Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8I0YkV2vPAN_S3yra2rHA_1HPEs.roa
File: 8I0YkV2vPAN_S3yra2rHA_1HPEs.roa (raw, json)
Hash identifier: xfiHSQOc5LRm/ky0zk501+1Hn4TJPYyBiKnGLQmJFYY=
Subject key identifier: F0:8D:18:91:5D:AF:3C:03:7F:4B:7C:AB:6B:6A:C7:03:FD:47:3C:4B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A64
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8I0YkV2vPAN_S3yra2rHA_1HPEs.roa
Signing time: Sun 07 Feb 2021 11:49:35 +0000
ROA not before: Sun 07 Feb 2021 11:49:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9922
IP address blocks: 118.150.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2660 (0xa64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:49:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F08D18915DAF3C037F4B7CAB6B6AC703FD473C4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:42:9f:24:65:92:b9:b8:3e:f0:2a:30:03:be:
45:f5:90:86:1b:ac:79:d9:61:6c:b9:d9:bd:45:49:
9b:0f:59:f6:70:a3:fa:a4:8d:38:d3:1b:ae:2d:73:
4d:85:82:01:fe:b0:5e:2b:0f:99:23:c4:a5:ff:5b:
e4:47:3f:25:47:e2:0c:5e:5a:52:87:55:b6:f6:3f:
6b:b8:29:08:01:1a:c3:15:cd:32:b0:4a:4f:ce:39:
30:78:d3:bc:c9:62:39:b1:07:b0:3d:22:4a:62:e6:
fa:0c:18:ba:14:c6:26:1e:4f:66:7f:59:f8:05:4e:
94:17:9c:75:d2:f2:22:ed:a2:55:73:59:14:97:b8:
7d:0e:c8:8e:8b:3d:71:15:66:0a:65:0e:db:20:28:
ce:2a:4f:e9:13:1d:ee:c7:c8:65:e7:43:e8:3b:bc:
3b:96:f5:a0:e3:ee:13:c3:e1:8d:77:f5:3b:31:ac:
07:85:f3:e8:43:48:c7:04:f5:89:de:8e:27:a6:10:
57:ce:3d:29:9b:bd:10:56:6c:5c:d3:f1:1e:a4:e6:
6b:8d:53:be:84:d2:a2:bd:7c:19:94:fb:ee:2e:49:
5e:0f:12:40:4e:44:ea:b6:98:f7:a8:cd:bf:07:d3:
3a:04:d8:55:25:8d:5a:ac:0d:a2:13:c9:48:9d:a1:
c7:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8D:18:91:5D:AF:3C:03:7F:4B:7C:AB:6B:6A:C7:03:FD:47:3C:4B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8I0YkV2vPAN_S3yra2rHA_1HPEs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.224.0/21
Signature Algorithm: sha256WithRSAEncryption
1e:d2:2d:d0:36:6d:06:28:03:9b:98:fe:f1:5d:f6:13:8b:52:
f7:76:b3:42:3d:75:57:21:24:cf:dc:74:29:84:3b:0c:b8:d8:
b0:f2:31:85:35:59:55:27:1c:a4:73:5f:f8:38:46:e5:1a:fa:
4b:c1:24:bf:fe:29:32:65:36:b6:4d:0a:32:b2:a4:94:44:71:
10:14:2d:a6:43:83:c0:b5:e3:b7:8d:b0:24:62:14:57:70:e2:
4e:e9:80:5e:58:49:c0:75:52:28:c2:48:1c:3b:bd:97:24:df:
e6:db:5a:f8:8e:86:6e:fa:f8:d9:3b:bf:b7:7f:1f:09:c0:9c:
2d:7b:f8:03:9c:03:fc:5b:b2:7f:cb:72:5b:04:0c:06:ff:50:
ad:db:25:ac:a3:45:83:24:be:24:18:f9:78:68:cc:13:91:9e:
0e:7f:ed:90:0a:99:0b:3f:22:8a:de:18:8e:da:9b:f3:64:99:
6d:09:94:61:4c:96:30:1b:f1:ef:80:44:ec:c3:c6:ef:04:0d:
2b:19:69:ee:e3:8e:d2:fe:aa:e4:ea:05:03:99:af:a0:82:b6:
1d:d7:ef:96:88:0e:1d:6f:9f:c7:e6:d5:46:d1:dd:75:d7:97:
8a:ba:61:54:65:fd:65:2f:bc:b6:5f:14:ad:09:a7:48:e1:55:
11:c8:13:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org