Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FjmUZU2lKQ7NLysi87h_t44pcUo.roa
File: FjmUZU2lKQ7NLysi87h_t44pcUo.roa (raw, json)
Hash identifier: 3I7OorxrIfpQLh774D52ixyJFkd+qVC+O/GJbKgcus0=
Subject key identifier: 16:39:94:65:4D:A5:29:0E:CD:2F:2B:22:F3:B8:7F:B7:8E:29:71:4A
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C33
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FjmUZU2lKQ7NLysi87h_t44pcUo.roa
Signing time: Wed 29 Sep 2021 02:39:09 +0000
ROA not before: Wed 29 Sep 2021 02:39:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10085
IP address blocks: 203.163.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3123 (0xc33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=163994654DA5290ECD2F2B22F3B87FB78E29714A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a7:c3:d7:3e:75:b9:6e:3a:ee:29:be:44:e2:
06:87:2c:91:09:51:e0:2d:4c:7e:6c:33:28:e5:f8:
aa:e7:bf:71:52:79:75:3a:3c:ee:85:83:4a:01:f5:
ab:23:94:83:e8:f8:0c:df:53:20:5d:bb:fa:1b:41:
72:8e:87:5c:d9:94:8b:a1:e3:bc:e3:1e:34:1e:11:
27:ee:12:2d:87:c8:af:3b:45:23:c2:0a:36:d0:b1:
dd:5e:e4:e2:61:f3:a1:8c:f1:79:17:11:90:fb:cb:
5c:5a:5f:a3:f2:33:a6:5f:23:b0:64:cd:06:cc:16:
b3:8f:18:71:d0:a9:79:5f:49:50:e2:23:8d:78:7c:
ff:d5:a9:21:e9:90:e2:85:f2:b3:6f:19:af:41:d8:
c5:50:ae:af:38:f0:73:3c:b2:47:05:92:80:57:84:
bb:ba:c6:00:a3:b2:b2:3b:92:cf:46:55:cd:0b:bc:
4d:7e:89:ce:a8:60:03:ee:be:44:0d:fb:74:65:1e:
50:51:58:3b:ae:89:01:fc:1f:0a:5b:ea:e8:19:67:
b2:0b:61:aa:9b:8e:b5:bd:06:63:db:4f:80:98:92:
a5:ef:1f:96:ca:61:e6:06:35:5e:07:2d:44:c1:63:
99:31:32:59:5d:a5:f8:b7:e3:e4:96:81:64:8b:42:
ca:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:39:94:65:4D:A5:29:0E:CD:2F:2B:22:F3:B8:7F:B7:8E:29:71:4A
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FjmUZU2lKQ7NLysi87h_t44pcUo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.214.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:b5:a9:e3:2b:b5:29:e4:0b:ec:bb:d5:7a:59:8b:be:19:68:
01:2e:87:dd:03:5d:e6:b4:32:ab:54:bf:38:75:52:31:c7:30:
1e:3d:c8:20:f5:11:aa:86:48:df:78:12:49:e6:dc:b3:4c:d8:
0c:d9:14:20:e8:58:01:95:92:d6:eb:b7:be:71:a8:9d:58:da:
ee:4f:7e:e6:4b:80:e3:de:c4:52:b7:31:48:c4:a7:40:17:ea:
92:33:42:8d:35:13:c3:65:4a:2d:9a:99:1d:f4:fe:c3:ce:d6:
6d:60:d3:12:55:33:90:d0:44:9d:ce:ff:f1:3f:f5:d0:7c:6d:
7a:a6:28:39:49:4d:6c:f0:ec:44:be:7f:c2:15:a5:e8:46:8e:
f0:9d:4c:99:d1:5a:92:86:f9:33:92:18:f8:ba:de:42:b8:13:
11:a5:02:c6:96:31:92:f5:b1:6a:b6:16:f4:fc:d4:38:51:d6:
4f:6d:e5:11:22:06:7c:7c:d2:d9:4b:2e:60:69:05:cc:b3:a7:
42:bf:a6:34:04:9f:a2:fb:b8:e7:de:43:47:7f:5a:04:4e:b9:
9d:8c:aa:0a:ed:9b:76:66:ca:de:23:39:0c:83:1b:a5:64:fb:
8b:b3:58:7e:33:72:de:be:74:e5:88:99:5a:e1:cb:1b:4f:33:
7f:89:29:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org