Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9HGWsHu7b3I1l-dF1jO7raQ0kEw.roa
File: 9HGWsHu7b3I1l-dF1jO7raQ0kEw.roa (raw, json)
Hash identifier: iYuDxx9HCyxrb3vdwbT9WWHqW/ExRnm2QP/g1n8HfR4=
Subject key identifier: F4:71:96:B0:7B:BB:6F:72:35:97:E7:45:D6:33:BB:AD:A4:34:90:4C
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 087E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9HGWsHu7b3I1l-dF1jO7raQ0kEw.roa
Signing time: Tue 29 Sep 2020 10:02:31 +0000
ROA not before: Tue 29 Sep 2020 10:02:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131607
IP address blocks: 203.163.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2174 (0x87e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F47196B07BBB6F723597E745D633BBADA434904C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e3:28:1d:2f:7c:12:2f:5e:a3:45:ce:2f:cb:
09:09:62:50:36:98:2a:8d:7b:ac:f4:cb:8d:64:19:
3a:9d:d5:65:63:d4:16:fc:40:03:0a:2e:23:0e:3b:
ab:78:fa:27:fb:f1:a7:ee:7f:97:fb:e5:f7:20:57:
29:e6:b9:15:9d:69:b1:dd:69:ab:d6:16:b9:0c:23:
69:a0:a7:4c:d4:11:f6:44:15:f8:28:56:6a:35:8a:
44:40:e7:fe:be:31:3e:e0:73:7d:74:41:7a:25:a3:
b2:7b:e5:ce:a8:04:91:1b:38:af:3d:f8:d6:f4:b5:
d2:13:8b:1e:8f:59:a5:40:f6:c3:e8:1c:6e:0c:f5:
f5:d1:72:de:de:d3:17:e4:60:1a:5c:4a:35:39:d6:
ff:88:fe:46:95:2a:2e:31:e7:96:70:6f:fa:ce:d4:
c7:98:b0:fb:81:e9:65:53:43:a2:80:c3:88:60:cb:
7b:9b:8c:10:40:aa:be:48:03:c4:17:86:01:4c:a9:
a5:f0:36:3a:c2:8c:b5:f2:ad:7f:db:a7:ca:91:eb:
a2:5a:db:8a:10:9f:98:92:d3:58:80:e1:02:9b:14:
9a:e5:83:64:cb:91:9d:df:99:01:a7:91:3c:fc:f1:
bb:ed:85:7e:46:6d:cb:78:24:4e:20:95:ca:4f:50:
05:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:71:96:B0:7B:BB:6F:72:35:97:E7:45:D6:33:BB:AD:A4:34:90:4C
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9HGWsHu7b3I1l-dF1jO7raQ0kEw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.193.0/24
Signature Algorithm: sha256WithRSAEncryption
30:61:95:aa:bf:36:38:c5:fa:b0:bd:83:4f:e9:6f:fb:10:27:
0b:02:f0:4d:dc:70:4d:8e:b5:d5:f4:e6:d4:30:30:c7:2c:be:
29:a4:93:55:68:4f:ac:e1:d5:6f:93:bd:a3:1f:67:b3:7a:10:
1d:52:0a:fe:78:09:b3:c8:07:ea:d0:c4:44:8f:ec:c6:df:7d:
11:87:3f:2f:cf:7c:66:61:aa:89:8d:84:1e:74:5d:1f:5d:18:
72:90:15:d4:0c:08:32:1b:58:a6:08:55:d2:e9:dc:a4:cd:7c:
c4:9b:28:0e:b4:30:12:79:fd:20:51:f6:d8:2a:3c:2a:a6:b7:
51:45:bd:cc:eb:7e:d4:50:91:48:ba:05:ae:3c:67:ce:43:03:
a7:2a:2e:f9:50:48:79:64:40:cc:de:cb:53:31:5b:a9:26:1e:
4c:ff:ea:fe:ad:79:f4:1d:9d:a4:07:d7:c3:e4:0d:15:d3:a1:
50:54:e6:dd:6d:d2:89:b8:61:65:a0:1f:a3:fc:f4:d0:28:cc:
69:d9:a7:77:b1:21:90:de:1c:77:e3:11:60:d3:53:74:ce:12:
45:fe:e6:ae:37:ec:a1:65:50:08:14:0e:bc:d9:1f:af:6f:9a:
7c:0d:a4:d7:9d:d7:e6:eb:86:03:7c:6e:47:dd:0e:cd:1a:bd:
d4:c6:e0:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org