Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8zqbEqogIXTFNDj6dlUspYk_zhk.roa
File: 8zqbEqogIXTFNDj6dlUspYk_zhk.roa (raw, json)
Hash identifier: txAg5pXsJHdOai1eNRdYemYVbN7wsTmH+tBZtgg4i+M=
Subject key identifier: F3:3A:9B:12:AA:20:21:74:C5:34:38:FA:76:55:2C:A5:89:3F:CE:19
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 09C0
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8zqbEqogIXTFNDj6dlUspYk_zhk.roa
Signing time: Wed 09 Dec 2020 02:27:47 +0000
ROA not before: Wed 09 Dec 2020 02:27:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131273
IP address blocks: 150.116.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2496 (0x9c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 9 02:27:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F33A9B12AA202174C53438FA76552CA5893FCE19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:05:e3:12:f5:c2:84:67:fa:65:93:d7:67:2f:
62:96:79:93:be:bf:03:13:01:42:93:52:36:2b:2b:
6a:0b:34:0e:dc:ee:a2:7c:58:db:d1:3d:b0:de:fe:
8c:45:89:e6:19:77:89:d3:fb:3f:30:2d:9a:29:0b:
d0:e8:92:ec:64:81:02:c4:33:61:f5:57:b4:9b:2a:
93:31:04:f6:a5:5d:40:93:f1:0f:ae:c5:64:54:25:
32:9f:1b:04:27:16:8e:cf:65:17:ca:40:45:3a:06:
58:e3:f6:1d:2b:2f:1d:16:65:37:41:b1:bd:0c:01:
ce:6b:bc:f6:58:aa:df:21:f0:a7:82:a0:31:98:53:
d4:1b:3b:2c:bd:e2:38:6c:f7:4d:28:64:f5:de:59:
b0:79:b3:80:7f:c7:13:c4:80:a2:b2:87:37:c0:77:
9c:60:3e:bb:9e:85:09:ec:29:04:60:19:3d:8d:98:
d2:3b:c1:86:b9:fe:91:0f:03:80:7e:e4:e0:62:64:
86:a4:2f:86:ca:2d:36:1f:fa:f4:75:2b:4c:a0:e5:
a2:b8:56:99:21:fa:57:5c:85:ad:27:40:b4:38:1d:
4e:be:15:96:da:6c:68:1f:05:a1:67:89:80:6c:7f:
ea:86:67:69:64:4d:d5:18:25:9f:ff:34:c3:49:cd:
b2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:3A:9B:12:AA:20:21:74:C5:34:38:FA:76:55:2C:A5:89:3F:CE:19
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8zqbEqogIXTFNDj6dlUspYk_zhk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.80.0/24
Signature Algorithm: sha256WithRSAEncryption
64:ec:98:8b:72:d9:57:3b:d5:5f:02:39:0d:3d:5f:aa:9f:56:
03:c9:5f:e2:1e:7c:6e:cc:c4:77:c2:79:0e:93:f6:2f:4a:6a:
4f:39:30:4f:19:26:6c:6d:99:57:3b:0f:f7:d2:a6:21:16:56:
f7:ff:d6:0b:2d:e1:28:2d:54:8f:07:1e:9a:98:e8:55:e4:cd:
f1:2d:ef:47:f1:aa:6a:61:51:93:fc:05:ec:16:ce:af:3d:0d:
54:66:93:24:0a:d1:c9:88:ad:eb:a8:1d:9c:c7:da:21:98:70:
38:49:03:31:6a:ec:35:e7:b6:4e:fd:67:07:fd:ca:12:9e:c0:
12:fd:c4:15:ee:95:c7:ac:de:49:fa:4b:3c:4e:0a:a9:e3:0d:
b7:4c:60:bb:07:37:ad:69:05:2f:c6:02:95:9d:8b:1a:61:2c:
fa:24:d1:07:b0:db:b1:3c:6e:32:2e:fd:97:5d:91:b8:a8:91:
82:6f:5c:65:df:62:64:09:1f:04:68:ce:86:76:ee:87:01:3b:
4c:e5:d3:5c:02:94:69:fc:2e:a7:f9:54:6f:95:73:50:f8:1a:
06:d6:b8:56:a5:cf:05:4b:be:b0:2d:76:74:5b:1e:ac:4b:ec:
84:88:fa:ef:df:e4:f6:d5:23:cb:67:6a:67:47:cf:61:e2:0b:
46:df:e7:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org