Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IK2pjNtqG1_AcZxgw8bShqNjJYc.roa
File: IK2pjNtqG1_AcZxgw8bShqNjJYc.roa (raw, json)
Hash identifier: svQ3cCMSoKRG8523cTcnYpnXG4e8y69X7o8x3NXFgNo=
Subject key identifier: 20:AD:A9:8C:DB:6A:1B:5F:C0:71:9C:60:C3:C6:D2:86:A3:63:25:87
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IK2pjNtqG1_AcZxgw8bShqNjJYc.roa
Signing time: Thu 15 Sep 2022 02:39:24 +0000
ROA not before: Thu 15 Sep 2022 02:39:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=20ADA98CDB6A1B5FC0719C60C3C6D286A3632587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:74:86:02:b4:35:f8:fe:1b:f8:be:65:dd:6f:
3e:13:b8:ba:a6:82:fb:65:74:3f:74:3a:a3:a0:58:
a3:df:35:ad:bb:26:2f:04:08:8f:8e:27:eb:8d:50:
7c:b9:bd:68:18:2b:2d:ab:d0:6c:d8:7e:2f:bd:60:
68:04:ff:8c:69:e7:fd:6a:12:5e:87:72:aa:5a:b1:
10:b5:f3:13:13:f9:e1:5a:72:6e:0d:a1:ce:b7:56:
4c:d9:f8:42:95:a7:c4:1d:05:6e:a6:d2:70:ea:a8:
eb:44:79:de:fa:6a:72:7d:00:00:b0:97:ab:be:bf:
34:47:22:fb:b0:61:e2:a0:3f:21:8f:fa:e3:95:d4:
cc:37:66:66:30:31:c0:13:ad:3f:97:cf:1a:11:6e:
56:21:ca:0f:f7:17:40:18:f2:11:91:c5:89:3e:f8:
74:c4:e0:9e:28:b6:91:40:7a:8e:33:29:93:66:e7:
ff:73:aa:36:62:94:6e:68:48:29:0c:05:4a:bc:c2:
5e:f6:9c:d8:e4:dd:b1:d7:9b:a0:14:fe:cf:71:f3:
1e:ab:d3:dd:ba:c6:2e:3f:b2:2c:ea:e0:fc:8c:7a:
7c:59:2a:16:71:a8:99:fb:9b:9a:02:f4:6a:d5:5a:
a3:0e:60:10:22:25:98:97:45:5b:3e:c5:e9:42:1d:
c3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:AD:A9:8C:DB:6A:1B:5F:C0:71:9C:60:C3:C6:D2:86:A3:63:25:87
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IK2pjNtqG1_AcZxgw8bShqNjJYc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.140.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:24:0a:7c:6b:70:74:98:86:b7:34:60:fb:3c:4c:67:27:1c:
be:9b:16:b8:bc:af:50:01:a6:92:a0:ef:52:fd:e6:d2:be:ca:
cb:f3:8b:71:ae:0c:c3:7c:ab:95:57:ff:1f:7b:b1:d3:89:6e:
ec:6d:b2:98:fa:d8:86:d3:d5:3c:37:dc:3d:46:fc:4b:3b:d7:
d0:85:4e:39:fe:af:0f:2b:31:c4:c5:68:9c:87:16:53:2a:42:
d5:79:30:76:aa:61:12:08:15:5b:84:e5:fa:30:0d:8d:22:5e:
da:0e:c0:26:a3:bb:41:7f:db:9c:60:0f:af:05:79:15:f9:88:
bc:01:6e:da:41:d8:98:89:e9:53:b4:ef:fa:a4:9b:bc:3f:0e:
f6:42:b9:fd:44:92:5e:f9:39:d6:9b:92:b9:0f:3e:b5:a2:ca:
8b:aa:d7:14:ca:8c:3f:37:cf:37:22:d4:1f:ad:47:15:44:80:
82:62:01:4a:a4:09:2a:a4:9d:30:d1:b4:7f:27:ab:24:52:53:
c1:f0:fe:2e:df:9c:a8:83:fd:f6:69:1d:0e:da:6c:b3:ec:8d:
f7:fc:33:2b:37:36:7c:15:eb:ad:e7:63:f8:f2:f3:56:fa:05:
bb:2f:54:97:ad:7f:8c:51:27:cc:99:e1:a4:59:03:3b:53:16:
4f:97:8a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org