Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9yBHfHJswiazTkXC3K_M2A5QJ4U.roa
File: 9yBHfHJswiazTkXC3K_M2A5QJ4U.roa (raw, json)
Hash identifier: DkN78ItUpOowGwYhIY39tYhBIk35xyf5wkoyPdXhxNo=
Subject key identifier: F7:20:47:7C:72:6C:C2:26:B3:4E:45:C2:DC:AF:CC:D8:0E:50:27:85
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0ABC
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9yBHfHJswiazTkXC3K_M2A5QJ4U.roa
Signing time: Sun 07 Feb 2021 11:52:34 +0000
ROA not before: Sun 07 Feb 2021 11:52:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 150.117.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2748 (0xabc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:52:34 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F720477C726CC226B34E45C2DCAFCCD80E502785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4d:85:63:51:57:ad:91:ca:99:0d:32:2a:5e:
d6:31:9b:a2:3f:3d:9d:87:5c:04:9f:9d:3d:f6:59:
6d:c2:cc:21:e5:a5:3c:48:b5:39:9d:12:7d:a2:1f:
c6:70:5c:7c:2e:b9:de:43:38:74:1a:d9:aa:eb:85:
bd:ae:58:c0:99:fb:13:3e:69:45:3f:eb:a3:c9:5f:
df:47:fd:0c:8c:76:86:c1:e5:b7:4c:e3:ff:7d:ea:
56:f9:e7:18:d1:19:a4:98:83:0b:3b:06:13:29:61:
d5:28:f1:49:56:ff:64:ae:ba:e3:49:4a:51:c2:d4:
11:14:30:3f:bb:d8:dc:33:9c:8d:5f:36:94:d2:1e:
e3:d8:4f:f9:29:1a:e0:54:03:52:69:c7:fa:b0:6e:
73:e7:59:d7:8d:b1:f9:1c:31:7d:70:80:6f:76:c6:
74:85:48:9d:be:80:c4:7e:5d:d2:e9:8f:40:a5:73:
63:f1:b6:79:5b:49:fc:ee:c8:09:0d:15:77:be:5f:
32:34:94:30:95:11:f9:90:0d:a4:b8:c0:5c:2c:d4:
1f:b0:a0:ea:51:8a:45:c7:c3:50:e8:ff:60:34:01:
7e:30:ed:a7:48:05:d2:68:b1:c7:ab:45:5d:7a:a7:
7c:40:8d:67:9b:14:da:07:2b:28:64:a6:ab:71:68:
05:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:20:47:7C:72:6C:C2:26:B3:4E:45:C2:DC:AF:CC:D8:0E:50:27:85
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9yBHfHJswiazTkXC3K_M2A5QJ4U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.160.0/21
Signature Algorithm: sha256WithRSAEncryption
05:0e:d8:56:2b:77:6e:ef:6a:0d:96:82:1d:77:3b:37:18:a3:
f1:f9:55:5b:e9:fa:bd:e8:88:e6:59:a7:5e:59:cc:53:d4:75:
47:26:ce:c4:d1:2f:85:72:3c:24:72:4b:44:5e:89:26:ff:56:
11:ea:13:14:07:46:ed:29:f3:9a:0a:50:f9:f4:07:cf:be:e8:
c3:85:a4:63:85:91:90:c1:2b:1e:f2:0c:a6:8d:ce:57:44:6e:
60:15:e7:24:a7:ce:a4:5e:9e:f9:b6:2f:9d:65:6a:32:86:fd:
ce:a1:8b:32:61:7a:d5:59:1f:5b:0a:be:63:b2:5e:b5:02:75:
83:8b:8a:5f:e8:d6:01:f9:3f:b1:c6:0e:60:65:85:21:a4:d5:
1f:48:53:8f:d5:21:7c:46:ff:7e:db:1d:4b:79:a4:85:dc:9f:
72:6b:8b:81:6a:88:06:1f:5c:cc:9e:8e:d5:3a:27:be:53:6f:
6e:e1:7c:a9:06:b5:e3:63:92:7a:f7:87:bd:4c:d3:a2:a6:11:
61:8e:1d:c2:4d:38:a6:c3:fb:6e:e4:e7:8c:23:0f:b4:a7:eb:
e4:2d:48:fa:65:01:59:2c:fc:d5:cb:bd:a6:e4:5d:fe:21:83:
b3:0e:f0:5f:92:e4:b2:26:ad:cf:e0:4a:8e:b9:c6:11:e2:f7:
13:b5:02:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org