Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/G6oBd8B74F00toUiCkdXNZiqEWo.roa
File: G6oBd8B74F00toUiCkdXNZiqEWo.roa (raw, json)
Hash identifier: dFalAUgMriRMD8jDSn+YZw80z65dsAka2GQp8Y2lGas=
Subject key identifier: 1B:AA:01:77:C0:7B:E0:5D:34:B6:85:22:0A:47:57:35:98:AA:11:6A
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0886
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/G6oBd8B74F00toUiCkdXNZiqEWo.roa
Signing time: Tue 29 Sep 2020 10:02:34 +0000
ROA not before: Tue 29 Sep 2020 10:02:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 150.117.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2182 (0x886)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1BAA0177C07BE05D34B685220A47573598AA116A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:87:b8:ec:ee:79:e1:35:b7:05:d5:d0:7d:b7:
d6:36:d9:94:c6:fa:89:bd:f8:ed:ea:54:ee:53:bd:
ef:9d:53:6f:2c:8b:45:9a:64:d5:c1:f1:2a:3b:72:
9f:5d:72:00:dc:3b:e9:95:27:95:f3:82:c8:2c:fd:
36:e4:8c:f1:eb:68:40:dc:c4:ea:87:cb:d2:ad:14:
a2:9e:81:dc:f2:19:b0:29:dd:72:9e:04:7a:26:46:
45:ca:7c:2e:6f:3e:ac:8d:0c:ac:99:6f:e9:ea:7d:
11:27:99:02:4f:02:ba:a0:8a:2d:98:9d:1d:23:61:
0e:87:18:50:60:42:c8:b4:6c:b1:e9:a6:ae:19:58:
22:f5:2b:1a:8f:e4:d0:71:cc:79:5b:d7:38:b7:ce:
f0:7f:82:8f:0a:18:b8:6f:3a:96:f5:41:40:8e:87:
7d:a1:a2:70:0c:5f:35:08:cc:7c:09:19:52:55:a6:
50:d9:06:b5:0e:d6:fd:ed:e2:d0:b3:3c:59:a7:7b:
4e:58:2f:9a:f4:f3:0c:1d:b8:45:f6:7c:0e:cf:f2:
cc:6c:07:43:bf:64:49:6e:76:83:55:df:bf:a9:67:
ab:49:c7:d3:65:68:ab:20:e8:fc:36:d9:4d:96:97:
52:00:48:63:6f:41:ec:48:40:05:a9:6b:9a:7c:3b:
88:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:AA:01:77:C0:7B:E0:5D:34:B6:85:22:0A:47:57:35:98:AA:11:6A
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/G6oBd8B74F00toUiCkdXNZiqEWo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.32.0/20
Signature Algorithm: sha256WithRSAEncryption
74:65:09:31:50:82:94:4b:8d:62:1f:a5:e8:ca:aa:ff:b1:76:
cf:07:f8:f1:73:f8:16:36:a2:a0:cd:32:59:9a:18:ed:42:d0:
b8:56:11:fb:ec:48:40:9e:f7:46:2a:af:75:a2:f0:6a:07:9d:
fb:0d:c5:e5:4b:37:4c:fc:5d:75:59:3c:fb:d4:9b:8c:ca:71:
de:94:1e:bc:12:19:2e:77:d3:86:83:f6:2c:20:10:d3:e3:6f:
41:7d:a0:0b:8f:ad:51:06:40:b7:54:b8:91:cf:32:4c:99:32:
45:e2:3e:b1:be:87:df:2d:67:ca:dc:a2:ec:aa:92:1d:4d:e3:
3f:dd:20:20:96:a1:15:d1:69:63:b5:df:91:0f:dd:f1:c8:65:
ff:94:ca:38:9f:f6:b3:34:2c:02:86:92:5c:e6:1e:53:75:c7:
80:c1:3a:67:fb:1a:3c:65:a7:f1:23:9f:6f:3c:17:fa:ac:3d:
a6:97:ff:23:c9:9f:a6:15:0d:94:3e:93:09:b5:8e:33:dd:87:
2a:24:8d:f2:30:32:f8:00:dc:a2:f9:9e:12:2e:b4:f9:b4:2c:
04:4f:a4:64:a8:1b:2e:a5:68:6c:5d:96:83:d7:c5:43:b0:2f:
27:44:72:19:76:be:6b:59:b5:29:6b:74:7c:49:74:7f:97:d4:
45:5e:c2:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org