Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6JPyWyKqB6f2tPuD2cZKFQxLQKE.roa
File: 6JPyWyKqB6f2tPuD2cZKFQxLQKE.roa (raw, json)
Hash identifier: /2IiXoKB4Ucw+aGL2xlGAi4jgiuklUiWYLJF65te7Cc=
Subject key identifier: E8:93:F2:5B:22:AA:07:A7:F6:B4:FB:83:D9:C6:4A:15:0C:4B:40:A1
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0EBE
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6JPyWyKqB6f2tPuD2cZKFQxLQKE.roa
Signing time: Thu 20 Jul 2023 03:16:00 +0000
ROA not before: Thu 20 Jul 2023 03:16:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 138915
IP address blocks: 150.116.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3774 (0xebe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Jul 20 03:16:00 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E893F25B22AA07A7F6B4FB83D9C64A150C4B40A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8e:d1:29:f6:f7:81:eb:46:36:2c:d3:9b:c4:
f4:8b:e5:6a:5e:99:79:6e:3c:2b:ff:cb:7f:4b:1c:
95:ad:b6:7f:47:b5:56:db:9e:e8:8f:b3:70:8b:ad:
d8:9f:a6:62:31:8f:b1:6b:02:32:bb:28:50:c7:21:
57:c9:52:73:1f:6e:3c:3e:ce:14:ff:81:42:f9:55:
ba:63:28:4e:e8:5b:a4:b3:56:c8:89:73:a5:80:9e:
c8:8b:5c:d8:2e:cb:01:ce:f9:44:9b:90:37:58:f7:
b8:4e:f7:ae:ce:50:c4:45:53:c2:c8:85:09:41:91:
1d:df:77:2c:ac:74:1c:f9:77:29:e2:23:3b:20:4d:
9b:6e:05:8a:32:0c:47:19:cb:1c:16:f3:b9:a5:33:
77:83:5c:b9:46:c0:17:aa:d1:cf:08:fa:98:75:3c:
0d:45:2a:b2:5f:e2:04:9f:06:41:f2:f1:24:67:7f:
12:12:05:45:61:48:80:9a:b7:ba:b3:21:55:0b:99:
0c:71:58:4a:2f:07:99:52:99:56:c4:6c:93:1f:7d:
1a:e0:1d:44:90:6c:6c:86:e0:14:8f:3f:65:57:c6:
02:03:9d:8a:3d:1f:0c:df:c3:8f:39:18:13:50:62:
f5:53:bb:f7:8a:9d:87:9d:e9:3b:ab:32:60:92:13:
89:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:93:F2:5B:22:AA:07:A7:F6:B4:FB:83:D9:C6:4A:15:0C:4B:40:A1
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6JPyWyKqB6f2tPuD2cZKFQxLQKE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.0.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:87:f5:d3:ef:5c:30:25:61:f4:89:ee:7e:80:58:90:24:e2:
ea:5e:1b:19:40:83:4e:ac:db:ac:16:24:5b:2d:bb:61:14:16:
51:7e:8c:b1:98:69:4b:57:2e:f3:db:d7:9e:d1:c3:82:45:d6:
59:2d:f8:42:24:37:b1:bb:4c:e6:6d:3a:cd:e9:d2:63:eb:ce:
a3:1a:0f:d6:f2:67:5d:bd:c3:39:d9:f8:b1:55:34:e3:7a:96:
06:78:bb:52:91:21:4f:d1:eb:53:79:2c:f7:84:6b:51:5c:42:
03:9c:f6:bc:69:f9:37:29:2d:74:d5:cd:70:49:08:54:3f:2e:
5f:4e:67:d0:9d:f6:8a:94:5d:f9:ca:92:49:26:59:82:38:6a:
95:0b:5b:25:85:3f:ec:b1:2f:5b:01:39:b4:30:37:04:40:83:
52:e8:9e:ce:22:44:17:e1:94:5c:e0:8e:63:37:16:fa:8e:2e:
3c:d4:27:2a:a1:2d:f7:7f:2c:b4:ef:1b:cd:c7:1f:54:e3:77:
e9:db:e6:d3:39:c6:b7:c9:91:7c:8f:4b:ec:fa:91:2d:91:bf:
11:54:b1:84:ad:fb:70:59:1f:30:32:5f:d0:c8:4e:e4:1a:ba:
2f:09:93:c2:92:9d:7c:6c:7e:f5:ae:17:53:33:b1:27:7d:d0:
5e:f1:4b:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org