Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DG_kGbighzFLukbl5L7FHv-vPhY.roa
File: DG_kGbighzFLukbl5L7FHv-vPhY.roa (raw, json)
Hash identifier: QBGg+jHPSHS1OfH4A70JBm6pfr4MAYPAPSpbi5VB878=
Subject key identifier: 0C:6F:E4:19:B8:A0:87:31:4B:BA:46:E5:E4:BE:C5:1E:FF:AF:3E:16
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C01
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DG_kGbighzFLukbl5L7FHv-vPhY.roa
Signing time: Wed 29 Sep 2021 02:38:56 +0000
ROA not before: Wed 29 Sep 2021 02:38:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 150.117.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3073 (0xc01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0C6FE419B8A087314BBA46E5E4BEC51EFFAF3E16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b4:43:24:77:2e:30:93:38:1b:8d:02:f1:ee:
e3:aa:ba:84:96:6f:4b:e1:c0:db:72:41:1c:70:33:
c7:4f:3d:a1:db:9b:d1:b3:c1:0d:f3:3a:aa:7c:58:
fe:79:ad:08:ce:4d:b6:c7:33:1d:1b:82:22:6b:72:
78:26:7c:ba:8b:0b:e6:6a:a3:17:fe:0e:8e:d2:b6:
60:32:b3:89:08:51:0a:80:09:27:bb:36:17:0c:50:
6b:ac:f1:fd:76:5d:34:c1:3c:b7:a3:2d:76:dd:35:
22:f4:36:81:86:9a:c4:0b:f2:38:49:f4:1c:c1:ad:
66:fc:09:3b:d5:72:98:5b:09:d3:40:12:67:76:3c:
31:40:27:fc:1d:ae:8e:be:70:c8:18:cd:23:00:6b:
ce:50:75:c6:b8:38:ce:11:88:2c:fb:25:b9:06:8c:
62:07:fa:a3:49:be:48:a9:67:e9:34:96:06:f4:8a:
4b:46:20:19:99:83:8b:eb:78:11:46:4b:48:cd:9a:
04:f8:35:2d:71:be:de:13:60:13:c2:63:f1:ab:85:
55:49:49:d4:cb:77:b8:4c:18:f4:7b:b0:40:b1:49:
d0:ce:dd:b5:64:91:ea:7d:42:c7:62:a7:0f:24:96:
62:cf:6d:03:8d:83:86:43:51:e3:94:00:32:d8:8f:
56:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6F:E4:19:B8:A0:87:31:4B:BA:46:E5:E4:BE:C5:1E:FF:AF:3E:16
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DG_kGbighzFLukbl5L7FHv-vPhY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.128.0/19
Signature Algorithm: sha256WithRSAEncryption
13:f8:e8:c7:95:80:36:bb:87:07:65:4c:5b:a9:e9:da:07:25:
f4:4d:ad:3c:7a:53:98:82:e7:8c:28:50:45:e2:b3:c3:65:89:
1e:fb:18:d2:04:ab:da:81:b2:5e:17:e5:76:62:10:0d:d6:82:
c4:14:1d:96:e6:10:af:b8:64:c4:92:34:eb:33:26:65:a8:4f:
d4:41:f8:0e:d6:fb:dd:06:d2:41:f7:58:a0:9e:10:12:b7:6f:
0a:ac:89:fa:d7:5b:5c:d6:7d:57:f7:fd:48:f7:cd:5c:b9:12:
e5:39:e7:8b:26:9f:41:35:91:31:da:9a:fc:81:ec:b8:0c:90:
82:76:62:1f:02:44:a5:81:3e:e3:0e:b0:5a:81:15:e3:87:83:
4e:58:9f:9c:28:65:7d:a9:c5:e2:35:a8:4f:ea:b2:5d:d7:32:
a8:b4:d9:26:3c:5b:b5:0f:09:c6:6a:be:4d:02:19:f7:d3:73:
27:ee:c7:83:e6:01:e6:10:7b:20:98:81:8b:70:17:bc:3d:d3:
d2:a9:44:8a:b9:2d:92:a9:a4:8b:a2:69:4d:f0:2b:89:7a:4e:
94:7a:17:87:18:09:e9:44:d9:de:82:76:74:5d:13:66:9a:9d:
b6:86:3e:d3:36:69:40:b5:e8:50:1a:07:c6:19:07:f3:9a:af:
01:49:e1:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org