Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Dfhiur8b1rZVKQcNHkGglqi3PNE.roa
File: Dfhiur8b1rZVKQcNHkGglqi3PNE.roa (raw, json)
Hash identifier: pyxFX1bXDkXXYasl+NOAWjkDFVes+i59bm0Y20onKiw=
Subject key identifier: 0D:F8:62:BA:BF:1B:D6:B6:55:29:07:0D:1E:41:A0:96:A8:B7:3C:D1
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DB7
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Dfhiur8b1rZVKQcNHkGglqi3PNE.roa
Signing time: Thu 29 Dec 2022 09:31:46 +0000
ROA not before: Thu 29 Dec 2022 09:31:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 118.150.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3511 (0xdb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0DF862BABF1BD6B65529070D1E41A096A8B73CD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f1:66:aa:33:e9:94:a7:e8:12:48:4e:89:56:
d4:d4:b6:1c:f5:6d:6e:7d:c8:7e:0c:cf:08:2f:41:
7a:f7:4f:bd:bc:ae:c1:35:cd:80:66:84:9a:bc:c1:
f7:7e:33:94:51:4d:3a:ff:84:47:8e:83:96:4e:5c:
7f:22:17:57:ee:dd:ee:e7:e0:4c:52:f0:e1:25:20:
49:28:82:c1:fb:3f:80:ad:fa:73:27:d9:0e:32:7b:
1e:74:56:4d:e4:57:0c:57:4b:ee:fe:9e:f0:fe:01:
0b:93:e0:87:89:fb:49:8d:ab:b6:0a:0e:d9:da:1d:
3b:63:70:b3:77:2c:14:8a:d1:ca:83:f2:68:54:85:
13:3e:2b:c8:a9:a5:1f:ee:af:b9:65:41:57:30:24:
c4:33:e5:9d:6e:97:71:cd:c5:f1:93:bf:fe:25:3d:
59:48:33:ea:65:e4:ce:c9:d4:59:e6:cf:84:f0:b2:
4b:4d:91:9e:ac:b0:b4:c0:b1:91:79:3b:b0:49:d5:
a1:74:48:6a:7a:e1:e0:a6:48:0c:ca:df:94:88:a3:
19:9d:2f:c7:73:3b:95:49:fc:18:0f:0c:6a:99:7d:
fc:25:e9:be:79:3d:bf:7e:1b:7e:b8:89:bf:f6:29:
a2:cb:e5:48:92:ce:46:db:9c:24:e8:f7:87:7e:4f:
c0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F8:62:BA:BF:1B:D6:B6:55:29:07:0D:1E:41:A0:96:A8:B7:3C:D1
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Dfhiur8b1rZVKQcNHkGglqi3PNE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.192.0/19
Signature Algorithm: sha256WithRSAEncryption
97:78:65:e2:95:3e:19:04:9e:57:ba:a7:e6:ae:01:42:8e:0c:
21:f2:39:f9:44:0e:38:e6:3c:5f:69:de:d8:43:4c:e1:bc:d8:
76:c9:34:fa:f9:6c:07:57:58:4e:72:b1:02:e7:b7:5d:b7:b3:
78:9b:9a:a6:69:e9:1a:04:ce:eb:45:e8:f6:d4:db:3a:66:1b:
43:93:16:72:14:33:ec:96:42:84:71:48:58:1d:ff:c9:8c:26:
40:bf:a7:fc:2c:46:23:65:5f:7d:c0:fb:53:a4:4f:e0:e4:91:
b8:02:60:01:be:36:01:da:6d:03:ee:4c:4f:5b:2e:80:44:82:
2b:5e:47:f9:59:bc:21:25:57:f3:f2:2f:30:00:ce:61:6b:09:
2d:bf:96:0d:6f:48:f8:e9:c1:52:51:8a:ee:e4:9b:d0:6c:86:
0d:09:72:74:a6:64:c7:ec:31:2b:e1:e2:b5:f4:c0:93:14:ef:
f6:a5:d5:66:81:ed:e9:6e:7f:7d:b4:4a:39:0e:a3:b2:49:87:
b7:60:f4:c7:d2:08:07:85:c1:54:ac:38:14:e0:eb:93:fc:cd:
9b:a9:6f:85:36:41:a5:ae:15:e3:cb:96:64:9d:22:f1:52:31:
5d:38:56:0a:96:fb:d6:20:b2:10:0f:a5:81:4c:96:ec:98:3f:
ae:e6:9e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org