Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6xXNvpB5hq43sgQXsXWQqsczaok.roa
File: 6xXNvpB5hq43sgQXsXWQqsczaok.roa (raw, json)
Hash identifier: v3ykUz2tste/EnO3rUrie4S7C5f0QpMRtVtjr/7y4lo=
Subject key identifier: EB:15:CD:BE:90:79:86:AE:37:B2:04:17:B1:75:90:AA:C7:33:6A:89
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0854
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6xXNvpB5hq43sgQXsXWQqsczaok.roa
Signing time: Tue 29 Sep 2020 10:02:20 +0000
ROA not before: Tue 29 Sep 2020 10:02:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.117.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2132 (0x854)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EB15CDBE907986AE37B20417B17590AAC7336A89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a8:99:b0:6e:80:01:e6:01:63:0b:25:9a:a4:
52:a2:d3:82:2b:7a:1c:a0:48:0e:53:1c:fb:5f:d7:
10:84:6f:c2:ca:87:3a:f4:f1:8c:88:98:67:37:5a:
b7:56:58:5d:bb:b2:53:29:30:06:2b:ca:3f:63:34:
37:02:a6:2d:1b:de:af:f9:87:3e:42:06:82:12:71:
c9:4d:00:8a:04:8d:12:17:33:f6:bd:56:ec:b3:29:
87:21:e6:51:43:6b:17:bc:5c:eb:c9:b1:e0:82:1c:
bb:53:63:5d:85:74:9a:e2:eb:eb:98:7e:4d:6a:4a:
8b:fd:7d:b1:2c:d6:f8:b6:0c:70:f7:8e:06:b1:62:
77:cc:0c:57:4a:af:57:6a:12:de:41:13:40:1c:7f:
8f:f3:12:a5:77:49:2b:9b:2b:91:52:bc:f2:e4:a2:
bb:c8:69:f2:79:9a:8f:d7:9d:88:30:8a:95:ef:c2:
7d:cf:b8:a2:78:7e:de:83:52:3f:fa:9f:c7:96:2c:
09:1f:94:40:4f:ac:88:dc:b7:e2:bd:f0:bb:65:d2:
13:4e:4f:e3:c3:3e:1f:ba:93:09:8a:66:48:1c:57:
7e:b1:f3:fe:8c:d0:c0:27:d2:b5:9d:92:a2:5f:06:
88:62:fa:e5:96:48:15:d6:ea:c3:98:72:cd:1a:81:
9f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:15:CD:BE:90:79:86:AE:37:B2:04:17:B1:75:90:AA:C7:33:6A:89
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6xXNvpB5hq43sgQXsXWQqsczaok.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.128.0/19
Signature Algorithm: sha256WithRSAEncryption
1a:97:e8:54:a0:99:38:c4:36:b2:26:ae:03:8e:75:c1:21:6a:
d8:8b:25:b3:3d:ba:05:36:3c:4a:48:17:b5:0d:86:09:53:48:
83:e8:88:6b:24:c0:68:67:8f:d0:51:5b:2a:2d:83:7f:af:40:
c9:61:82:c9:bd:d0:40:d3:58:bd:5c:36:4a:d2:39:48:b1:43:
4b:6d:77:00:f5:79:6a:69:f4:5b:90:7d:9e:1d:13:bf:81:62:
86:60:18:62:f7:9e:1b:45:aa:fd:99:cc:ca:d0:73:5b:67:e3:
0b:85:ec:77:3f:ed:ba:47:4e:bb:51:e7:fc:91:79:b4:e5:c2:
30:2c:50:08:59:37:aa:6a:18:70:0e:0b:0b:6f:d0:d6:51:e8:
8c:6e:5b:dd:7a:19:7f:56:f8:d7:a4:cb:d5:0e:e1:94:3b:6c:
3d:34:1d:64:af:99:44:cf:af:d7:36:f2:5d:61:b3:47:33:e9:
23:ab:02:b1:60:a1:48:94:86:ab:db:b3:7f:df:c6:fb:7b:c0:
02:37:4f:71:13:5b:78:66:68:7a:32:05:22:2c:3d:02:a2:22:
d3:38:db:6c:3e:e3:68:b5:f6:62:f9:8f:0e:34:36:d6:af:09:
72:e1:29:d4:ad:3a:1d:75:4c:86:b6:09:22:24:56:86:57:e3:
14:19:c6:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:34 2025 by rpki-client