Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CYxdf-QA1jt0tsCYlwEFrq5oEwk.roa
File: CYxdf-QA1jt0tsCYlwEFrq5oEwk.roa (raw, json)
Hash identifier: jWLvYpdf6mI0eOJwe5gSWhUlMeV1uIOAC/xh9kMJvzs=
Subject key identifier: 09:8C:5D:7F:E4:00:D6:3B:74:B6:C0:98:97:01:05:AE:AE:68:13:09
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AEC
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CYxdf-QA1jt0tsCYlwEFrq5oEwk.roa
Signing time: Sun 07 Feb 2021 12:58:46 +0000
ROA not before: Sun 07 Feb 2021 12:58:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 118.150.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2796 (0xaec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:58:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=098C5D7FE400D63B74B6C098970105AEAE681309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f1:be:a2:7b:f9:17:54:8e:d1:8a:8f:d2:21:
d9:cf:6e:a2:74:f9:51:7e:2b:1b:4a:98:e3:c7:b9:
e1:b0:82:8c:d6:b4:df:ed:6d:15:6d:e1:61:00:e1:
80:0e:39:97:a7:90:db:47:9d:86:33:d2:26:ee:21:
a7:6b:1d:95:fb:0b:99:11:05:c8:8c:21:f4:40:44:
f3:07:c4:aa:5b:c7:81:e8:51:eb:10:a8:bf:ae:67:
a0:fd:92:49:cc:f1:df:3f:7b:8b:a5:6d:c0:5e:d8:
ad:bf:72:d6:7f:90:a7:b9:b0:63:51:84:ee:68:ff:
1f:85:3b:9e:47:80:d6:45:bc:3a:ae:8d:d0:46:27:
78:b0:9f:5f:dc:e2:bb:e7:20:f5:96:18:44:0f:0b:
91:7a:fc:0d:18:a2:96:ca:53:50:24:b6:7c:db:3a:
d8:4f:75:83:91:16:15:d9:51:5f:b5:30:72:2f:8b:
a7:75:b5:3f:ac:89:cc:4c:49:41:3e:bd:ee:04:50:
5d:5f:55:d4:99:50:06:57:f1:ec:06:b3:82:28:ec:
9a:ed:16:b0:01:08:f2:97:8b:ba:d0:7a:c7:10:5b:
83:74:e1:fc:0f:61:34:ce:2e:1d:56:0e:aa:2c:63:
db:76:56:dc:2e:c0:09:ec:d9:d1:24:2b:66:50:13:
b2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:8C:5D:7F:E4:00:D6:3B:74:B6:C0:98:97:01:05:AE:AE:68:13:09
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CYxdf-QA1jt0tsCYlwEFrq5oEwk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.248.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:14:d5:ee:0f:f7:cc:70:77:e8:70:97:56:9e:55:06:e6:14:
e4:76:fa:30:05:c7:11:8f:c7:ad:b9:7b:ce:0b:de:ef:fb:7c:
7f:68:c1:df:2c:65:1f:a5:05:a1:72:bc:6f:34:cf:75:e8:13:
a2:3b:09:cf:78:20:24:6f:ae:69:b4:97:b4:3a:c5:27:08:e2:
d5:fe:07:7c:77:ee:e6:5c:7a:c3:6f:a9:71:9b:6d:f8:44:6a:
78:08:eb:b4:e5:61:e7:d3:0f:69:67:98:dd:24:15:e0:c9:33:
8c:37:5c:8f:0b:78:67:2b:5f:d6:4e:7e:3b:e5:7e:05:90:8a:
04:d6:b8:a5:47:ba:c2:64:81:8f:8c:6c:02:0e:ac:ab:22:4c:
a7:8f:61:0a:ab:6f:96:ca:99:7e:60:64:58:50:3a:cc:ec:b2:
ad:26:fa:e2:c4:00:f3:e3:b6:a9:87:03:10:03:99:16:14:d6:
75:60:e5:f5:5f:5d:36:8b:2f:9e:1d:21:5a:43:1b:64:6c:cc:
5e:d4:1f:cd:5a:20:3d:76:f0:2b:b8:b4:86:e2:ff:e3:21:3b:
0b:16:1a:37:87:0c:0e:7c:fb:9d:5b:92:be:9c:dc:66:0d:7b:
c9:5d:2b:fe:4d:b8:f4:fb:a5:8d:40:d0:ee:a2:cb:d3:5b:b2:
3d:74:f6:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org