Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8tqkpfC3LrKwgxvhJi_vf9dzrU0.roa
File: 8tqkpfC3LrKwgxvhJi_vf9dzrU0.roa (raw, json)
Hash identifier: Tt5wAaUlhitXjqmyt0zZZ/PTGgYTn1vshtJ2GVENTNw=
Subject key identifier: F2:DA:A4:A5:F0:B7:2E:B2:B0:83:1B:E1:26:2F:EF:7F:D7:73:AD:4D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DF6
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8tqkpfC3LrKwgxvhJi_vf9dzrU0.roa
Signing time: Thu 29 Dec 2022 09:32:04 +0000
ROA not before: Thu 29 Dec 2022 09:32:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 150.116.120.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3574 (0xdf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F2DAA4A5F0B72EB2B0831BE1262FEF7FD773AD4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:56:24:77:04:fa:63:68:51:43:0f:cd:18:e7:
2a:be:94:28:a4:88:92:1d:74:61:7e:50:ac:83:c5:
24:4e:10:6f:ad:d0:ef:37:cd:87:98:6f:85:23:8d:
13:0f:14:11:00:20:d4:02:e3:0a:c9:cb:10:b6:82:
dd:ee:f4:b6:96:c8:1c:65:49:9b:b8:6c:be:d9:6a:
c4:8b:1d:25:f4:2a:c2:48:a6:aa:31:e6:d8:5f:91:
62:f1:b1:d7:ea:15:c5:7b:1d:a2:e2:f5:c2:78:8c:
66:94:16:40:3d:dd:b8:b7:4f:5b:e1:92:c0:25:b3:
a0:83:a0:d0:9a:dc:dc:87:93:21:11:41:3c:62:86:
dc:50:04:71:a5:d3:47:17:1e:3f:79:e2:94:9b:c4:
22:c4:cf:16:9b:83:57:c0:16:76:27:bc:2e:1b:2f:
9a:86:6c:5c:37:19:f0:5d:cf:9c:27:68:0c:c6:84:
33:4e:b5:55:8c:b6:f9:e5:f8:4d:d7:35:38:ae:3c:
4e:cd:5d:0a:3d:24:ba:74:84:76:6b:3e:02:93:84:
bd:0e:6b:06:d1:c0:13:5a:4d:5a:8a:a7:42:69:5b:
0f:5b:c0:a2:07:f9:8f:67:8c:ff:b9:58:7a:06:18:
c7:a8:38:ef:29:a9:e1:2f:df:07:38:c8:c5:ba:8e:
f9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:DA:A4:A5:F0:B7:2E:B2:B0:83:1B:E1:26:2F:EF:7F:D7:73:AD:4D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8tqkpfC3LrKwgxvhJi_vf9dzrU0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.120.0/21
Signature Algorithm: sha256WithRSAEncryption
44:b9:28:83:a9:3b:5f:ff:9a:19:0a:83:19:db:b5:eb:f9:4a:
e3:10:27:ba:c1:11:36:d0:5b:e6:5c:92:c7:c2:88:7f:b4:7c:
77:db:05:79:e7:e2:41:0f:77:23:5d:81:89:4a:04:db:33:77:
ca:2d:8b:92:26:e1:a5:a2:89:74:8a:40:6f:e0:15:89:83:4f:
e2:72:ad:2b:7b:0d:59:2b:7b:44:a2:6b:65:f7:76:34:e6:9d:
a8:3b:5f:fc:38:4b:79:bc:9c:bd:b0:23:6b:fd:79:6e:2b:13:
81:93:8e:d7:f5:ee:84:c2:e8:10:75:36:2f:9c:c5:b4:6c:b1:
3d:58:48:30:49:5f:57:21:ba:2f:99:1c:78:c6:67:ce:23:06:
82:ea:b1:1c:c9:71:28:a7:66:97:c1:a6:e0:06:60:a4:a6:ab:
cf:c3:7d:bc:4c:89:70:0c:35:54:2f:7f:b9:f2:b1:7f:eb:b8:
ca:30:e8:64:de:b5:f6:75:04:03:aa:74:75:00:82:95:a3:c8:
82:c3:ef:66:6c:af:56:e9:9e:1e:b2:03:59:41:cc:d5:0c:8f:
0f:5f:c7:85:83:b6:57:82:58:bf:76:9c:48:25:be:74:89:08:
78:18:d6:a4:cc:6c:5d:78:3f:d0:55:31:bf:39:c0:f8:32:16:
e3:74:17:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org