Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AqGMAvxAElytfopITuz2XYfvhPA.roa
File: AqGMAvxAElytfopITuz2XYfvhPA.roa (raw, json)
Hash identifier: SreTr+b9dQbL7NITZoCGX1I2DOn9HOvhnoyrHAUUxCs=
Subject key identifier: 02:A1:8C:02:FC:40:12:5C:AD:7E:8A:48:4E:EC:F6:5D:87:EF:84:F0
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0891
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AqGMAvxAElytfopITuz2XYfvhPA.roa
Signing time: Tue 29 Sep 2020 10:02:38 +0000
ROA not before: Tue 29 Sep 2020 10:02:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 223.26.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2193 (0x891)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=02A18C02FC40125CAD7E8A484EECF65D87EF84F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9c:f4:aa:e3:65:43:43:7c:2a:1d:f2:35:b1:
69:c1:e9:0a:32:24:75:91:84:98:89:6c:de:00:f4:
e9:d5:ea:70:8f:41:18:2f:48:e4:c3:76:6b:90:61:
31:08:bf:5d:6c:04:df:67:89:d0:44:e9:9b:eb:e3:
a3:fd:40:d8:e1:a1:d2:d0:81:6e:d5:ef:4f:df:2d:
68:ca:0d:7c:8b:ff:50:99:3c:86:cf:d2:22:8d:9d:
e7:fd:99:e4:ac:67:46:99:3e:95:8a:b6:43:b0:17:
48:b8:de:f0:8e:85:f6:13:ca:9c:8a:9d:89:d7:86:
de:2f:78:4a:e8:01:fb:55:f2:07:23:bb:af:8f:01:
41:17:a8:f9:30:53:e1:81:87:6a:00:cd:03:38:ce:
ee:cb:fb:c3:e1:3a:4d:48:bc:2a:27:79:1a:35:62:
bb:73:87:a2:f5:b0:92:c4:1a:e7:81:64:2c:29:67:
47:62:5b:19:c0:98:cf:94:30:1f:88:b5:cd:f1:7f:
19:05:87:85:db:7f:9a:1d:6a:ca:bd:c3:e4:77:1d:
a6:82:05:bd:70:80:ad:1e:f2:fb:39:4c:ee:0c:3a:
8b:d8:ad:1a:99:88:b6:4d:8d:96:61:4b:0c:2a:21:
dc:db:15:6b:3e:cb:28:b0:66:44:3a:9c:53:76:2a:
22:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A1:8C:02:FC:40:12:5C:AD:7E:8A:48:4E:EC:F6:5D:87:EF:84:F0
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AqGMAvxAElytfopITuz2XYfvhPA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.70.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:de:ff:06:df:92:b8:8f:ed:01:27:d6:1f:2c:d5:ca:fa:df:
b1:be:3b:91:84:8a:31:12:15:ac:aa:b6:90:e2:b9:66:be:dd:
00:2f:db:f3:4e:b2:0d:77:03:97:4a:33:94:f3:00:e8:65:4d:
96:d0:9e:88:36:eb:c7:6c:f4:77:06:d5:7f:b4:0a:ba:45:0b:
31:84:5b:30:87:09:65:d7:6e:84:e7:b7:29:b9:cd:73:79:dc:
99:3a:e8:30:e7:ae:62:f5:97:75:76:97:ad:06:8c:9e:ee:58:
2b:91:28:7e:f7:4d:4b:2e:ff:18:47:fc:37:44:d2:72:5c:14:
5a:dd:7a:62:60:54:7d:1e:9b:1c:9a:b7:89:28:30:62:63:de:
f4:ba:bb:15:75:b9:f8:0a:1a:12:a9:92:2d:fb:70:92:59:4b:
1d:4d:bc:a7:81:17:d1:d2:91:bb:dd:19:11:2c:0c:a9:d4:30:
3f:25:5a:66:b4:ed:8a:b4:e4:e7:7d:a5:32:b1:b5:6e:54:7c:
dd:c2:a0:e1:01:45:fb:7b:ab:14:e4:f9:f0:29:8b:6f:13:69:
bb:fc:c5:c0:99:b5:cb:ec:c9:bb:2d:9e:d3:09:51:1b:4e:6d:
bd:1e:9f:cf:21:3e:12:dd:b2:fe:90:01:1f:13:68:a1:74:8d:
c8:fe:11:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org