Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/65MtWkk2iz_xKRn8IbiIO311HM4.roa
File: 65MtWkk2iz_xKRn8IbiIO311HM4.roa (raw, json)
Hash identifier: xQ2c5TrGsqGzLF0fcxanUKnDvTF+R/H24LYaMUAok4I=
Subject key identifier: EB:93:2D:5A:49:36:8B:3F:F1:29:19:FC:21:B8:88:3B:7D:75:1C:CE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BEA
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/65MtWkk2iz_xKRn8IbiIO311HM4.roa
Signing time: Wed 29 Sep 2021 02:38:50 +0000
ROA not before: Wed 29 Sep 2021 02:38:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 150.117.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3050 (0xbea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EB932D5A49368B3FF12919FC21B8883B7D751CCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fe:76:02:f3:36:7b:cb:c3:65:32:1f:77:39:
ae:4f:1c:e1:3b:07:71:fe:88:f9:b2:8a:fe:00:ee:
03:3b:39:f1:78:9c:8d:91:c6:fd:77:ee:13:29:8a:
23:63:f0:14:c3:b8:a6:0b:f1:2b:1e:4c:f2:e5:9b:
64:4e:47:c8:94:4f:12:69:5a:5a:ad:f2:c7:41:fb:
a2:e9:95:08:15:58:1d:01:fb:23:11:a5:cc:ce:6f:
ed:f2:96:d7:2d:c5:81:89:1a:77:77:8f:5f:86:32:
f7:10:ca:44:f4:0e:1c:6c:62:2e:7e:1a:ae:1f:98:
05:67:df:d0:f0:33:09:66:80:79:c6:60:1d:19:70:
64:b5:fc:bb:f8:87:4a:78:48:5c:e0:74:83:84:3d:
5f:ed:31:af:55:c8:06:f9:8c:0f:81:03:b5:39:1a:
3e:8a:bf:67:0d:66:36:24:ce:4f:4d:e4:7b:92:e7:
b8:01:6c:55:97:02:1b:eb:2b:5b:98:2b:38:e4:5d:
e7:4f:12:ab:0e:d0:7b:2c:5c:9d:d9:58:3a:da:5c:
66:14:77:ac:39:68:7c:bd:53:d9:77:ea:f1:12:e4:
16:b9:5a:66:c4:bc:09:15:fd:5d:73:09:db:f2:7f:
9b:92:25:17:f9:10:a6:e4:5d:fe:b3:c7:e2:29:75:
07:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:93:2D:5A:49:36:8B:3F:F1:29:19:FC:21:B8:88:3B:7D:75:1C:CE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/65MtWkk2iz_xKRn8IbiIO311HM4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.0.0/20
Signature Algorithm: sha256WithRSAEncryption
a3:6f:11:a9:fe:dc:68:34:e4:a8:07:ac:19:0c:52:fe:4c:a0:
82:ae:31:f6:8e:4b:90:c8:7b:17:44:4b:a0:51:bd:e7:47:b7:
22:6f:32:89:2f:42:3a:48:27:61:2a:29:90:41:a7:83:8f:da:
5f:a6:9e:df:c3:6a:70:90:6f:0a:d5:b7:23:d4:60:84:a5:4b:
48:9c:05:ae:06:99:28:88:03:d0:ec:6f:93:5d:a5:80:65:32:
10:17:8f:50:44:72:8e:5e:24:3d:ff:70:4e:f2:e9:46:b5:56:
11:60:52:20:80:3b:1e:7c:0e:00:d0:a5:8a:bc:45:06:01:d1:
8c:11:ca:5d:2c:ff:eb:f6:00:7a:48:a6:65:87:9c:c3:f1:6e:
1f:45:d4:41:9f:78:75:3a:b6:a0:61:47:1a:40:c0:1b:4b:e5:
ed:6f:82:d4:d9:5e:59:cb:ea:de:59:d3:a5:bf:d0:63:be:79:
ec:fe:68:06:9a:3d:91:b4:95:6e:e3:ca:08:50:ea:17:83:c4:
f3:6d:25:05:e3:78:ad:89:69:55:da:58:58:32:8d:60:0b:d4:
cd:6e:da:f2:15:93:0b:7b:7d:7a:fc:1d:c4:0e:2f:37:53:a8:
42:13:72:e8:b2:4a:9c:d6:58:36:9a:5f:94:cd:9b:4d:d6:28:
55:65:50:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org