Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/78CiOmLT1O-W0J-wYlHOPQAMaL8.roa
File: 78CiOmLT1O-W0J-wYlHOPQAMaL8.roa (raw, json)
Hash identifier: TL4UaNOgQGEYQW61GD32HifFLF1d3blL8i8t7a+B9JA=
Subject key identifier: EF:C0:A2:3A:62:D3:D4:EF:96:D0:9F:B0:62:51:CE:3D:00:0C:68:BF
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 085A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/78CiOmLT1O-W0J-wYlHOPQAMaL8.roa
Signing time: Tue 29 Sep 2020 10:02:21 +0000
ROA not before: Tue 29 Sep 2020 10:02:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 223.26.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2138 (0x85a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EFC0A23A62D3D4EF96D09FB06251CE3D000C68BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a8:f5:82:82:cb:25:09:26:80:ed:9d:52:bd:
24:82:e3:42:61:9c:17:3a:0d:44:4e:c8:52:a0:12:
17:6e:fa:dd:2a:e6:c8:39:af:b4:2c:a3:ec:ec:68:
cf:28:aa:b0:e4:f5:25:1e:bb:ad:a2:4a:0e:cf:57:
a2:99:bc:34:3a:54:61:d8:b2:9d:3f:99:19:f0:6f:
fd:4a:51:3f:fe:5e:3e:70:6e:81:3e:6d:93:76:11:
3a:3f:9c:9a:b2:d7:3f:ca:46:61:6e:2d:10:0d:3f:
02:18:51:e1:7d:6e:9f:6d:e9:e7:f4:87:d5:84:40:
b0:fe:af:ce:9e:81:b9:5a:2f:db:31:d7:a4:b3:22:
e5:06:5d:b5:ae:10:fd:1c:90:27:07:6f:2f:cd:0c:
99:52:f6:e5:c3:e3:44:4d:86:7e:ec:18:0b:c2:31:
eb:fd:ac:84:5e:12:c7:af:ba:95:63:83:8a:3e:53:
a5:f4:ec:9d:71:3f:be:62:ff:af:49:a7:7c:b1:83:
d2:3b:9a:e6:7f:c2:04:99:15:6d:b1:a7:3b:c8:a9:
29:8c:80:29:68:b8:3d:50:d4:a9:63:17:a4:f5:64:
68:96:3a:5b:ed:9a:6f:24:74:2b:11:f3:73:dc:52:
a5:fb:78:6e:52:38:2b:ed:d2:8b:04:eb:49:d8:df:
a2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C0:A2:3A:62:D3:D4:EF:96:D0:9F:B0:62:51:CE:3D:00:0C:68:BF
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/78CiOmLT1O-W0J-wYlHOPQAMaL8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.88.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:24:1f:df:bb:d0:c6:66:08:32:3f:24:07:90:f2:7b:32:64:
db:21:38:c0:40:57:09:5c:19:de:ca:61:ec:bc:39:4f:3c:c2:
ec:13:5b:d2:31:7a:95:3e:3d:69:f3:93:65:11:03:f7:a5:31:
97:16:09:19:74:9c:9a:b6:e7:5b:3f:24:c0:a2:05:4d:6c:e7:
88:3e:0d:d3:4e:7c:91:58:d4:95:a6:fa:7b:c5:7f:47:e6:b6:
74:9e:ca:ae:52:e6:5f:54:66:e1:2d:5d:38:08:f9:d3:0e:65:
b4:e1:1c:f6:d2:1b:ab:f1:e7:c3:46:dd:24:2c:41:e6:0f:9e:
5a:f7:21:be:1f:e9:b9:cf:48:ff:b6:b8:a6:9c:62:65:0e:1a:
51:78:58:ec:a7:8f:74:a0:83:a7:59:cc:78:5b:cb:f8:7e:80:
4b:0b:4c:79:06:4a:1d:aa:c1:5e:3a:5a:f6:d0:0a:7a:fc:8c:
51:05:8b:e0:ce:c8:c1:5a:11:17:8e:c4:ac:c1:cc:24:d2:78:
2c:26:f2:1d:b2:63:0f:5e:67:38:a4:d1:99:de:5c:d2:4d:e9:
a3:95:4c:60:76:a5:29:ff:2c:25:f4:06:fc:e0:5f:76:d4:60:
81:a0:e4:71:70:49:fd:4a:8c:7c:26:93:d2:f8:ce:68:02:60:
f6:c5:c2:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org