Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FjyfKpmR8RDD6rAXkxamlmLnqmc.roa
File: FjyfKpmR8RDD6rAXkxamlmLnqmc.roa (raw, json)
Hash identifier: mBteEF+3EOHyCWCgG1745Xp8oIx8Yy4f1Y6XURrRRtI=
Subject key identifier: 16:3C:9F:2A:99:91:F1:10:C3:EA:B0:17:93:16:A6:96:62:E7:AA:67
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A80
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FjyfKpmR8RDD6rAXkxamlmLnqmc.roa
Signing time: Sun 07 Feb 2021 11:49:57 +0000
ROA not before: Sun 07 Feb 2021 11:49:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2688 (0xa80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:49:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=163C9F2A9991F110C3EAB0179316A69662E7AA67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7d:a4:47:f1:6e:83:eb:ff:99:c2:bc:0e:14:
19:1a:db:a8:33:5f:ac:2e:b1:89:ad:56:c0:56:14:
c5:ea:b9:5e:2e:5f:1f:02:1a:b8:e7:3e:45:8e:1c:
64:00:ad:96:02:bb:1c:f0:e3:4f:f1:46:45:84:48:
14:28:43:18:75:0d:d8:1d:98:70:b4:e5:60:bc:49:
e9:75:fe:48:e5:b7:32:29:a6:8c:56:df:39:a3:d3:
6e:6d:dd:85:2d:7f:9c:57:c9:73:63:4e:b3:3e:37:
c6:b5:f5:84:9e:c6:cc:5a:fa:97:ff:21:12:23:00:
14:fa:11:a0:28:e3:cb:d8:65:6c:34:09:76:5c:61:
7c:37:a2:72:45:2f:ef:4d:75:e9:23:d6:94:d6:48:
37:5d:6f:cf:56:65:5c:a9:d8:fa:4e:49:0e:5c:9a:
9a:33:b7:1b:14:e9:79:42:74:1c:01:39:23:0a:ca:
0f:43:10:db:19:73:d9:7d:f5:5d:4b:71:ca:41:c1:
d7:4c:c6:7d:46:31:2d:4e:b9:3d:45:e5:a6:af:36:
48:82:82:9a:73:b5:e0:4d:bc:3e:f9:0f:8c:3f:5d:
1f:cf:33:1e:32:37:2d:2d:b4:ce:3e:04:b9:7f:ce:
2f:82:19:e3:33:64:43:8d:4e:de:3c:1c:2b:0e:72:
dc:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:3C:9F:2A:99:91:F1:10:C3:EA:B0:17:93:16:A6:96:62:E7:AA:67
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FjyfKpmR8RDD6rAXkxamlmLnqmc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.192.0/19
Signature Algorithm: sha256WithRSAEncryption
94:f3:5d:67:ec:93:7d:76:5e:df:c6:f4:1c:db:9e:58:88:32:
3d:71:c2:b3:17:1a:fd:97:33:47:d3:88:5f:75:ae:4b:a9:cb:
b0:ed:f5:a0:cb:fc:2c:10:55:73:e9:77:b7:9c:6a:1a:07:4a:
9d:13:7f:3d:8d:40:78:2e:25:41:c9:66:23:04:3e:64:60:5a:
4e:5f:c5:10:76:82:19:0d:a9:51:6c:dc:95:a9:25:43:5a:9d:
57:a1:f5:97:0b:c5:43:f9:df:1d:0c:79:4f:07:53:ee:27:2d:
ca:c9:db:be:c0:e7:e2:0f:31:2e:43:14:d8:08:02:3f:a3:b2:
b7:2b:96:24:6d:78:f3:9d:67:2e:c4:b8:9b:2a:3a:da:08:e2:
a5:c6:50:41:ee:6a:a3:4d:7a:aa:29:fb:b7:4a:83:aa:59:5a:
f4:c0:20:18:01:73:62:47:8f:47:b0:2d:83:ff:aa:1a:7e:e7:
1f:15:51:cb:e6:eb:e0:50:89:6b:37:fd:34:79:50:dd:a4:3e:
b0:07:ee:b9:53:82:ca:2c:5a:b5:3c:92:e0:ba:3e:ae:a3:1c:
84:e6:8a:74:70:f1:4f:81:14:49:6b:0b:47:d7:9b:ee:bd:76:
a0:9c:b7:81:2c:fa:b4:c9:5e:b1:ff:66:1e:d1:db:24:97:e6:
a8:1a:ea:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org