Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IAg5Kip7C4XtTcINCn4j5bErYxE.roa
File: IAg5Kip7C4XtTcINCn4j5bErYxE.roa (raw, json)
Hash identifier: JDIrhJQCVyEYXSDbFrKVMHlC9CLFjgtz8xPTWX5KrgA=
Subject key identifier: 20:08:39:2A:2A:7B:0B:85:ED:4D:C2:0D:0A:7E:23:E5:B1:2B:63:11
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0843
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IAg5Kip7C4XtTcINCn4j5bErYxE.roa
Signing time: Tue 29 Sep 2020 10:02:15 +0000
ROA not before: Tue 29 Sep 2020 10:02:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.236.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2115 (0x843)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:15 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2008392A2A7B0B85ED4DC20D0A7E23E5B12B6311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:66:a4:dc:42:98:b2:68:91:fc:b5:c1:e2:2e:
d2:22:9c:ba:73:b2:16:1e:f0:02:96:39:2d:95:00:
65:8f:bf:73:30:93:9f:33:74:a8:e8:3b:dd:06:46:
8d:da:82:9c:6e:c9:9a:5f:f9:23:4e:a3:b5:52:9c:
34:96:6c:de:6b:7e:17:f9:6c:f2:fe:2b:d8:0d:54:
f5:5a:8c:fd:22:7a:e2:c2:cb:ab:e7:aa:6a:69:8d:
55:77:21:8b:7f:eb:f0:ba:40:f8:99:34:39:bc:cb:
16:81:ce:6d:39:60:ee:9a:a3:b0:ff:9f:65:0d:ce:
c5:ca:aa:ff:cf:e5:03:d8:34:73:cf:8d:6b:92:39:
9b:04:35:8f:4f:76:56:18:a8:00:f5:13:c7:67:f2:
dc:47:4b:0c:5b:f4:77:23:09:12:5f:e8:cf:c7:36:
f5:5e:0b:a9:5e:62:1a:f9:7e:94:d1:39:ed:62:76:
9d:05:fc:5e:97:4a:cb:1c:44:62:7e:75:6a:ac:26:
00:26:22:b5:88:9e:8b:50:3c:a2:93:ca:78:41:5c:
a2:29:79:83:1a:a8:a5:20:ad:d2:94:bd:3f:11:0f:
f0:e1:90:d9:7e:a7:db:84:2c:32:d7:64:55:1d:85:
cc:95:3b:31:33:23:5c:c0:c4:fd:ae:a6:08:c1:1f:
5d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:08:39:2A:2A:7B:0B:85:ED:4D:C2:0D:0A:7E:23:E5:B1:2B:63:11
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IAg5Kip7C4XtTcINCn4j5bErYxE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.236.0/23
Signature Algorithm: sha256WithRSAEncryption
50:92:7f:8b:0e:0c:78:b1:c8:fa:ef:ac:70:4b:9b:17:0d:1d:
9f:78:07:47:07:53:b1:19:ee:61:de:51:52:ca:33:15:18:0a:
b2:31:80:bf:a4:20:ab:fd:c5:82:f2:a8:6e:d3:66:83:ac:bb:
6d:5c:dc:31:db:8f:36:d9:90:b5:e0:6b:c2:9c:0c:08:84:40:
01:c5:eb:d5:ac:99:90:ed:81:2d:c8:6c:52:d4:55:39:ac:5b:
32:95:24:9b:d7:ae:96:ad:f2:6f:71:7a:2c:be:3e:2d:1e:b9:
a7:62:a7:33:bc:f4:4e:38:ae:08:8f:e1:88:c6:15:81:62:b0:
56:50:32:1c:58:38:89:96:68:20:df:88:86:1e:1d:1d:a2:1a:
38:34:dc:36:c7:d1:18:6b:44:ab:49:de:7f:b5:5c:5a:a3:7d:
77:66:19:bb:23:23:9e:20:7d:08:65:a6:61:5c:85:0d:96:f2:
4d:cf:1a:9f:90:52:19:b0:88:cc:fa:ba:cf:fd:72:3e:cc:eb:
19:b9:09:05:06:1b:56:7d:69:c5:43:93:57:b4:f3:95:8b:46:
62:73:64:7f:73:14:53:77:ca:55:48:4e:ac:0a:82:47:8c:d4:
6a:18:99:8d:5f:f9:3c:23:c5:77:3d:47:5a:1d:3e:cb:37:a1:
d4:4f:7f:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org