Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DKICaQMJ_HA-Wc4HGHbXwiDcxYg.roa
File: DKICaQMJ_HA-Wc4HGHbXwiDcxYg.roa (raw, json)
Hash identifier: fMEUKX24FYN7nVvZjQxEy8+W5hbQN11krchq7J/hEDQ=
Subject key identifier: 0C:A2:02:69:03:09:FC:70:3E:59:CE:07:18:76:D7:C2:20:DC:C5:88
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0876
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DKICaQMJ_HA-Wc4HGHbXwiDcxYg.roa
Signing time: Tue 29 Sep 2020 10:02:29 +0000
ROA not before: Tue 29 Sep 2020 10:02:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131600
IP address blocks: 223.26.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2166 (0x876)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0CA202690309FC703E59CE071876D7C220DCC588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:81:40:e0:ba:ee:81:8a:a0:74:d1:14:2a:71:
93:9e:89:47:98:ac:33:3f:e9:3e:8a:ad:bd:83:2a:
35:7e:70:1a:90:98:7a:30:1e:75:ec:b4:d6:39:52:
d0:2e:05:29:ff:51:d6:5a:d3:48:95:a4:e4:c8:29:
fb:15:53:07:35:fe:33:67:93:2c:c8:8b:49:d1:60:
12:a2:80:a8:a2:ab:1e:d6:f6:42:74:96:a1:bf:ff:
c6:c5:7d:c0:ae:ca:14:89:ef:41:e8:de:13:d4:e6:
70:5e:b1:94:d9:2f:ac:16:16:b6:e4:04:9d:93:19:
59:65:8e:d2:4b:29:d9:94:20:b8:a9:b2:05:2a:bd:
bf:33:0f:76:20:b4:ab:31:6a:82:e1:fc:25:48:27:
54:45:24:46:42:ff:e2:bc:bf:bd:8c:72:16:bf:d7:
14:74:21:a0:07:eb:63:29:4d:20:93:03:1c:4c:2c:
ca:c2:65:21:ed:63:07:a0:4b:23:15:d7:dd:24:68:
23:23:fd:5e:91:f8:c8:a3:97:e7:7e:f3:c2:25:70:
76:21:83:9d:16:29:d6:1e:12:07:fe:e4:05:60:18:
e8:d5:e4:77:3b:d8:67:74:27:63:c0:3f:4b:2e:cd:
b6:5e:bf:b7:76:12:0c:12:ba:6b:52:35:58:bd:88:
94:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:A2:02:69:03:09:FC:70:3E:59:CE:07:18:76:D7:C2:20:DC:C5:88
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DKICaQMJ_HA-Wc4HGHbXwiDcxYg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.68.0/24
Signature Algorithm: sha256WithRSAEncryption
56:14:1e:ef:8f:be:f1:7c:b4:94:cb:e4:3a:c6:87:87:45:60:
62:3f:70:45:8f:09:56:a3:1a:8d:76:7a:f1:b9:e7:93:ef:68:
13:38:44:9d:55:d2:23:35:ef:01:2d:b2:29:97:ed:c1:fa:8b:
6a:13:07:f7:98:48:99:2a:79:a0:0d:44:7f:58:d8:b0:cc:fb:
5c:c1:76:0d:ee:66:40:dd:f7:7a:0a:d4:88:48:71:6f:19:04:
31:52:c2:6d:4f:c3:cb:8c:28:8c:a5:3d:15:53:5e:ce:87:d3:
f6:3a:72:b3:47:9a:05:ca:8f:05:25:cc:81:78:ca:7c:4f:97:
8c:84:8c:1b:5b:5c:63:ea:4d:5e:70:7a:15:e6:aa:f0:a5:6e:
3f:ca:ae:24:0d:63:e5:d8:a0:67:30:14:cd:f9:dd:b9:68:42:
0e:f2:ad:59:65:1f:2f:59:b8:ec:df:ad:c9:ce:f5:0d:53:9d:
53:a6:35:c9:1c:d7:5d:e5:7a:72:bf:6c:d4:6e:fa:5c:72:0b:
e1:4d:c5:cf:ab:3c:e5:97:85:61:ee:b5:65:88:e9:2a:07:7d:
a8:01:b5:8c:65:1b:4d:0b:18:e5:3f:e9:01:09:10:8f:c3:13:
73:e0:c7:11:07:2f:25:5f:0f:33:04:62:79:83:f3:4b:e4:c6:
e0:d7:1a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org