Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/HFUkiA6laYPCd_bvpPZucaM3zJc.roa
File: HFUkiA6laYPCd_bvpPZucaM3zJc.roa (raw, json)
Hash identifier: pZb6hW3x/U9SE8W/2S+45/76sjuy1FR4d2jve21ZnMM=
Subject key identifier: 1C:55:24:88:0E:A5:69:83:C2:77:F6:EF:A4:F6:6E:71:A3:37:CC:97
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B14
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/HFUkiA6laYPCd_bvpPZucaM3zJc.roa
Signing time: Sun 07 Feb 2021 13:04:06 +0000
ROA not before: Sun 07 Feb 2021 13:04:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2836 (0xb14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 13:04:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1C5524880EA56983C277F6EFA4F66E71A337CC97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:32:cd:8e:92:e3:8c:92:4c:cf:d9:04:6f:ec:
9d:72:2b:52:e6:01:49:be:bb:12:c2:09:38:a0:49:
17:9d:15:c6:37:81:a9:d4:77:c3:23:92:7a:03:d5:
49:ed:cb:42:3f:e3:b5:19:51:38:e6:6f:ed:21:ef:
1d:23:6d:61:61:0e:42:52:0b:fd:14:bc:83:4c:6f:
66:f0:65:30:63:85:dd:47:c5:d3:20:f6:ac:9f:2b:
d1:1e:4a:2e:22:be:81:3a:39:75:ea:18:85:31:fd:
85:4d:82:5e:74:b0:54:29:5f:83:2d:28:10:0d:4c:
27:3f:fd:b7:53:a5:25:a6:0e:11:58:77:34:c2:de:
23:fd:43:d4:18:c1:db:65:3e:30:93:0c:6a:5e:e0:
1f:1a:21:a9:ed:85:30:be:47:fa:4c:09:0b:70:f1:
9b:10:90:a7:ff:85:e9:bb:5f:28:25:4e:06:57:c0:
33:1d:01:bf:47:ce:2d:cb:d9:51:7b:bb:3e:c9:8d:
f9:37:6e:b8:ea:36:c1:1c:97:f0:ad:f9:89:ae:63:
be:74:4a:9e:04:e0:55:54:1a:b2:f8:b9:47:f1:9a:
07:62:cc:38:37:30:a9:46:7f:c6:7c:ec:2b:d2:33:
10:b2:36:bd:cf:14:1f:af:44:5e:14:bf:70:9d:1d:
51:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:55:24:88:0E:A5:69:83:C2:77:F6:EF:A4:F6:6E:71:A3:37:CC:97
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/HFUkiA6laYPCd_bvpPZucaM3zJc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.128.0/17
Signature Algorithm: sha256WithRSAEncryption
64:7d:a3:27:08:84:ab:9f:05:9f:12:a7:07:44:ee:f3:81:53:
76:74:ba:a7:31:17:90:6a:36:4d:9c:75:99:84:72:51:f0:99:
d1:17:90:ba:67:17:dc:0b:39:33:1e:c8:69:70:9b:21:c8:eb:
f1:be:ac:1d:62:ac:83:df:27:cd:68:f3:68:32:68:81:2a:a1:
53:aa:d0:57:50:c2:47:e7:54:af:5f:34:19:da:af:b3:c5:d2:
00:99:ab:79:44:2c:f8:e5:d9:7e:8b:21:7c:39:e1:9b:1f:7d:
05:c5:c3:6a:8f:c5:ad:d9:6b:f0:a6:fa:47:65:cf:97:e8:77:
04:06:b1:7e:e5:d8:32:e6:49:ad:70:fd:9e:ab:7a:f0:cf:56:
49:9c:d8:d4:a4:98:ae:9e:58:1d:68:63:37:bb:59:a0:04:6f:
8e:14:a4:fe:08:42:aa:05:39:95:5a:92:98:e3:5a:40:74:67:
02:c9:85:b1:fb:4e:23:c2:5f:44:78:8a:62:05:30:06:1e:93:
cd:7f:8d:23:37:eb:2f:c2:6f:2b:8f:eb:24:a1:bc:30:e3:28:
de:52:a9:e0:4b:ce:2c:c7:f2:b6:9e:74:93:03:ba:0d:4e:ad:
38:f1:04:62:5e:61:b0:30:f5:62:fa:44:6c:4a:36:9e:3e:cd:
4a:b9:6a:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org