Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/HS50b26BSBU5nMxanls6KmfygYQ.roa
File: HS50b26BSBU5nMxanls6KmfygYQ.roa (raw, json)
Hash identifier: BsWMWLxyB07TTyNr23tXMYMp1oSQ9dsYB4p3pplY6Vs=
Subject key identifier: 1D:2E:74:6F:6E:81:48:15:39:9C:CC:5A:9E:5B:3A:2A:67:F2:81:84
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0871
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/HS50b26BSBU5nMxanls6KmfygYQ.roa
Signing time: Tue 29 Sep 2020 10:02:28 +0000
ROA not before: Tue 29 Sep 2020 10:02:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 150.117.104.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2161 (0x871)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1D2E746F6E814815399CCC5A9E5B3A2A67F28184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bf:6d:fc:79:c6:01:6b:5d:f6:9a:36:a1:20:
29:79:77:5b:b9:03:bb:0f:57:89:60:1a:7c:44:b7:
4b:76:fc:b3:83:fa:dc:2a:79:e3:cc:e6:d3:c6:86:
52:a4:a2:6a:28:6f:ad:b4:71:09:e3:04:dc:42:22:
dd:77:41:8b:a1:54:f3:6e:1a:d4:b4:7d:7c:43:69:
af:eb:80:ca:d3:59:a9:ac:7f:25:6c:51:be:e5:e6:
02:91:dc:8e:84:fe:bc:54:91:e5:2b:1d:04:94:5a:
6b:ea:fe:2f:f6:40:f6:73:8c:fc:cb:4e:87:d6:1c:
21:79:dc:d2:f9:e5:fa:8a:50:b9:d9:d6:2d:23:d4:
c6:21:21:b1:02:49:a0:8a:f5:ce:69:1b:1e:79:a5:
b5:db:b1:c4:ad:9c:b9:02:eb:a7:7c:29:ff:c9:b7:
a1:e3:47:04:f4:2b:c1:86:f2:ea:04:2a:46:40:37:
c0:70:ad:ab:c6:23:5a:a7:97:13:c7:16:93:a5:ce:
42:cb:d3:3e:a2:5f:28:4d:ec:00:7b:11:7b:41:58:
fd:65:e6:ce:09:b5:d5:93:ff:c4:9b:21:44:ea:9c:
53:c9:fd:62:7f:15:0d:4f:a2:d0:03:12:a6:41:ef:
c6:34:92:ec:4a:34:a4:f5:fb:a7:62:da:28:00:d1:
aa:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:2E:74:6F:6E:81:48:15:39:9C:CC:5A:9E:5B:3A:2A:67:F2:81:84
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/HS50b26BSBU5nMxanls6KmfygYQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.104.0/21
Signature Algorithm: sha256WithRSAEncryption
0f:1c:51:ad:fb:0f:2b:f6:fb:f6:8d:4b:90:9f:29:9d:fc:13:
3a:11:34:94:ca:4f:a8:6b:60:30:97:46:3d:6f:4e:32:50:29:
26:fd:9a:01:2e:3f:78:a8:a2:4e:e9:a7:cf:5c:be:41:44:c9:
df:e9:85:98:14:07:fe:7f:a4:76:29:6d:2e:53:0f:c1:fb:60:
32:8f:ff:8e:08:37:9e:f0:56:84:bd:db:1b:ae:a5:89:11:d1:
6c:40:c7:6c:51:aa:68:6b:24:8c:d6:40:2d:e5:a8:2b:6e:d3:
93:0d:4f:9e:a1:9d:78:1d:27:3e:2b:8f:85:04:5a:bf:26:5d:
2b:d0:12:65:40:99:83:58:17:5b:28:fd:b7:4e:c8:62:a8:13:
b6:17:95:78:90:59:59:fc:89:35:55:10:7b:bb:3c:ca:b6:a9:
19:ca:44:ca:47:12:c8:6b:b2:65:46:8f:58:d4:8a:6e:9c:1c:
81:37:73:62:ef:c8:7a:59:7f:e0:54:33:7d:34:2a:ee:1f:c1:
d0:d6:cb:6f:17:df:0f:f9:95:d0:42:b3:c6:bd:3e:17:f5:8b:
52:21:5a:aa:11:6c:dc:f2:af:c8:41:f1:1c:2a:be:62:03:32:
54:a1:89:df:ca:d8:71:b8:1a:8f:5a:e1:9f:98:c2:bf:fc:a8:
58:5f:4e:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org