Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/B0_d1oOxlO5XCpY2Jn9Lh2n-Rcg.roa
File: B0_d1oOxlO5XCpY2Jn9Lh2n-Rcg.roa (raw, json)
Hash identifier: a6TIh/g/OP8zZGRsSMkHetjV+VYRkQn9d/qjcj/X+sk=
Subject key identifier: 07:4F:DD:D6:83:B1:94:EE:57:0A:96:36:26:7F:4B:87:69:FE:45:C8
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 084E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/B0_d1oOxlO5XCpY2Jn9Lh2n-Rcg.roa
Signing time: Tue 29 Sep 2020 10:02:18 +0000
ROA not before: Tue 29 Sep 2020 10:02:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 150.116.168.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2126 (0x84e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=074FDDD683B194EE570A9636267F4B8769FE45C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:70:f9:cc:f8:c1:23:b7:e5:a1:81:7c:0d:7d:
7b:9e:23:e3:6e:40:95:28:61:30:ce:35:78:24:84:
5d:c8:3a:de:07:b8:a8:a3:ff:72:29:88:62:b3:d5:
ae:d1:dd:42:f4:60:b7:c6:12:4f:05:fc:c9:92:14:
f4:3e:dd:20:e5:92:b0:8f:b8:12:33:e7:78:4a:8c:
56:e8:49:29:e2:39:72:e5:42:6e:5d:3e:38:e2:7e:
b9:20:77:ba:db:5b:eb:ba:26:64:d3:3a:6e:0a:41:
a3:92:60:4a:97:de:0e:0f:30:51:41:81:87:71:34:
cc:54:ff:bc:8f:a4:77:81:b6:15:88:95:d9:53:d2:
0c:30:df:75:d6:83:44:47:1d:8e:36:a9:e7:84:f0:
0b:68:be:c4:5b:cd:a2:d2:61:5b:e4:f3:61:e8:65:
76:9f:ef:85:2a:da:a8:1b:db:6a:a9:78:3d:30:2a:
c0:c4:0b:04:99:1c:b3:ff:00:dc:7d:16:4e:35:4d:
9d:3b:3d:c7:72:3f:ba:2e:5c:6e:05:0a:69:9b:db:
99:5a:cb:68:17:a4:3d:a6:6b:2e:c5:b0:42:93:93:
96:48:2a:9f:48:d6:cc:d3:a7:d8:b1:9a:c8:d8:86:
88:1c:3f:69:b1:a0:2b:61:a2:ff:dc:f3:b1:64:ee:
ad:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4F:DD:D6:83:B1:94:EE:57:0A:96:36:26:7F:4B:87:69:FE:45:C8
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/B0_d1oOxlO5XCpY2Jn9Lh2n-Rcg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.168.0/23
Signature Algorithm: sha256WithRSAEncryption
25:a5:57:6a:ff:b1:73:19:7c:64:c4:5c:2c:b9:28:13:f5:d9:
75:14:19:dc:b2:4b:ac:61:42:a7:6e:76:86:30:44:5f:95:e4:
63:c1:f3:37:67:2b:13:0e:4f:cb:1f:c0:80:3d:bd:83:a0:18:
0a:0d:ac:f8:5d:9e:9d:f7:00:60:1a:a9:86:68:68:82:2d:15:
34:7b:26:91:ab:ff:03:13:ed:98:fc:8a:da:55:6f:c4:f5:76:
de:f2:04:72:e1:e6:9f:72:32:1b:22:99:e4:08:a1:75:be:66:
96:ef:60:a1:0c:9e:7b:45:b5:61:06:bf:3a:68:88:a4:7c:9b:
04:56:2e:20:15:63:02:8a:5d:75:32:1d:46:6b:5b:f5:a6:db:
e9:a2:72:a2:a4:29:13:3b:08:f8:0f:ca:37:e8:e0:13:bb:d7:
3a:97:c6:ff:c4:77:f5:f1:17:00:2a:9e:f8:ac:ba:53:fb:ee:
5c:73:89:f0:f9:81:fa:21:28:5c:4e:2c:1f:58:72:1b:b9:10:
b4:bd:fa:53:e9:b6:95:72:c7:7b:2c:15:dc:94:f4:f5:bc:7b:
a0:a0:e5:b7:e2:6c:7e:d5:10:b4:65:32:a3:04:fd:a0:2e:2e:
19:25:cb:e4:f6:46:7a:06:5e:d2:83:1c:df:33:e9:63:30:ee:
0a:50:8c:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org