Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GYQC0Ker822-4EC6FXh5_1TW0u4.roa
File: GYQC0Ker822-4EC6FXh5_1TW0u4.roa (raw, json)
Hash identifier: US2+xPsG7w+UtgtcLEpWNHg0HLovCDuOvNdoq3y2EXI=
Subject key identifier: 19:84:02:D0:A7:AB:F3:6D:BE:E0:40:BA:15:78:79:FF:54:D6:D2:EE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C06
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GYQC0Ker822-4EC6FXh5_1TW0u4.roa
Signing time: Wed 29 Sep 2021 02:38:57 +0000
ROA not before: Wed 29 Sep 2021 02:38:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.116.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3078 (0xc06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=198402D0A7ABF36DBEE040BA157879FF54D6D2EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ca:9a:f7:4f:4f:51:99:8b:42:24:e1:89:37:
eb:d8:25:37:bd:57:e0:4f:5e:69:6c:f1:ac:60:63:
89:07:1d:55:09:87:82:08:a5:39:92:fc:dd:9d:0a:
c9:c9:a0:d8:ff:93:c8:e7:c5:c0:b5:f9:1e:48:4d:
63:9f:bc:cc:95:6a:be:b9:0e:7f:e6:ef:d1:91:92:
b4:de:ac:1d:ff:56:de:30:bb:c7:5b:90:d7:5a:15:
b2:cb:59:97:ee:6e:9c:85:e9:03:33:74:f9:73:08:
04:15:e7:65:c6:2a:29:66:d2:a7:b8:fb:85:aa:f1:
17:0d:3a:54:af:88:68:a8:ee:8f:c6:37:68:1f:04:
ab:df:bc:6e:56:36:ff:ab:28:32:3e:27:23:1e:94:
97:bd:04:fd:c2:73:cb:ce:a6:c1:9f:b3:66:1a:b9:
91:82:e1:99:30:bb:ee:7c:77:d4:aa:97:d6:67:95:
06:44:00:53:b3:81:59:f9:57:e8:96:50:ec:51:b2:
ad:b2:0b:82:f4:57:3b:69:6a:ef:58:92:ff:da:52:
1e:5f:8e:3c:3a:08:f3:c8:04:d3:1a:33:73:e9:7d:
ee:2b:3e:c7:66:dd:8b:1b:cd:5f:43:8c:40:28:8c:
92:e9:d6:25:cd:96:5f:49:02:85:3c:b7:70:df:f3:
6c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:84:02:D0:A7:AB:F3:6D:BE:E0:40:BA:15:78:79:FF:54:D6:D2:EE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GYQC0Ker822-4EC6FXh5_1TW0u4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.88.0/22
Signature Algorithm: sha256WithRSAEncryption
22:42:ea:06:2b:4e:f8:d4:bb:ed:49:1c:47:d1:74:33:70:87:
e4:c6:b2:b8:89:4d:b5:c1:84:dd:6a:f9:2d:73:2e:29:9a:d4:
9c:a2:0d:97:53:f1:6d:7d:bb:e2:5a:b8:f3:d7:09:99:47:82:
33:67:a6:66:c8:a6:16:44:0a:41:5f:f7:36:d0:a7:07:ef:d3:
75:6a:05:e2:59:2c:a6:34:a9:8a:e0:b5:a5:56:9c:4c:f6:40:
ec:5d:05:9c:a7:a6:91:7d:11:51:8b:0c:62:a5:42:4a:85:b7:
b3:c1:f1:ad:f1:e0:e4:6e:56:82:d1:70:e1:c9:19:67:3f:8c:
eb:79:3d:67:94:26:d4:86:d7:ac:c9:e3:bb:ce:8c:5f:68:e8:
cf:44:75:6a:97:47:de:f7:9b:57:08:dd:0b:45:6e:1f:4b:54:
22:cd:33:07:b2:c7:47:9d:d3:08:7e:25:9d:3a:b8:a5:93:af:
86:74:25:b9:f2:ff:f1:db:8d:a5:17:c9:0c:18:d8:18:4a:c6:
20:c5:da:8c:98:20:40:73:d8:9f:88:32:b2:87:8f:eb:a5:51:
e3:76:2a:b9:17:59:f4:5e:6e:6f:97:0d:17:d2:87:0b:76:9a:
ef:56:d8:a0:81:ec:39:e9:22:07:4a:e2:a6:cd:63:da:af:7b:
92:b0:e7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org