Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GCVVl2L9QKxyuLk9Ll4r5QHxds8.roa
File: GCVVl2L9QKxyuLk9Ll4r5QHxds8.roa (raw, json)
Hash identifier: VEpdbAcqbFjhnrNJmE5VhNAuVsXxc3BR6oEZuPH7fFo=
Subject key identifier: 18:25:55:97:62:FD:40:AC:72:B8:B9:3D:2E:5E:2B:E5:01:F1:76:CF
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 085E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GCVVl2L9QKxyuLk9Ll4r5QHxds8.roa
Signing time: Tue 29 Sep 2020 10:02:23 +0000
ROA not before: Tue 29 Sep 2020 10:02:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 203.163.202.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2142 (0x85e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1825559762FD40AC72B8B93D2E5E2BE501F176CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fe:d4:3f:f7:6b:89:fa:3b:85:20:45:e9:28:
10:6f:cc:a4:f6:25:10:ae:7e:66:4c:2f:3f:55:0c:
d9:14:14:07:24:6e:55:2d:0d:a4:30:6e:01:4c:68:
d8:ad:19:bf:a2:a7:96:29:6f:e1:d3:cf:d7:41:fb:
75:3c:e7:90:05:40:e2:76:a9:cd:6e:67:04:f2:fe:
e4:de:59:c5:ac:37:fc:0d:7d:b3:8d:ac:cb:d7:32:
08:72:c2:85:cc:57:37:bc:ff:3c:cf:2c:fa:6e:bd:
67:38:72:2a:9b:b6:99:84:d7:74:34:a7:87:3a:9c:
df:12:cd:7f:11:2b:fa:4d:87:78:0c:9a:64:bc:83:
8c:85:b2:61:fa:2a:23:e2:8f:b4:dd:db:f3:f1:b2:
0c:b6:c7:fb:43:f7:d4:d1:a9:76:6d:e7:74:8a:8b:
d9:6e:88:2b:87:de:d5:a3:c5:56:90:eb:44:26:36:
42:e4:55:a8:e9:a9:ab:f5:d9:0a:91:fd:10:9f:74:
50:02:79:3e:70:66:f7:38:c6:d9:75:bf:cf:94:bc:
69:40:f5:81:55:c9:2f:61:a6:41:fa:c7:6c:d7:c8:
d9:a0:b3:69:48:68:2f:3a:b0:98:aa:07:c7:d9:c2:
50:9a:a3:eb:e8:72:de:ae:34:89:e5:ec:8d:f4:bd:
7d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:25:55:97:62:FD:40:AC:72:B8:B9:3D:2E:5E:2B:E5:01:F1:76:CF
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GCVVl2L9QKxyuLk9Ll4r5QHxds8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.202.0/23
Signature Algorithm: sha256WithRSAEncryption
30:8e:ea:4f:83:de:88:c1:d9:5e:c4:f2:eb:84:6e:84:8f:ea:
e5:b1:4a:ae:25:dd:6d:51:86:56:86:4e:ac:ca:6e:9b:1c:12:
0a:2a:25:2d:81:14:a6:d6:f6:32:39:a4:16:e1:91:91:37:d9:
e7:9f:30:93:5a:a2:64:56:23:68:09:1a:9b:d6:08:34:c8:4e:
08:72:b5:d7:68:e6:b2:56:e1:20:5c:6c:cb:c9:ab:da:5a:07:
43:1b:c0:1c:33:2c:73:d1:ee:8c:17:cd:79:94:24:d8:e3:c7:
03:09:74:ea:68:bf:b3:04:bf:f2:1e:d1:05:e4:69:a8:50:9b:
7d:a0:55:c5:65:27:8b:07:73:09:c1:a4:c2:cc:f4:02:59:4d:
6b:65:50:b4:c3:00:e3:6f:7e:d4:01:e1:bc:9d:96:86:72:c0:
a9:31:34:ed:5e:7d:31:7b:02:27:92:91:62:c4:bc:5f:a8:5f:
ca:cb:6f:8f:4f:34:27:1f:93:d7:ed:c4:11:ac:3f:b2:94:3f:
35:b0:f0:b1:6a:dc:68:e0:d3:65:0b:02:67:2d:e5:8d:8f:b5:
99:6a:b5:ef:12:97:6a:7c:a9:f7:8c:6f:bb:db:b3:ec:90:be:
22:cd:c1:fd:2a:5b:01:52:ba:83:c9:74:64:f9:5a:e7:08:20:
bc:ae:5b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org