Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AYAlFXw23TTKlfqI2yALhaWVCVk.roa
File: AYAlFXw23TTKlfqI2yALhaWVCVk.roa (raw, json)
Hash identifier: 2qGIk9ONS5tc2QA8YyhCkt5kHleK+B8Z7J2WQQ1WTQ8=
Subject key identifier: 01:80:25:15:7C:36:DD:34:CA:95:FA:88:DB:20:0B:85:A5:95:09:59
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E26
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AYAlFXw23TTKlfqI2yALhaWVCVk.roa
Signing time: Thu 29 Dec 2022 09:32:17 +0000
ROA not before: Thu 29 Dec 2022 09:32:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 118.150.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3622 (0xe26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=018025157C36DD34CA95FA88DB200B85A5950959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a7:66:9d:68:37:b7:2b:2f:36:eb:a8:80:ea:
ad:a6:f5:fb:95:20:46:b1:91:67:50:6e:0f:6f:6d:
aa:40:19:70:15:7e:6e:bb:ef:84:e6:7d:51:52:a6:
95:8c:ef:4e:32:91:2a:96:ac:a3:50:c9:54:8b:83:
5f:a2:94:87:d1:77:02:e5:fa:a0:a8:31:27:20:38:
51:67:65:44:78:e1:3f:e0:83:9e:d0:71:92:d2:8b:
d1:64:a3:54:d2:f4:70:6a:1c:44:22:a5:d9:5f:c7:
38:09:d4:f2:7b:c3:73:14:1d:6c:3f:d8:78:58:27:
6e:ba:31:29:47:0c:35:ed:98:6d:c4:01:e3:4e:b3:
61:f8:0f:f4:48:b2:17:a0:22:43:2c:e3:8a:08:04:
80:b1:04:47:1d:ac:de:ee:a5:a1:2f:cb:a3:00:db:
5c:8b:2d:c6:fd:92:54:9e:a1:17:3b:40:9a:9f:39:
3a:79:ec:ca:ee:e0:62:c9:66:ad:1c:14:2e:c7:23:
97:db:dd:35:ef:c1:a7:9a:78:1a:79:05:04:2a:6b:
d3:57:44:c6:17:61:9f:35:9b:45:38:5d:95:18:82:
0c:d0:38:2d:a7:dd:98:a1:72:23:50:21:c5:7b:89:
75:3d:53:2d:56:a2:5d:b0:cd:ca:9e:19:7a:57:9d:
92:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:80:25:15:7C:36:DD:34:CA:95:FA:88:DB:20:0B:85:A5:95:09:59
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AYAlFXw23TTKlfqI2yALhaWVCVk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.232.0/21
Signature Algorithm: sha256WithRSAEncryption
51:08:51:b3:d8:1b:9a:4c:ac:12:3d:ee:39:5c:77:2f:bb:ad:
a7:21:97:68:60:86:12:e6:bd:1b:35:6b:9d:be:09:16:bc:bf:
d3:ac:ef:99:99:6a:e0:6f:31:3f:de:20:aa:21:94:ee:10:9b:
77:10:a4:ef:71:95:a1:c7:5f:6b:21:80:92:ca:ef:bf:94:4a:
06:55:1f:d4:ee:b9:6c:76:63:56:20:fd:54:1a:e0:09:0d:d1:
02:5f:9d:26:5b:e2:4f:81:9d:ad:df:52:d4:df:3f:58:a1:88:
1f:40:6b:01:70:7a:7f:06:57:75:44:14:84:51:c5:62:1d:1f:
4c:46:bf:94:16:14:52:5e:84:5f:39:fa:b9:b7:2a:80:ca:1f:
9f:96:66:11:8d:f2:9c:a2:e1:e1:e6:84:00:88:4d:a7:0c:89:
78:0c:be:34:f5:a4:9a:ed:5b:c2:e0:07:e3:ef:df:97:a5:38:
75:3f:08:db:e7:cb:e3:86:77:8c:83:d4:ec:aa:8a:32:dd:17:
e7:b7:69:dd:0a:98:a0:2e:ff:ef:84:60:0d:fe:c2:70:e9:22:
15:5a:1b:a4:53:57:ed:09:ee:25:7e:22:1d:c9:81:50:7a:83:
50:09:13:19:5a:af:93:e3:51:f5:8e:55:0c:a7:25:68:39:35:
73:d0:da:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org