Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ahf6eUlGXurFIWI4yIVDScqKbJc.roa
File: Ahf6eUlGXurFIWI4yIVDScqKbJc.roa (raw, json)
Hash identifier: rKIQ7lXcW/c/itxVlC/Zag1zpUtd3+9LHu41dWI/lIU=
Subject key identifier: 02:17:FA:79:49:46:5E:EA:C5:21:62:38:C8:85:43:49:CA:8A:6C:97
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A94
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ahf6eUlGXurFIWI4yIVDScqKbJc.roa
Signing time: Sun 07 Feb 2021 11:50:32 +0000
ROA not before: Sun 07 Feb 2021 11:50:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131607
IP address blocks: 150.117.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2708 (0xa94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:50:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0217FA7949465EEAC5216238C8854349CA8A6C97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ba:54:f1:16:86:08:11:0f:c9:d6:4d:f1:8b:
07:09:85:7b:f9:f7:68:d5:ad:c5:a2:2b:c8:2e:4a:
64:df:f9:5b:99:36:47:c6:f2:bb:5b:84:2a:c2:58:
f6:2a:ad:48:91:2d:29:2e:26:f6:5e:0a:ed:d5:96:
8c:55:3d:23:fc:70:d0:a5:a4:2e:35:50:d8:ea:74:
15:91:a2:d2:93:1f:73:a5:78:51:5d:ae:05:9f:68:
c7:ac:2a:bb:62:60:93:96:6d:14:3c:d6:d1:94:ab:
b4:1e:e5:0f:eb:94:83:09:f3:d5:59:b6:d7:bb:c1:
3a:ca:ae:15:98:1a:52:b5:e2:71:a4:cb:57:87:48:
0b:2d:ba:81:a2:70:7e:58:b7:1d:74:26:d0:42:75:
ec:d5:d3:10:5f:9d:4b:3a:db:06:3f:54:04:f0:f7:
79:03:c8:9a:7d:4c:63:4d:28:2a:49:e3:2e:4e:59:
bc:c3:4e:9a:40:bb:e0:e1:2f:34:8c:3a:ec:f5:74:
cc:bf:2f:79:5a:49:ec:01:ce:7d:b1:9a:e0:1f:f2:
db:19:e9:ef:ff:2c:e7:f9:b5:46:15:89:7e:36:52:
f2:91:89:77:17:3f:80:6b:b4:e7:4b:53:7d:03:06:
a2:46:65:d6:68:d4:32:3f:36:f2:be:76:8c:f1:fa:
ee:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:17:FA:79:49:46:5E:EA:C5:21:62:38:C8:85:43:49:CA:8A:6C:97
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ahf6eUlGXurFIWI4yIVDScqKbJc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.56.0/21
Signature Algorithm: sha256WithRSAEncryption
4a:a5:57:5c:5b:fb:44:cf:2d:b2:97:ca:18:09:f4:01:03:66:
e9:cc:e7:dd:83:ab:40:2f:df:15:af:7c:1c:21:da:db:43:08:
2a:2c:1f:e2:b6:45:ce:24:b3:ac:fd:ef:be:d6:d0:06:02:67:
a8:d2:2a:37:5a:c5:78:3a:af:e0:2a:82:7c:31:90:02:d6:f1:
7d:b0:a6:e7:8a:91:f4:f0:a5:24:e3:ed:7a:32:e4:3d:03:49:
d0:ba:4f:18:cb:a3:af:27:04:4a:a4:43:66:d9:18:70:4d:85:
bc:f5:8a:aa:5b:2d:44:68:df:93:09:7a:5e:10:30:9d:4e:9a:
7f:24:6a:89:6b:30:66:62:07:58:35:ce:ab:ab:00:01:2f:59:
c8:20:e1:1b:c3:36:6a:02:b0:b7:dd:40:01:68:1b:50:69:06:
a9:2d:87:e1:95:73:c6:f1:6b:37:ce:2f:1b:5e:d2:50:73:c1:
a7:55:c7:ca:14:5f:5e:3e:29:ef:a5:d8:b0:cf:be:7d:37:e2:
2c:9b:7b:a8:4c:23:98:84:ad:28:27:6f:48:47:41:24:48:1c:
bb:3e:e0:f6:19:76:23:9a:0b:11:be:17:52:8f:08:ff:b9:da:
e1:d6:f8:93:15:6b:a2:c8:fd:34:13:48:e1:e6:06:02:b5:b9:
66:9b:ed:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org