Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/HQGmpuQbqSRxc1nDrUuC27Z9MgU.roa
File: HQGmpuQbqSRxc1nDrUuC27Z9MgU.roa (raw, json)
Hash identifier: SttUyB5lcs/+YBNtlGgBGSB7CRHKvrcnxGzvrCoW/RE=
Subject key identifier: 1D:01:A6:A6:E4:1B:A9:24:71:73:59:C3:AD:4B:82:DB:B6:7D:32:05
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C14
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/HQGmpuQbqSRxc1nDrUuC27Z9MgU.roa
Signing time: Wed 29 Sep 2021 02:39:01 +0000
ROA not before: Wed 29 Sep 2021 02:39:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 223.26.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3092 (0xc14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1D01A6A6E41BA924717359C3AD4B82DBB67D3205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2a:c2:3f:da:12:6f:f2:22:75:0e:03:0f:ef:
3c:7e:79:99:53:03:76:b4:95:6c:7d:9f:6e:c0:65:
c9:b4:f3:27:c5:d5:33:83:6c:6b:af:76:49:e7:7a:
03:0d:ba:93:dc:66:72:c7:8a:a3:11:03:e6:b1:f8:
70:f8:45:d0:ad:47:09:37:32:8d:ee:74:77:a7:e5:
43:32:16:4e:2c:88:21:79:0c:c4:b9:44:ef:6e:7d:
20:1e:86:82:29:34:e0:1c:33:fa:f0:6f:0a:78:7c:
88:c8:b6:74:56:7e:00:93:22:d7:31:61:5e:87:6b:
39:bc:13:c2:32:82:cb:63:4b:6c:8e:ba:ef:20:ba:
b0:12:ea:cc:46:37:17:86:fe:6f:5e:65:78:50:a2:
ff:56:9b:4b:c9:ea:f1:86:cb:b5:a0:a3:9e:61:50:
d2:35:04:1c:a0:b9:96:0b:d0:24:0e:67:f1:69:1d:
01:a0:cb:0b:c8:54:33:7d:46:01:d8:e5:81:41:2a:
6a:98:72:24:88:ad:97:16:58:c8:d6:c5:a1:f4:bb:
4f:49:54:08:92:0f:1d:d4:3a:27:c8:46:20:ab:42:
61:46:f1:31:1d:ef:6a:f7:cb:c5:59:23:2f:fe:87:
9c:6b:e0:ee:49:7e:a0:e5:b7:f1:0a:82:66:7b:85:
65:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:01:A6:A6:E4:1B:A9:24:71:73:59:C3:AD:4B:82:DB:B6:7D:32:05
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/HQGmpuQbqSRxc1nDrUuC27Z9MgU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.70.0/24
Signature Algorithm: sha256WithRSAEncryption
50:55:c2:bd:82:1f:d7:4e:9f:ad:0c:42:b5:7e:f8:25:e6:5b:
b7:09:b0:a2:73:15:35:d3:e1:8a:f8:73:c5:a1:66:64:61:f2:
2c:68:2c:ab:6c:68:d8:72:14:48:bf:ee:e0:5d:a3:bf:b4:55:
c5:59:e4:b9:42:e8:fd:0f:f8:7f:bc:4f:81:96:28:34:c2:c8:
d9:5f:b1:5c:c0:90:91:ac:9f:ec:74:94:3c:72:0e:d8:46:70:
69:a8:a5:42:30:f2:5e:a2:e3:2f:d3:11:7e:65:3f:4d:f3:cb:
01:72:88:4e:d1:90:8f:46:a1:77:68:b9:82:c3:2f:87:b5:29:
82:43:c9:2b:48:54:37:35:df:d2:48:c4:df:39:f0:02:b9:c8:
54:26:48:6b:96:86:02:77:8c:35:aa:8a:4e:0b:94:94:0a:c4:
b5:8b:4d:f3:18:0c:32:b7:ba:d9:f0:99:2b:f6:d3:b5:fd:ed:
7d:65:f1:3a:4f:c5:be:92:29:61:0f:c9:e2:a7:0d:37:9a:62:
52:52:71:e1:3e:53:72:30:d3:18:ae:c5:65:67:6e:30:38:1e:
06:fa:98:f2:58:5f:60:89:75:98:99:36:5d:41:e7:b6:be:10:
f0:39:22:31:06:cc:b7:ae:48:5b:9c:db:0e:5d:b5:06:91:7d:
6b:df:0e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org