Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/EZocknccRd1nhG1epAgKAS_TtUE.roa
File: EZocknccRd1nhG1epAgKAS_TtUE.roa (raw, json)
Hash identifier: mf6QA67/wuUhkfG6oy74EG4uyFBsI6I1glRW16qGrPQ=
Subject key identifier: 11:9A:1C:92:77:1C:45:DD:67:84:6D:5E:A4:08:0A:01:2F:D3:B5:41
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A66
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/EZocknccRd1nhG1epAgKAS_TtUE.roa
Signing time: Sun 07 Feb 2021 11:49:36 +0000
ROA not before: Sun 07 Feb 2021 11:49:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 118.150.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2662 (0xa66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:49:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=119A1C92771C45DD67846D5EA4080A012FD3B541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:1d:c3:10:ae:f4:eb:15:83:a3:5c:eb:4f:b3:
cc:d4:43:cf:62:07:3b:b7:3b:df:2c:25:47:50:67:
a6:25:32:75:1c:f2:04:20:f3:1a:19:0e:84:2b:aa:
e1:e3:7c:3b:5c:70:da:f8:48:86:41:d6:95:71:80:
7f:af:ea:c8:58:1c:b4:b0:e9:04:75:6a:14:73:df:
93:68:40:6d:5e:0b:f7:47:e5:2f:0d:8f:07:ad:ca:
ff:32:3a:8d:36:07:35:52:ed:a5:54:b7:db:a2:75:
b4:84:c9:bb:35:b4:eb:5e:57:0a:ff:a1:ba:6f:f4:
1c:64:eb:9c:24:40:02:ec:13:3e:51:bf:34:05:df:
93:42:82:cc:32:93:25:01:dd:be:1c:8d:a1:38:09:
3e:6e:cb:3f:98:c5:25:77:ab:9d:85:32:f5:3e:9f:
70:4e:bc:c1:91:40:da:87:d3:9f:b6:37:8c:bd:85:
1c:fe:1b:e7:07:76:2e:11:0f:92:7e:ca:1d:8e:7c:
b7:73:a5:bd:8d:ae:93:79:2d:9b:72:d5:93:4a:6d:
f4:f6:92:b6:49:86:74:a5:fb:3b:e3:93:62:78:40:
b2:c5:5e:d9:d2:3e:87:38:38:57:44:ce:66:8c:f8:
20:c0:ed:5e:1b:79:55:a1:19:bf:a0:01:97:4c:66:
e9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:9A:1C:92:77:1C:45:DD:67:84:6D:5E:A4:08:0A:01:2F:D3:B5:41
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/EZocknccRd1nhG1epAgKAS_TtUE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.232.0/21
Signature Algorithm: sha256WithRSAEncryption
28:53:76:5a:72:35:b5:96:17:e9:7c:55:4e:9c:cb:8c:16:7b:
92:e6:4d:31:dd:ed:24:81:d2:c6:f7:59:3e:d8:c1:cd:38:0d:
28:48:6d:52:4b:9b:06:8b:6b:d6:7d:1b:56:f9:bd:bd:f4:1f:
44:68:92:40:07:0f:62:3d:d2:f3:49:73:9c:6a:b7:de:12:9b:
4d:8d:d8:1d:10:c8:e6:9d:8a:54:b2:9f:50:81:26:3e:f1:fa:
b8:e1:5e:98:98:72:9d:b5:d1:96:3f:99:d9:73:ab:d3:8e:10:
20:eb:c7:5b:7a:ff:dd:ae:36:03:46:8b:03:d9:58:80:77:85:
99:07:eb:5c:c7:ff:0b:96:20:07:bf:a3:ba:5d:62:6c:bd:ff:
df:0e:90:9c:b6:0f:59:73:27:9c:bb:85:25:2a:50:c9:81:1c:
22:cf:48:50:0f:9d:eb:67:d5:a9:d3:8b:83:c4:43:f1:5b:8c:
49:88:c6:5c:5c:3d:c8:80:81:b0:95:17:fc:b4:70:e0:94:65:
72:fe:8f:f0:72:5a:ea:1b:d0:76:ad:59:b0:3d:f4:6a:fd:9a:
49:03:ca:38:de:4e:9c:fd:1d:0a:48:a3:b5:87:ee:25:2e:71:
f7:cb:1b:8d:59:f3:3f:84:ab:a9:6c:12:41:97:ce:c7:92:9e:
a7:7e:04:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:45 2025 by rpki-client