Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IKzaviPKqiGTZHa3D8pb9ehqHrw.roa
File: IKzaviPKqiGTZHa3D8pb9ehqHrw.roa (raw, json)
Hash identifier: 9zJwnC5SjWSc0nRVUR+jUfMcgbtAPS/z2BKPUdXOLmM=
Subject key identifier: 20:AC:DA:BE:23:CA:AA:21:93:64:76:B7:0F:CA:5B:F5:E8:6A:1E:BC
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IKzaviPKqiGTZHa3D8pb9ehqHrw.roa
Signing time: Thu 15 Sep 2022 02:39:02 +0000
ROA not before: Thu 15 Sep 2022 02:39:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10085
IP address blocks: 223.26.96.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=20ACDABE23CAAA21936476B70FCA5BF5E86A1EBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:37:a2:eb:8b:30:d1:7e:6f:c8:5b:48:01:10:
5a:3a:f1:ce:00:e0:d4:57:b4:70:7f:f1:af:14:8b:
34:99:ad:39:fa:a8:ea:12:2c:3a:50:77:ef:e3:6e:
f3:d7:a7:70:61:78:41:d3:f7:a6:42:27:18:16:e3:
5d:ed:7a:e4:6e:43:51:3a:59:61:ce:2d:f3:2c:77:
61:09:16:73:36:7d:5f:8a:06:73:24:d3:dd:98:8b:
7b:9f:0e:ad:78:d2:63:90:61:57:e3:7a:1a:3d:26:
3c:7f:e1:49:1a:51:a6:79:9c:71:11:5c:47:2e:f1:
6b:01:d7:ec:ad:6d:2c:53:36:6d:00:fa:1a:37:5b:
84:a4:b8:39:71:e6:a9:e7:02:c4:af:8a:41:0d:43:
ed:5f:21:50:80:8a:0c:05:0a:67:44:98:9d:bc:88:
69:ed:2c:2b:74:73:d8:af:b5:9d:c9:12:c7:8e:e8:
81:10:b4:c8:e9:22:94:68:a3:5a:75:ab:31:dd:4a:
2e:dd:98:fd:c0:c3:24:26:99:42:95:58:71:34:28:
a9:23:8d:d2:44:c1:a9:25:64:97:a6:aa:af:ae:d5:
4e:f3:21:7d:b4:46:14:33:14:5a:83:06:90:45:1c:
a7:7e:cf:ec:f3:ef:fc:b1:ea:33:f6:4a:8e:7b:fa:
72:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:AC:DA:BE:23:CA:AA:21:93:64:76:B7:0F:CA:5B:F5:E8:6A:1E:BC
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IKzaviPKqiGTZHa3D8pb9ehqHrw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.96.0/21
Signature Algorithm: sha256WithRSAEncryption
3f:a8:81:3f:49:b3:ad:0c:91:53:dd:84:ef:42:ce:90:01:11:
c8:85:b9:32:ee:b2:1a:36:f7:3e:c6:a0:55:19:dc:1f:a0:71:
85:95:96:a4:74:20:07:53:26:09:60:6b:a1:8d:3e:1e:48:9a:
d6:0a:7d:e5:ca:a9:bd:e2:c3:eb:7f:23:ed:29:75:b2:a7:fc:
cb:fb:5f:f2:4d:0c:27:cc:d7:f2:63:bf:67:91:5e:5a:55:c3:
9e:89:81:42:d1:9d:7e:4d:b5:ee:74:45:f5:e6:95:5c:6e:63:
50:d6:bb:98:b2:82:34:08:9b:f1:30:8b:00:70:30:cc:8d:6a:
de:54:8c:1a:a9:83:fa:40:68:5f:11:59:5c:bd:a5:05:dd:55:
58:8b:d1:08:03:aa:31:ea:89:fd:16:b7:75:76:81:05:4e:55:
41:06:5e:4a:06:c7:f6:92:16:57:30:15:76:6f:d9:63:ac:0d:
22:7b:43:57:02:fc:f0:b5:10:c9:54:7a:75:c6:a4:1a:ae:6e:
ba:96:c2:c8:0c:e3:56:e1:16:8c:74:7c:ac:07:4f:d8:b0:dd:
1b:5b:2b:0b:9d:1b:6a:1e:ee:c4:1e:a9:45:25:29:c4:07:23:
58:aa:ee:93:70:f6:9e:7e:56:bc:67:78:dd:29:7a:87:da:ae:
b0:bc:e8:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org