Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/7ePjEtoDDjeLte2M2nKQWI6u-QY.roa
File: 7ePjEtoDDjeLte2M2nKQWI6u-QY.roa (raw, json)
Hash identifier: dkWVcjcUQOH+5Y0AizUlqcwmiyyRfUmv05bJd6JC3S0=
Subject key identifier: ED:E3:E3:12:DA:03:0E:37:8B:B5:ED:8C:DA:72:90:58:8E:AE:F9:06
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0887
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/7ePjEtoDDjeLte2M2nKQWI6u-QY.roa
Signing time: Tue 29 Sep 2020 10:02:34 +0000
ROA not before: Tue 29 Sep 2020 10:02:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2183 (0x887)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EDE3E312DA030E378BB5ED8CDA7290588EAEF906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9b:3b:0c:93:ff:8a:e9:ad:ff:fb:fa:72:0f:
1c:20:1e:e9:27:60:7a:fa:ab:10:22:b2:16:17:0f:
65:eb:cb:a4:7f:e6:a7:2e:9f:3e:d4:0b:6a:12:78:
b8:f3:41:3a:92:c8:a6:94:b7:9f:2b:1c:32:e7:09:
e3:f0:88:52:85:82:4e:a5:9f:fb:b0:d4:82:b7:b6:
23:97:9a:76:af:7c:71:78:b2:c9:f0:31:20:ef:79:
3a:fb:94:2b:cd:3b:da:94:bb:aa:43:8b:97:d9:9f:
4a:e6:05:25:e3:4e:4e:f6:d9:95:f4:e2:e7:30:06:
0f:71:09:da:b3:12:d5:92:75:70:42:fd:45:44:e2:
2c:2c:a5:78:cb:d4:47:43:36:68:83:23:94:f9:c4:
78:8f:9f:29:7a:13:0d:1f:e0:c8:81:e8:e7:cc:af:
e7:06:f9:34:ca:84:a9:bb:ae:4a:73:ce:2c:41:85:
ed:bd:c5:5d:fc:44:10:58:34:4a:8b:0d:3a:8c:0e:
59:49:d7:70:87:44:73:4f:2e:47:75:fe:df:46:7c:
a4:39:e7:d8:f3:f2:83:c1:3b:f7:57:01:77:b5:58:
63:97:b3:d4:05:7c:ee:a9:88:99:66:da:8d:e9:ed:
35:0c:77:8f:51:1d:90:b5:83:40:42:3e:dc:b8:b8:
af:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:E3:E3:12:DA:03:0E:37:8B:B5:ED:8C:DA:72:90:58:8E:AE:F9:06
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/7ePjEtoDDjeLte2M2nKQWI6u-QY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.32.0/20
Signature Algorithm: sha256WithRSAEncryption
05:e9:59:af:9d:1e:95:1a:d1:50:f2:5c:6f:44:64:a7:03:b5:
e0:d0:96:af:ab:e8:94:c9:63:aa:80:ad:1c:15:73:1e:e2:cd:
54:f9:8a:27:d6:64:88:13:30:4f:1a:ef:ba:dd:cf:37:ed:31:
c1:46:06:df:82:23:e4:f1:cc:f2:15:48:54:70:bf:c1:b6:f6:
53:ff:15:dd:a8:d9:83:71:f2:df:5e:8b:93:e1:ca:18:1c:62:
60:f1:3e:58:4b:27:d6:6e:ec:87:92:6f:53:cc:f7:ed:34:60:
e2:28:31:ad:43:32:84:9c:7f:78:23:6d:c2:4b:31:29:f8:15:
6d:d6:a6:eb:df:a0:4d:46:bc:3b:88:8c:9b:52:82:26:79:c8:
3c:06:1c:fb:18:28:07:0e:bc:c6:d0:c2:18:b0:1a:aa:dc:d0:
6e:ca:80:b4:52:25:fb:a5:9c:9c:c4:7e:77:0f:2f:46:b9:54:
8c:af:cf:41:56:46:29:db:60:5f:20:49:0c:d0:9d:b8:e3:a0:
1f:54:d6:52:6c:eb:33:ec:5a:ec:fe:a3:0b:f5:b8:e2:5f:24:
f7:59:f5:9d:24:10:e5:a4:b8:bc:4c:de:0e:c1:c6:f6:64:aa:
4c:e2:dd:13:eb:7d:ef:31:88:46:04:1e:83:c4:2a:e4:48:4e:
ad:cd:87:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org