b:
74:3b:55:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org