Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9fOkJfmHn8ie2k1ynZT_LTOqx1k.roa
File: 9fOkJfmHn8ie2k1ynZT_LTOqx1k.roa (raw, json)
Hash identifier: X4rnbggeFaNTNtN4E9+lbJ4lCIAYS2IB3OYC7kTpaBY=
Subject key identifier: F5:F3:A4:25:F9:87:9F:C8:9E:DA:4D:72:9D:94:FF:2D:33:AA:C7:59
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A76
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9fOkJfmHn8ie2k1ynZT_LTOqx1k.roa
Signing time: Sun 07 Feb 2021 11:49:51 +0000
ROA not before: Sun 07 Feb 2021 11:49:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.104.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2678 (0xa76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:49:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F5F3A425F9879FC89EDA4D729D94FF2D33AAC759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6a:5f:e1:98:2a:9a:e1:3e:fa:58:f6:31:c2:
5a:cf:b2:98:0e:13:e3:bf:7f:b9:10:51:e1:2d:3a:
75:94:7e:1d:dc:d6:fc:46:06:a8:95:a3:ba:0c:59:
6a:2c:2d:35:e9:57:90:5b:7b:5d:8b:b0:eb:b5:9b:
db:b3:b7:71:dd:c5:f5:fc:27:08:3c:ed:ee:48:77:
37:58:7a:c0:8f:3d:c7:b4:6b:82:74:f2:46:73:79:
a2:03:f0:f2:d6:bf:a2:67:84:93:a6:e7:8c:f5:3e:
e1:7f:be:96:a4:31:da:b5:7e:3a:4f:e6:49:1d:f5:
27:7f:b7:2a:35:ef:e6:4a:0d:9d:7c:4b:52:c3:7f:
5e:08:b8:22:ad:59:9c:f3:8e:40:41:a0:6e:18:44:
c8:53:26:c6:95:d2:db:51:91:e0:17:7e:58:c7:05:
65:6a:c1:93:82:cf:d6:39:d9:a1:45:7e:12:79:83:
ad:b2:cf:cd:96:d5:6f:c5:ce:5c:46:4d:fb:93:e4:
c6:47:67:ed:bf:10:96:e5:5e:eb:19:c0:ef:7a:7e:
9b:2d:aa:19:a7:e5:99:d9:09:6a:c0:0e:a4:86:c1:
b2:e5:f1:2d:d4:08:9d:7e:bf:9c:9f:1d:8f:2a:bc:
01:d4:ed:2a:85:c8:0b:59:b5:8c:29:ff:27:84:a1:
98:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F3:A4:25:F9:87:9F:C8:9E:DA:4D:72:9D:94:FF:2D:33:AA:C7:59
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9fOkJfmHn8ie2k1ynZT_LTOqx1k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.104.0/21
Signature Algorithm: sha256WithRSAEncryption
18:9d:8b:4a:d9:24:39:70:ce:03:b7:67:b4:3b:21:b9:e0:cc:
a6:77:17:08:e8:8a:50:91:e2:55:3e:87:a5:2b:47:18:f5:fa:
1c:1b:53:34:c7:99:b9:ce:bb:6c:0b:24:ca:2f:ff:d9:a1:c5:
ab:fd:4d:00:f1:a6:75:bf:d5:63:ba:12:24:2a:65:c9:e3:59:
f4:90:7e:a2:17:a4:a3:f3:52:69:23:c1:f1:b7:8c:ff:89:06:
9c:8b:c3:90:3a:81:62:e7:8d:c2:f5:d1:62:d6:b0:04:35:50:
ac:b1:33:a6:4a:c4:91:09:a3:2a:51:cc:ce:fb:57:a0:08:5c:
54:14:83:ba:74:7e:99:1d:ba:3a:f0:fb:4e:6d:d5:39:0c:df:
d3:f1:e7:42:9c:0e:73:f8:4e:d0:88:d2:fc:8a:59:a9:7d:e5:
2b:d3:6e:35:52:24:a3:30:f2:b3:a5:b6:84:db:8f:d2:50:0e:
43:b6:4f:67:05:52:fb:73:af:6d:a8:52:fc:01:4d:2e:bd:ea:
30:c6:a2:54:a1:cd:c4:82:01:84:32:52:fe:8f:4f:e7:ee:97:
c8:31:b1:e2:5e:65:40:51:ba:5f:20:82:ae:17:21:e0:be:b1:
89:40:5c:7f:db:7b:31:19:0a:cb:bd:1f:43:ef:2e:7a:93:f4:
50:14:75:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org