Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/HtrVMXlX5cc1xPRahCz6lwRMg6g.roa
File: HtrVMXlX5cc1xPRahCz6lwRMg6g.roa (raw, json)
Hash identifier: LTjeiJh7AwH+BvISTCvpmlpVvqPWS+UhegVpPGh5UoE=
Subject key identifier: 1E:DA:D5:31:79:57:E5:C7:35:C4:F4:5A:84:2C:FA:97:04:4C:83:A8
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/HtrVMXlX5cc1xPRahCz6lwRMg6g.roa
Signing time: Thu 15 Sep 2022 02:39:23 +0000
ROA not before: Thu 15 Sep 2022 02:39:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10085
IP address blocks: 203.163.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1EDAD5317957E5C735C4F45A842CFA97044C83A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b6:fa:e1:eb:af:fc:1c:a7:15:b2:b5:84:87:
71:8a:e0:f7:e1:e5:c3:4f:a3:23:60:6d:56:63:6e:
1e:95:85:7c:df:fb:d5:f2:1a:19:4f:3c:6f:72:18:
0d:97:09:c7:f6:51:cb:aa:3f:ea:44:50:b1:9a:b9:
56:0f:d0:3a:88:02:29:29:1f:2a:b5:b6:f7:6f:9a:
ef:22:d1:c4:cc:42:ee:5b:8c:3a:c1:dc:c7:49:8d:
c9:8e:64:e7:ca:a4:22:7a:d1:21:f3:87:1e:e9:9f:
a5:88:f3:7f:ca:f7:95:1e:94:dc:33:84:eb:bf:1b:
b6:78:0c:e0:3a:64:f5:ba:19:bd:54:10:8f:77:0e:
25:ee:ff:d9:c8:21:94:ec:71:9f:25:cd:ea:be:da:
e0:40:ad:73:72:d5:21:d5:80:5b:19:62:dd:7a:9c:
02:32:3f:d2:42:8b:d4:7f:91:c5:4d:e5:3f:d2:62:
4b:4f:10:d2:3a:40:f4:88:f3:5e:ab:2f:9b:4a:9e:
11:13:8a:06:a0:7e:44:37:8c:92:0e:71:cf:cf:c4:
3b:57:30:12:02:a3:a3:1b:40:3c:84:a5:2f:55:cd:
0a:e7:89:4d:9c:65:01:32:19:de:9e:3e:8e:02:43:
0c:ac:91:91:cb:83:4a:04:54:84:a7:ab:97:70:61:
16:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DA:D5:31:79:57:E5:C7:35:C4:F4:5A:84:2C:FA:97:04:4C:83:A8
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/HtrVMXlX5cc1xPRahCz6lwRMg6g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.204.0/22
Signature Algorithm: sha256WithRSAEncryption
92:fe:ad:75:cb:cb:0f:93:06:22:17:94:03:70:17:81:8d:3c:
7f:d8:85:87:f4:64:c8:7c:74:e8:8b:21:b5:88:bf:93:2e:d8:
ba:4d:38:eb:19:02:41:68:64:f2:22:64:37:27:16:6c:9e:c1:
b3:82:f0:a6:3f:68:ed:73:03:87:fc:dd:9a:8d:a9:d3:a4:18:
bb:36:33:22:ba:e9:f7:23:2b:e0:11:90:ea:8b:49:71:4a:b8:
64:e7:fa:88:0b:bb:a3:09:d9:58:d2:f9:fb:6b:a7:b0:59:3e:
12:b5:a7:ab:d4:fb:66:8e:d6:fb:78:51:3b:a6:ab:94:c9:72:
38:b3:d2:40:31:94:f2:ec:fa:bf:09:58:bc:30:af:14:c3:42:
40:13:d6:d4:6b:b1:e3:cf:30:ea:da:9c:dc:f6:df:1f:78:14:
3e:ab:b7:24:ac:79:c6:11:1e:2e:54:8a:ad:f2:ad:fa:83:1c:
73:4e:45:04:a0:f3:4d:51:fc:37:fd:05:4d:2f:38:ae:04:9c:
99:5c:96:c5:40:e4:e9:de:cc:a2:b5:59:6e:04:58:52:36:71:
97:bb:2b:83:af:e9:9a:3c:87:5d:62:6d:73:9e:28:45:7f:7a:
5b:13:d4:34:8d:5c:a0:85:fb:f6:a1:63:75:e9:be:f9:b8:bb:
b3:d6:b6:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org