Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6tQNlFFnxS2_vh5kYr7ENzBKUwM.roa
File: 6tQNlFFnxS2_vh5kYr7ENzBKUwM.roa (raw, json)
Hash identifier: I2zBrLZIrPyWrcMMyFU3p9VJ3BfmF8DFM38nfAFpUwI=
Subject key identifier: EA:D4:0D:94:51:67:C5:2D:BF:BE:1E:64:62:BE:C4:37:30:4A:53:03
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BF5
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6tQNlFFnxS2_vh5kYr7ENzBKUwM.roa
Signing time: Wed 29 Sep 2021 02:38:53 +0000
ROA not before: Wed 29 Sep 2021 02:38:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131607
IP address blocks: 150.117.168.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3061 (0xbf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EAD40D945167C52DBFBE1E6462BEC437304A5303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:e4:fa:a1:bc:f6:ca:3e:28:68:83:5b:f3:b3:
fe:19:e6:9e:70:8f:73:06:53:50:47:15:e6:ab:bc:
89:01:4d:91:1c:f1:ef:b9:62:b8:2a:e3:98:49:5d:
d9:c3:df:63:69:79:3a:b2:ca:a1:ac:f0:74:e4:7e:
f4:0b:4b:37:d5:f9:fd:ac:3e:82:5b:78:90:7d:53:
70:e4:52:80:95:dd:54:8f:8d:35:6c:61:29:06:84:
0e:98:b7:84:4d:53:09:95:6c:93:c4:05:78:be:68:
c4:c5:99:7f:47:7e:8d:cf:6c:31:97:c2:5f:4e:56:
6a:25:d2:1b:e3:40:3c:49:4f:e1:3b:22:56:a8:5f:
0c:ca:64:b9:81:cd:9c:f5:3d:df:fa:1d:d3:80:8a:
38:01:8d:6c:09:d5:10:ad:89:37:77:b5:46:3d:14:
6f:c2:cb:ff:72:08:8c:62:21:09:33:89:4d:0d:ad:
a0:a1:fb:93:77:ea:93:c1:23:25:11:f4:02:95:c5:
ad:b1:cd:85:7c:57:6a:44:75:8f:81:7b:f5:65:7d:
b5:3b:36:7e:23:d7:66:61:b7:aa:c5:2d:d7:78:82:
47:5e:5d:7a:2b:6d:88:f3:b5:9a:a1:b7:c0:45:d9:
1a:d3:e3:9f:a0:8a:8b:b1:6b:7d:c9:a3:9c:c3:47:
c9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D4:0D:94:51:67:C5:2D:BF:BE:1E:64:62:BE:C4:37:30:4A:53:03
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6tQNlFFnxS2_vh5kYr7ENzBKUwM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.168.0/21
Signature Algorithm: sha256WithRSAEncryption
a6:5a:a0:54:4b:e7:72:f9:7e:63:be:3b:45:b3:7e:78:2a:92:
6d:18:8b:8b:a8:97:7e:00:ff:2d:d2:02:68:ef:9d:f4:ae:b5:
bb:78:0a:ed:30:e8:07:e8:46:c4:4c:1f:e8:44:3c:83:88:2c:
35:a3:4c:4e:b5:eb:c7:43:19:cd:00:23:15:8a:82:09:49:53:
a2:c4:12:e5:5c:0e:8c:ea:79:74:43:ef:3b:5e:39:61:6c:ad:
df:6c:2d:31:39:f2:25:6b:3c:bb:7c:e2:9d:71:b7:be:ba:bc:
92:91:87:ef:b8:cb:9b:ad:a2:f8:be:23:e0:06:2c:ce:97:56:
94:c6:6a:9d:12:4f:af:52:6c:59:bc:2a:99:1e:de:7d:84:83:
ea:f2:3b:c2:b5:b2:34:0f:42:99:b7:0c:83:53:2f:86:93:65:
f8:1e:39:a9:60:03:08:f8:c3:12:db:4c:25:8a:53:4c:5b:86:
36:75:3c:c5:63:3f:a8:3e:51:cd:a3:6a:5c:ee:07:b7:72:c1:
a7:31:eb:29:23:d8:80:b8:ad:7c:40:be:88:2b:b5:07:23:9c:
f8:31:05:30:e4:b4:b7:a9:d8:87:df:e0:bf:ac:5e:68:1a:be:
c5:0c:e8:c6:2b:27:df:05:c6:0e:1b:ad:01:6b:ff:b0:3c:03:
f9:a4:59:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org