Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CAKvVSh__vMCzc2gxPCUrPQfphQ.roa
File: CAKvVSh__vMCzc2gxPCUrPQfphQ.roa (raw, json)
Hash identifier: qtIvwDAvLCkSyFCfpOF5euDWG6rgp0/9cPTpl2hIZr4=
Subject key identifier: 08:02:AF:55:28:7F:FE:F3:02:CD:CD:A0:C4:F0:94:AC:F4:1F:A6:14
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CAKvVSh__vMCzc2gxPCUrPQfphQ.roa
Signing time: Thu 15 Sep 2022 02:39:01 +0000
ROA not before: Thu 15 Sep 2022 02:39:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 132157
IP address blocks: 150.116.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0802AF55287FFEF302CDCDA0C4F094ACF41FA614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ba:ec:d0:3c:02:6e:41:b0:11:2f:88:b8:9c:
d5:96:b5:0b:cb:ff:39:10:c9:fb:94:68:58:0f:23:
74:b5:f7:df:2a:6b:78:60:2d:cb:f7:c1:79:68:7c:
b3:e3:b4:02:b8:6b:01:3f:44:7f:e7:74:36:c9:4a:
cc:e5:b8:d3:29:99:9d:da:bc:c8:90:8f:2a:88:90:
94:d2:02:d7:b4:e9:aa:21:a6:2e:d8:d3:02:ac:16:
6a:34:01:2f:a7:7c:40:ef:9b:14:81:27:0a:27:4b:
06:c7:9d:36:72:7c:9a:4b:38:04:e6:07:88:e0:fb:
d0:a2:4f:ec:4d:57:1e:34:38:52:6e:a7:44:5d:08:
ad:23:ef:63:07:4b:ee:c9:fd:92:7c:c9:ac:d2:02:
f1:42:aa:45:83:c9:a0:93:b0:13:29:f7:58:7e:70:
91:75:64:4c:43:d1:2e:67:27:e8:74:d9:2e:05:b3:
b2:1a:c3:60:dc:fa:af:f8:52:4b:33:2a:0a:ac:2f:
09:88:39:99:87:47:d2:24:5c:dd:49:65:a3:0a:6e:
6c:af:05:00:75:5c:e7:20:b1:5b:8f:a4:ab:15:6f:
5a:83:6d:9b:f7:9b:94:82:95:37:ab:83:09:46:02:
7e:94:0e:ec:2a:e6:7c:dd:f5:58:6e:6b:0f:90:ae:
a9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:02:AF:55:28:7F:FE:F3:02:CD:CD:A0:C4:F0:94:AC:F4:1F:A6:14
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CAKvVSh__vMCzc2gxPCUrPQfphQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.118.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:34:6a:45:57:7f:81:bf:ee:94:cc:f2:13:92:77:0e:36:b7:
63:cf:68:f1:38:4d:93:e0:cb:2d:1b:ad:c0:0a:f8:06:48:44:
91:51:2c:36:0a:08:ba:5f:d3:2d:3e:6b:67:e9:fa:9b:a4:63:
ca:e4:0f:29:14:86:38:b3:5f:e0:ab:65:06:68:46:0b:9d:d4:
e1:3c:67:9d:17:52:ca:6c:4f:91:9b:77:cd:40:8f:c9:cc:50:
a8:7e:2a:d7:65:24:12:46:84:c4:93:51:64:a2:2c:74:e3:28:
33:68:d1:9e:8d:13:0a:1b:5c:8b:61:62:f6:79:06:aa:6c:24:
75:b3:fc:f9:c3:8d:c4:93:f4:09:56:27:c0:db:a7:85:aa:f4:
49:69:bd:97:23:27:31:3b:dc:77:68:16:23:1f:28:ee:b6:0e:
01:4d:57:f2:ff:92:9d:2f:0b:8d:b6:67:64:09:43:a7:51:3e:
e7:d5:77:c2:d1:b4:0a:7b:64:ca:82:cf:5e:45:49:83:9a:4d:
c6:3c:b7:45:98:32:c8:67:85:c4:4e:48:75:10:01:d8:39:c1:
44:95:c0:48:30:04:9c:df:3f:cc:ef:71:dc:f0:ed:a9:c0:10:
ab:4e:e3:96:22:50:26:7d:26:8d:ed:6c:45:8d:1c:b1:d9:b4:
ca:3f:55:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org