Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/BL1J1kudQadBzYqajQmeotpWEXQ.roa
File: BL1J1kudQadBzYqajQmeotpWEXQ.roa (raw, json)
Hash identifier: hVfMWaV1vtTub9uiosk1LpQTVtnt8FA5JP24Ui6Zo/c=
Subject key identifier: 04:BD:49:D6:4B:9D:41:A7:41:CD:8A:9A:8D:09:9E:A2:DA:56:11:74
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E18
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/BL1J1kudQadBzYqajQmeotpWEXQ.roa
Signing time: Thu 29 Dec 2022 09:32:14 +0000
ROA not before: Thu 29 Dec 2022 09:32:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3608 (0xe18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=04BD49D64B9D41A741CD8A9A8D099EA2DA561174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:02:d0:1a:5f:17:2e:73:a2:03:3f:4b:31:6c:
d3:dc:0e:e7:31:ce:7b:6e:d6:df:db:1a:8c:93:de:
5b:40:28:9d:98:7a:7b:d2:97:bd:cf:16:9d:c0:e4:
aa:12:01:0f:8f:f2:18:22:e2:2f:7b:0e:fa:fc:11:
6f:9b:fb:3b:26:d0:60:ab:b8:27:c9:33:20:01:13:
17:b1:8c:ae:80:8c:3c:2d:95:b1:8b:ee:1a:6f:a3:
a8:d4:75:20:cd:df:19:ec:ae:3d:30:4a:1a:16:9f:
62:fd:e8:58:de:07:84:80:51:97:77:4b:1c:fd:b1:
78:f4:fc:fd:31:f6:10:bb:50:4c:a2:14:5a:51:7c:
bd:1c:7c:7b:87:33:47:86:34:34:08:04:2c:cf:aa:
96:b0:ce:b5:8f:c3:85:12:c2:a3:f4:1a:9f:39:3e:
3a:a0:42:c9:c2:4b:c9:09:b7:ba:a5:0b:2d:67:7c:
39:b0:f3:4e:f7:57:57:c5:78:81:f5:fc:63:67:0b:
1d:ff:44:82:5c:82:e6:e1:76:3e:72:81:0d:05:3d:
28:af:af:a2:20:87:3c:ec:55:22:bd:32:f9:09:00:
37:09:4f:c0:57:e1:88:ee:ef:1a:c9:85:15:31:83:
23:b5:11:da:9e:db:fc:6f:ec:00:a6:fb:83:4f:10:
db:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:BD:49:D6:4B:9D:41:A7:41:CD:8A:9A:8D:09:9E:A2:DA:56:11:74
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/BL1J1kudQadBzYqajQmeotpWEXQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.192.0/18
Signature Algorithm: sha256WithRSAEncryption
a9:c3:7d:81:55:2c:20:f5:fe:df:1d:09:33:17:f7:36:ec:02:
fa:7e:2f:b2:3f:c6:96:04:f1:18:d9:c1:10:73:90:11:f6:c7:
d9:43:3f:59:a0:74:2d:24:3c:a4:9d:bb:5d:d1:83:99:56:50:
04:21:7e:e5:60:d1:16:7b:34:0a:30:d8:df:88:62:72:39:b7:
76:79:44:da:5a:d8:a3:ba:ff:a3:b1:3d:3d:79:5f:3e:45:7b:
f2:b9:4f:f2:d2:7c:ec:64:ec:74:e1:a6:33:d6:89:63:3d:05:
70:43:31:d9:39:c2:41:a8:34:14:82:81:ad:47:24:16:e2:2d:
3d:c5:d4:71:bc:bf:24:7a:51:34:b6:f7:c4:89:09:0e:5e:e8:
0b:08:b9:ab:c4:73:60:06:d4:bb:bf:9c:16:bb:e0:26:27:4f:
18:c1:5c:56:5f:05:df:2c:02:b8:00:06:6e:10:02:a4:20:9a:
25:c7:16:37:ec:76:32:ef:7c:54:12:8e:77:b9:e5:9e:ed:3f:
01:18:5d:8b:8e:b8:61:82:ba:9c:be:73:7a:84:29:c3:97:33:
a1:9b:36:1a:1f:de:1f:ce:71:3d:e4:a2:b5:46:60:67:58:c7:
ab:9c:6f:b2:7a:4b:a6:a3:72:e3:16:9e:75:96:76:c3:b0:95:
4c:11:00:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org