Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IT3VOu6Fd8j__wPPsZHoru0qiGs.roa
File: IT3VOu6Fd8j__wPPsZHoru0qiGs.roa (raw, json)
Hash identifier: gWPMoNVhqxxATWkNHL2WLBvZlQkR9hpZFU83KyF4B7M=
Subject key identifier: 21:3D:D5:3A:EE:85:77:C8:FF:FF:03:CF:B1:91:E8:AE:ED:2A:88:6B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BD5
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IT3VOu6Fd8j__wPPsZHoru0qiGs.roa
Signing time: Wed 29 Sep 2021 02:38:44 +0000
ROA not before: Wed 29 Sep 2021 02:38:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 118.150.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3029 (0xbd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=213DD53AEE8577C8FFFF03CFB191E8AEED2A886B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:64:20:34:5c:4e:85:ee:cf:c6:65:a8:bd:43:
73:13:46:8f:a2:0b:82:b4:a0:e2:50:87:c9:20:e9:
70:39:98:5c:cd:60:1d:e3:e8:23:4f:63:e7:d4:9c:
33:41:1c:a1:cb:fa:5f:88:b8:87:1e:fe:55:af:a0:
cb:6e:88:b5:f0:cc:70:e8:2c:2f:29:07:f0:63:dc:
4e:3d:c1:50:71:8f:99:3f:c2:87:12:e8:77:94:28:
9c:2b:dc:c8:9f:37:c1:16:bb:24:7e:61:9f:b8:8f:
a0:0d:d8:ec:b4:8a:5f:06:90:84:5b:da:fc:0c:f2:
67:2c:d6:37:4e:74:71:39:dd:9a:3d:f8:7e:0e:81:
d6:a5:b7:0d:e4:64:1c:a8:9b:d7:d0:b5:f5:9d:00:
67:10:ab:4a:6d:f8:95:be:ce:40:23:13:e2:17:8f:
71:1a:12:dc:9a:a1:a8:20:cf:ca:63:ef:16:a0:23:
ce:5f:43:f7:87:f9:96:70:9d:43:70:d8:69:25:29:
b3:30:ab:52:58:6a:67:94:0e:cc:e6:84:db:ce:2b:
cb:0e:32:8b:fc:3b:de:9e:77:67:c7:ae:c4:e1:12:
ef:37:8e:ab:96:a5:f0:12:b1:e6:0e:57:8b:f1:74:
05:bf:e7:42:25:87:02:9d:3a:22:9c:1f:d0:4b:03:
ff:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:3D:D5:3A:EE:85:77:C8:FF:FF:03:CF:B1:91:E8:AE:ED:2A:88:6B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IT3VOu6Fd8j__wPPsZHoru0qiGs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.128.0/18
Signature Algorithm: sha256WithRSAEncryption
71:03:12:21:c0:e5:0e:86:81:d2:3b:f5:c9:f0:06:1a:58:f3:
40:62:2d:9b:08:81:d2:aa:f4:04:59:2b:5e:ba:8c:91:0c:b4:
7f:3f:87:f7:87:87:a3:47:17:2a:33:70:30:85:bd:de:e2:f6:
86:1d:94:94:5f:f8:43:29:f7:d7:96:f6:54:36:9d:c9:db:98:
02:15:27:3b:70:01:f3:ec:e9:c3:3a:e1:12:25:3c:9b:20:79:
eb:c3:b6:65:34:ae:85:53:f1:3a:67:61:2e:60:69:0e:cd:11:
93:76:5e:4f:de:0e:a6:26:ff:fd:95:34:53:10:67:df:6d:83:
48:65:3a:d5:9f:5b:5b:36:b1:1f:ba:d3:d4:43:ed:0a:d9:f7:
b7:30:fb:e6:d3:9c:ae:7b:97:db:dd:91:2c:6c:ae:11:d0:56:
db:1a:be:b3:ba:86:ff:f5:90:70:d4:1c:b7:9e:10:55:71:52:
41:5c:71:89:3c:bb:c4:51:91:ce:6b:99:75:81:de:b0:14:cc:
b0:38:0b:95:0d:73:14:4f:ed:27:ae:cd:13:1d:95:4c:42:30:
e5:57:b2:31:66:2e:0d:2f:18:f0:dc:fb:5c:76:eb:6c:ca:c0:
8c:0a:b3:50:cb:ae:86:8c:81:16:8e:d1:bf:71:11:36:58:36:
e0:83:17:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org