Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AqH5TkN6X5lA4HTfElKkz6Cmg9w.roa
File: AqH5TkN6X5lA4HTfElKkz6Cmg9w.roa (raw, json)
Hash identifier: 9C57tkNeLPwr5hNz4un6Rhz8RKT606OCAvw2p/99AYs=
Subject key identifier: 02:A1:F9:4E:43:7A:5F:99:40:E0:74:DF:12:52:A4:CF:A0:A6:83:DC
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BF0
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AqH5TkN6X5lA4HTfElKkz6Cmg9w.roa
Signing time: Wed 29 Sep 2021 02:38:52 +0000
ROA not before: Wed 29 Sep 2021 02:38:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131607
IP address blocks: 150.117.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3056 (0xbf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=02A1F94E437A5F9940E074DF1252A4CFA0A683DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1c:21:50:95:bf:37:fa:43:13:1f:b3:db:a3:
fe:a5:24:a9:d1:ac:5e:5d:c1:3d:57:de:e8:26:ea:
43:d5:61:d9:42:2f:c2:4a:36:d5:e5:7a:af:a3:04:
5a:8f:22:20:7c:50:fc:38:e7:fa:bc:8e:35:12:49:
fc:d0:46:8f:a4:c0:a0:96:46:9c:e1:cb:88:52:96:
d9:43:a6:e8:1f:32:62:26:24:cb:91:fa:e2:b0:b0:
45:4d:ec:20:41:f8:70:e0:43:ac:f8:d5:65:f8:74:
22:9f:60:be:c0:15:b3:46:d2:ae:cd:e7:d5:e2:4d:
fd:7e:92:a0:74:c9:1f:f1:73:ba:91:3c:46:06:20:
b8:67:6a:1d:46:cd:3f:9d:54:e8:b9:82:22:7a:0b:
13:6f:d8:dc:1c:35:4f:5d:89:ef:bd:02:9c:7b:df:
6f:16:b5:33:d0:7b:df:8d:3a:06:06:7e:98:63:64:
e8:80:73:e5:00:b7:c1:ad:98:ad:6a:62:e8:94:cb:
6c:3f:d5:2d:86:7d:5d:9f:28:3d:93:59:80:0d:68:
7f:63:9a:8a:e0:62:ca:e7:be:99:4f:41:32:84:6c:
7e:56:1b:9a:2b:90:04:7f:b9:15:86:ea:50:63:17:
d4:4d:d6:6f:30:27:ad:1f:c8:ed:28:15:ba:45:3c:
a1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A1:F9:4E:43:7A:5F:99:40:E0:74:DF:12:52:A4:CF:A0:A6:83:DC
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AqH5TkN6X5lA4HTfElKkz6Cmg9w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.80.0/20
Signature Algorithm: sha256WithRSAEncryption
6d:44:da:f8:bc:a1:3b:b7:d8:e1:51:0d:6f:50:29:8b:04:cb:
71:77:62:80:d0:2d:6a:b2:5b:7f:8e:a1:ee:b4:12:09:cb:07:
88:8a:db:95:75:a8:e2:9b:73:4d:60:27:89:c6:4f:34:5f:59:
eb:bc:28:6c:77:f1:0c:65:ee:4a:41:f1:ce:92:27:7e:d5:0b:
ed:26:29:60:2a:79:cf:1c:15:0c:47:7a:21:ee:a4:0a:71:f7:
1c:85:f0:03:a4:33:61:dd:1b:6d:4b:71:20:a5:49:f0:1b:46:
26:77:01:40:54:ba:d1:60:0f:10:0a:24:9a:e3:e7:3b:44:30:
68:84:b5:b9:d6:84:a5:72:e4:21:87:5b:b3:dd:aa:3f:55:11:
88:3a:a7:f7:f1:37:cf:be:55:87:17:a8:3e:af:5c:d8:15:78:
21:25:82:5d:1f:08:40:11:42:fa:54:9a:56:ca:2a:83:52:b8:
4b:40:9e:da:e0:ca:28:75:6a:f2:22:10:8d:0e:a3:00:9c:cf:
cc:1c:69:36:0c:36:9b:ab:32:71:b6:5a:8a:54:75:48:58:bb:
37:61:20:d1:30:07:40:09:c5:34:d1:05:95:e5:2b:ee:2a:b8:
99:9c:79:cb:1f:c8:44:0e:d1:c8:69:f1:8a:49:1d:1f:f1:4d:
a3:18:97:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org