Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IDPpmzC7vB47CNOruHcLlqyrLPM.roa
File: IDPpmzC7vB47CNOruHcLlqyrLPM.roa (raw, json)
Hash identifier: GUMrwLuE8bYdUQoJBBBV+nUlMeXYMX0hc4pQYC9iF3M=
Subject key identifier: 20:33:E9:9B:30:BB:BC:1E:3B:08:D3:AB:B8:77:0B:96:AC:AB:2C:F3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BDB
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IDPpmzC7vB47CNOruHcLlqyrLPM.roa
Signing time: Wed 29 Sep 2021 02:38:46 +0000
ROA not before: Wed 29 Sep 2021 02:38:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.116.48.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3035 (0xbdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2033E99B30BBBC1E3B08D3ABB8770B96ACAB2CF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:04:4d:cd:ac:ff:4e:b4:cb:f7:2a:08:1e:d3:
b1:73:af:79:1e:61:71:2a:e7:81:b4:d4:40:39:64:
77:cc:ff:f9:59:e9:62:f1:8d:5b:7e:3e:dd:a3:8a:
b2:7c:f5:f8:79:e9:c8:b7:4b:55:5b:05:d6:d1:4b:
18:f1:a5:3f:26:a0:2b:38:86:cb:2a:81:4a:3d:f6:
c9:f2:67:43:d3:cf:b9:32:fe:a2:6e:9a:54:7f:d4:
28:f3:93:c4:e8:27:65:1d:3c:e8:22:ad:ae:cb:ed:
8c:ac:25:88:82:cf:e4:0e:1e:1e:fd:b0:ad:04:74:
9f:f6:58:ca:b9:59:8d:cc:03:9d:14:4d:86:42:b0:
fd:ad:dd:90:95:96:18:d3:b7:a3:67:5a:0a:57:36:
39:2a:31:f7:59:c3:95:92:5f:65:cf:74:06:bf:0c:
c9:9b:ee:b1:7c:24:bb:d4:25:78:7a:ce:04:4f:49:
e1:85:63:d1:93:27:44:21:1b:df:47:8a:83:88:ba:
42:7b:1b:fa:b7:27:f9:80:07:ea:87:e0:3d:65:14:
64:e3:05:4a:fc:74:6f:7f:de:a2:85:77:ae:bb:b1:
3c:77:da:8d:ac:9a:03:a4:8d:3c:af:7f:70:6e:60:
1b:d5:f1:7f:be:4d:a8:c3:88:bf:dd:f3:70:cb:0a:
34:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:33:E9:9B:30:BB:BC:1E:3B:08:D3:AB:B8:77:0B:96:AC:AB:2C:F3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IDPpmzC7vB47CNOruHcLlqyrLPM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.48.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:fc:fe:cd:93:77:73:1f:30:fb:df:fc:43:50:57:ca:89:f2:
fb:7a:87:9b:5d:50:02:47:8d:63:45:b3:4b:bd:b5:48:6b:5a:
2e:94:fa:69:51:8a:58:23:d0:e1:e7:4b:63:1d:ae:6e:c5:46:
d3:fc:01:4f:33:8b:af:93:23:f8:db:84:01:f3:98:14:1e:ac:
cf:33:71:dd:c1:84:9d:be:e0:8f:c4:7d:3f:c0:95:f5:38:33:
b2:58:9a:dd:06:a4:f3:f7:66:e1:44:46:a8:fc:3c:a6:74:ee:
2b:e9:3a:22:44:74:f0:13:24:b6:ac:a8:b3:cd:3f:de:a8:f5:
59:b7:67:54:ea:cc:c7:2c:9c:7c:97:01:d5:5d:a8:7b:54:29:
4c:e4:43:3c:27:0a:75:d7:7b:e5:77:6b:ed:0d:04:2d:c5:d4:
00:60:b4:01:9a:21:79:af:72:03:56:21:34:ea:81:fa:8e:1b:
e4:f8:87:14:ab:ae:1b:be:82:95:86:60:cd:25:b9:a4:e2:f4:
c0:46:11:8b:35:9a:2f:2e:32:25:49:d9:df:92:f4:31:bc:b9:
7d:a4:82:ae:b9:05:8a:33:3f:d8:10:bb:ec:ab:4d:7d:28:53:
2b:16:1c:29:13:7a:65:c1:33:76:bb:3d:88:38:8c:da:50:41:
35:ad:2f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org