Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GsvMkn4SHKpvks7vqwCpL7ABvZE.roa
File: GsvMkn4SHKpvks7vqwCpL7ABvZE.roa (raw, json)
Hash identifier: lzxLivcwf0sUwRAGJLEfDyer3tVBIWRfPNgrWEoiPIE=
Subject key identifier: 1A:CB:CC:92:7E:12:1C:AA:6F:92:CE:EF:AB:00:A9:2F:B0:01:BD:91
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 087B
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GsvMkn4SHKpvks7vqwCpL7ABvZE.roa
Signing time: Tue 29 Sep 2020 10:02:30 +0000
ROA not before: Tue 29 Sep 2020 10:02:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 150.117.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2171 (0x87b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1ACBCC927E121CAA6F92CEEFAB00A92FB001BD91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e7:26:42:2f:41:f3:cb:dd:66:55:33:dc:ea:
63:5f:4d:ef:59:ab:b6:67:7a:d2:d7:dd:4f:ba:1b:
c4:dc:df:0e:f8:54:41:7d:1b:08:1a:24:f9:1f:58:
0e:21:cf:1a:b9:ea:4d:00:ec:24:ce:60:18:52:ec:
a9:04:27:e4:65:98:e3:fb:e8:25:85:be:2c:c2:04:
80:38:13:49:fc:7b:93:a0:61:39:86:ce:0c:25:58:
a3:be:54:e6:42:ee:19:65:09:08:c4:99:72:09:1c:
48:05:94:7d:a7:db:1b:c9:2a:2c:72:78:36:97:9b:
0a:41:d4:64:bf:77:56:e2:0f:14:44:56:5a:0f:7d:
af:70:5f:6d:53:ec:86:8a:06:bd:8d:7c:54:6b:93:
53:60:dc:29:96:48:8c:76:84:cc:8d:90:0e:3f:9c:
a5:74:5a:cb:e4:a8:1d:0d:23:67:51:0d:86:be:c9:
86:c7:cc:a3:d3:a2:8b:fa:0d:48:53:72:68:03:78:
cc:58:ba:db:88:ad:d0:c3:ee:0f:02:b3:7e:e7:a9:
7b:36:b8:52:51:20:f1:4c:38:0e:52:0b:b8:0a:35:
07:7d:87:6e:0d:4e:62:83:0d:e5:57:c6:38:3a:6b:
41:83:83:ed:2e:3e:5a:88:7e:ba:2a:7d:0d:11:8c:
c3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:CB:CC:92:7E:12:1C:AA:6F:92:CE:EF:AB:00:A9:2F:B0:01:BD:91
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GsvMkn4SHKpvks7vqwCpL7ABvZE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.48.0/21
Signature Algorithm: sha256WithRSAEncryption
6b:31:77:fa:f5:65:25:8c:8f:4d:04:b1:7b:2b:6e:f4:3b:58:
70:39:3a:79:24:09:d2:0e:66:46:a8:d8:69:7a:38:a8:22:9e:
b3:90:be:82:3c:22:f5:9b:46:b8:d5:7e:53:57:a9:8c:75:2a:
6d:d0:b8:09:03:b6:38:25:be:9e:f1:57:f3:f7:23:64:af:80:
87:71:ce:e3:eb:1c:68:24:19:51:d5:38:d7:3d:6f:d7:d6:31:
55:56:27:0c:68:f5:11:f1:0d:0c:fb:c6:d0:e3:83:8c:18:39:
ae:15:6d:56:f2:a2:97:45:f1:f2:c5:28:10:5c:bc:a0:e1:24:
c9:d1:17:8d:d2:d5:74:43:77:f3:ab:57:cb:e2:21:98:35:7e:
3b:99:a1:68:a8:c6:36:1b:71:c0:a0:48:28:bc:d3:e3:0f:8a:
63:f0:94:8e:18:ec:fd:8c:37:89:2c:cc:28:29:85:74:44:9b:
bc:f0:fd:ee:c8:34:af:9e:db:a3:f1:61:10:3d:68:56:c6:8d:
2b:fe:f4:d6:a4:21:df:cc:19:87:e2:72:aa:50:94:04:b8:b1:
84:10:3a:05:35:d6:13:a1:89:d2:3a:f1:9a:ab:14:16:db:2c:
59:44:da:a4:9d:2b:45:8e:09:b3:cb:0b:5f:e9:bb:f0:48:a6:
1e:c4:b5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org