Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/D80m1Kmy0oBiurIi2dbC-aBRImU.roa
File: D80m1Kmy0oBiurIi2dbC-aBRImU.roa (raw, json)
Hash identifier: P9vl8I1EFMeo8RG9ENzu+pR1gxsRTe/z9CDBOy/hYho=
Subject key identifier: 0F:CD:26:D4:A9:B2:D2:80:62:BA:B2:22:D9:D6:C2:F9:A0:51:22:65
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0856
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/D80m1Kmy0oBiurIi2dbC-aBRImU.roa
Signing time: Tue 29 Sep 2020 10:02:21 +0000
ROA not before: Tue 29 Sep 2020 10:02:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 223.26.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2134 (0x856)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0FCD26D4A9B2D28062BAB222D9D6C2F9A0512265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ad:a4:ae:60:cf:8c:4c:9f:9c:d3:09:7a:95:
e0:65:77:45:1a:a5:91:86:ac:16:75:45:9b:4d:84:
89:b1:fa:a0:3f:7e:62:ab:60:bf:cf:4f:68:77:95:
8e:79:fa:5c:1b:2e:59:0c:da:b9:56:b8:88:ca:cf:
ef:54:be:3e:3c:e1:56:1e:67:15:db:cd:a1:17:0f:
8e:9c:fd:5d:4d:a6:b8:82:62:c9:fa:5b:4f:8a:75:
fd:23:65:64:e6:30:b1:e6:39:0a:ad:17:67:83:e2:
da:34:d9:40:3b:44:03:15:f1:70:37:ea:57:ee:b9:
a1:d2:c5:d9:10:8b:53:e5:e3:d1:80:c5:4d:28:a6:
ac:7f:e1:9c:c7:95:8f:45:f5:1d:c4:8c:11:4e:5b:
d7:f2:2a:23:dc:22:59:83:07:d5:8d:c6:60:15:a3:
fd:16:76:18:c0:dc:09:f9:d7:fb:94:4d:df:4e:13:
1c:2b:c1:fd:17:12:bf:a3:4b:b3:06:50:f3:1c:23:
da:fc:9e:97:e1:6b:08:2d:dd:2c:43:6d:41:b5:39:
8d:ba:de:e0:2b:ca:15:be:bd:36:4e:53:55:77:6b:
0c:04:33:f5:28:6b:54:65:8a:13:62:a9:ce:dd:e3:
c7:13:f3:c3:c8:66:79:6a:02:aa:54:33:f3:81:9f:
79:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:CD:26:D4:A9:B2:D2:80:62:BA:B2:22:D9:D6:C2:F9:A0:51:22:65
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/D80m1Kmy0oBiurIi2dbC-aBRImU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.80.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:db:ca:5b:9f:aa:d3:a7:03:61:5a:bc:77:d0:f4:77:b1:44:
7d:12:d9:a0:72:f6:c4:bc:5a:a5:14:96:b6:63:cf:05:05:e0:
7a:fb:5a:fc:ca:50:61:5d:f9:51:22:eb:21:3c:64:6a:0d:50:
1d:be:06:c3:07:a1:fa:74:99:32:be:a1:20:f7:17:f4:28:6e:
6f:be:11:51:b4:0d:0a:47:5d:b7:ff:43:62:08:52:3b:65:01:
fa:89:a0:a5:b2:84:24:3a:c0:5c:89:be:1b:31:d5:73:da:4e:
0b:27:93:31:70:de:99:16:22:26:0b:65:aa:c2:ac:f9:06:f2:
65:bf:27:02:f6:30:43:73:60:44:a0:6a:6c:04:73:10:45:5a:
ed:2b:da:dc:4f:aa:40:63:98:31:8c:24:cd:21:0f:af:d6:2f:
cc:3d:d3:5e:61:c7:2a:cd:ed:c4:f0:7e:cc:96:5f:a7:25:53:
bb:8b:95:1b:6f:5f:e0:28:d0:fe:d3:1f:f9:23:c9:ec:29:9b:
fb:7b:ad:21:f5:e5:d9:0b:c0:ce:45:48:cd:ba:37:08:71:cd:
64:26:3f:54:cc:2a:86:a0:0d:d9:fb:e0:7d:18:f6:27:74:5b:
e1:f0:97:09:1e:97:b2:ba:02:50:27:0f:2d:e7:84:5e:c5:97:
aa:20:e5:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:53 2025 by rpki-client