Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/EsVvDpYzqCBsDgAlbl57ZRKFRIg.roa
File: EsVvDpYzqCBsDgAlbl57ZRKFRIg.roa (raw, json)
Hash identifier: lj3A8Lr+nGfxGNW/XBue40q7o9DL8qprThWid5SdiYw=
Subject key identifier: 12:C5:6F:0E:96:33:A8:20:6C:0E:00:25:6E:5E:7B:65:12:85:44:88
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 09E6
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/EsVvDpYzqCBsDgAlbl57ZRKFRIg.roa
Signing time: Tue 26 Jan 2021 07:39:55 +0000
ROA not before: Tue 26 Jan 2021 07:39:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 150.116.112.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2534 (0x9e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Jan 26 07:39:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=12C56F0E9633A8206C0E00256E5E7B6512854488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a5:1c:ff:9c:c1:5e:ab:de:39:01:69:66:9c:
4a:02:93:29:58:6a:66:81:8b:f3:11:0c:84:ad:95:
fe:4b:56:e5:de:5b:63:2f:eb:1a:e1:33:dc:89:6a:
ab:08:7f:03:1b:a9:ae:21:89:b2:7c:bf:6b:95:12:
8b:e8:0a:d0:62:5b:d0:3a:63:70:a7:9b:ab:f7:7e:
c4:a4:0e:0d:77:fb:23:17:81:43:b8:94:e4:ed:a9:
ab:57:be:f2:6f:dc:ff:ca:04:60:59:93:ee:9c:f1:
c2:5d:9d:85:84:ec:c1:d6:67:01:55:fc:74:22:e4:
80:bd:c1:a2:c5:9b:e6:5a:ff:55:26:23:03:d0:6e:
ac:b1:75:d6:6b:76:1c:7a:83:82:77:fd:d5:9a:7e:
84:03:ea:bc:53:bb:f7:95:06:d5:78:08:82:35:2f:
b2:1e:ea:6a:a1:13:70:2f:86:b2:ea:cf:68:84:ec:
59:fe:6f:68:13:db:70:26:e1:12:80:78:5f:bc:e7:
57:f8:18:cf:c7:28:eb:7b:5b:58:80:74:b4:d0:b0:
48:29:62:97:14:25:53:f5:d0:f7:0d:69:8a:03:d5:
7e:48:0b:41:8d:6d:3b:5e:17:9a:75:97:35:b3:9d:
8d:a1:22:5d:90:90:a9:80:24:00:be:8b:25:e5:c4:
33:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C5:6F:0E:96:33:A8:20:6C:0E:00:25:6E:5E:7B:65:12:85:44:88
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/EsVvDpYzqCBsDgAlbl57ZRKFRIg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.112.0/21
Signature Algorithm: sha256WithRSAEncryption
b4:39:e5:40:a1:25:9a:e9:dd:db:57:2e:5d:c9:c3:39:57:c0:
06:00:49:cc:32:00:1c:28:3b:3f:e3:92:3e:8e:72:c0:3f:db:
ea:5f:40:e7:1f:e0:32:d6:70:7a:e3:ce:67:21:3d:b4:76:26:
8e:bb:ef:06:5f:2a:e6:c7:44:d7:b6:43:e5:bc:76:e9:48:91:
ef:99:46:1f:da:d9:17:c0:7c:aa:d9:31:9b:8f:70:96:df:b2:
ad:41:10:a3:8b:39:fb:9b:16:ff:7b:2d:53:65:52:b8:78:bc:
19:62:f7:a5:04:7c:90:ac:87:b7:c4:a9:95:4d:dc:4b:ba:8e:
c7:34:39:86:13:5e:79:21:7a:59:27:a3:03:f9:7f:1e:ed:3a:
f9:0a:21:a8:64:16:72:51:06:e4:19:32:6c:15:a5:af:16:d0:
73:6a:63:51:10:60:3f:a4:8c:78:34:97:45:50:f6:8c:53:cd:
6d:43:ef:40:d1:a5:c2:96:89:8d:ad:7b:5e:26:b6:fd:82:e8:
29:66:e7:f3:82:69:62:82:24:ca:2e:c7:b9:c5:cd:35:15:62:
c3:f4:d9:c1:e9:10:34:11:35:1a:45:bd:73:b7:bb:ee:4f:e0:
53:67:73:81:28:7c:ae:ac:d6:0a:18:6c:36:68:65:ed:39:b6:
fe:85:16:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:47 2023 by rpki-client on console-ams.rpki-client.org