Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IBPFB41zLejgzm0JKJcHZSYWJ1s.roa
File: IBPFB41zLejgzm0JKJcHZSYWJ1s.roa (raw, json)
Hash identifier: /GT1crZwb24t+EJXMM+GJ1iGs9wFYWu+Bj0jXT29IU4=
Subject key identifier: 20:13:C5:07:8D:73:2D:E8:E0:CE:6D:09:28:97:07:65:26:16:27:5B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DB5
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IBPFB41zLejgzm0JKJcHZSYWJ1s.roa
Signing time: Thu 29 Dec 2022 09:31:46 +0000
ROA not before: Thu 29 Dec 2022 09:31:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10085
IP address blocks: 223.26.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3509 (0xdb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2013C5078D732DE8E0CE6D09289707652616275B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d2:6d:09:bc:97:6e:9b:01:29:e8:15:f8:d7:
56:4d:c3:d1:14:0b:1c:ce:e2:55:92:70:db:1b:85:
9c:98:ff:db:9c:41:6b:27:1b:01:aa:1f:8a:46:19:
2b:29:46:12:16:00:2a:8c:36:e7:af:6c:91:eb:6b:
4b:4a:5a:d2:d6:44:67:32:d6:a7:69:3a:96:61:90:
bf:77:b1:4a:12:ff:2d:70:b5:51:d7:79:d7:30:b3:
34:3e:03:e5:1c:8c:7f:ce:2a:af:39:5d:10:33:07:
b0:73:3c:11:be:e1:34:ea:b2:e7:34:b8:c3:d1:1c:
0c:82:3c:b1:1b:31:6c:15:c1:b8:6f:6d:73:03:4f:
03:92:10:3a:9b:62:b9:1d:83:f0:c5:06:77:95:ce:
2c:d5:2c:02:d1:94:32:3b:1e:bd:17:db:89:18:d0:
14:55:61:91:18:aa:45:6f:f6:cc:9b:59:8b:11:30:
52:a0:ed:11:4c:dc:f4:62:5d:e8:5a:c6:3b:71:03:
87:dd:a5:01:e7:dc:bd:07:cd:8e:36:6e:67:ee:e2:
89:7b:3a:56:8d:47:dd:b6:96:01:7d:2c:e0:ba:9e:
fe:a5:63:26:c4:8f:24:54:7a:df:3f:a0:9f:4b:c6:
6d:6b:a1:26:76:27:01:12:ff:52:f5:19:00:27:b1:
a0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:13:C5:07:8D:73:2D:E8:E0:CE:6D:09:28:97:07:65:26:16:27:5B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IBPFB41zLejgzm0JKJcHZSYWJ1s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.88.0/22
Signature Algorithm: sha256WithRSAEncryption
80:8e:3e:41:75:6c:de:c5:8a:54:d3:6d:93:22:99:75:71:08:
c3:3f:1d:48:67:fd:84:df:19:e3:64:f9:ca:1d:c7:a8:8f:ee:
a6:00:31:f7:d8:93:76:aa:22:bc:29:a0:3d:c7:1f:bc:c0:24:
aa:5d:18:15:5a:e2:91:00:90:83:0a:df:de:c2:79:1d:ac:32:
b4:90:77:e6:ab:20:a2:1e:c0:8b:63:21:76:07:2b:fd:9c:ab:
12:6f:7c:92:73:2c:bf:8b:b7:ae:f2:33:13:1e:56:63:92:19:
ac:24:30:c0:69:0b:2a:63:2d:40:b1:43:1b:ba:0c:27:bc:b9:
3e:49:25:09:3c:ed:f3:6d:4d:5e:4c:ab:62:b6:86:06:48:57:
7f:4a:a0:39:95:5b:53:0c:65:28:0f:7c:52:a4:9a:45:ec:1c:
c4:1b:91:b8:51:5e:7a:cc:bf:4f:d8:a9:a8:c1:f7:77:81:dc:
28:e8:04:70:e1:ae:c0:cb:93:e2:1f:99:cb:a5:e8:6e:4b:aa:
6b:bb:27:d4:7d:1d:27:f6:fa:e6:c5:51:e6:aa:cc:13:fb:4e:
05:b9:80:75:0c:96:f9:6e:72:7e:2e:5f:f4:1f:f9:db:07:42:
7e:75:b3:69:ad:4a:d9:10:6f:2d:c1:7e:56:7c:ba:88:04:24:
2f:0a:2e:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org