Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IUN2jaL9DgDscKUekaawmMevNPM.roa
File: IUN2jaL9DgDscKUekaawmMevNPM.roa (raw, json)
Hash identifier: MGae6XMR+4SBxZ1LYBeTe46Fb9G4CDPpKhG2KdOGGJA=
Subject key identifier: 21:43:76:8D:A2:FD:0E:00:EC:70:A5:1E:91:A6:B0:98:C7:AF:34:F3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DD5
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IUN2jaL9DgDscKUekaawmMevNPM.roa
Signing time: Thu 29 Dec 2022 09:31:54 +0000
ROA not before: Thu 29 Dec 2022 09:31:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10085
IP address blocks: 150.117.112.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3541 (0xdd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2143768DA2FD0E00EC70A51E91A6B098C7AF34F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f6:2b:e0:90:6a:33:07:89:b0:83:55:6c:0a:
64:de:4b:2f:05:51:7a:0c:58:0f:91:73:fb:53:f1:
db:e5:61:5d:a9:e5:33:06:68:44:24:65:37:7a:be:
f4:50:11:f3:38:f8:ab:f4:0d:36:d9:ed:78:fe:f4:
c1:83:f5:84:7f:c7:66:74:2b:75:ed:66:06:97:87:
47:47:c5:8e:4f:01:f1:30:42:bd:fa:0d:8d:a4:3b:
cf:c8:d1:be:46:69:55:e5:5f:b2:43:56:32:46:01:
66:02:43:c8:2a:72:52:38:f9:d2:82:e7:c1:f4:78:
74:71:25:74:0e:98:fc:eb:f1:3f:55:cb:fa:95:38:
3e:19:91:12:5c:52:69:bf:87:49:49:dd:12:b5:d7:
e5:51:62:c2:05:56:81:d5:e8:6d:96:db:bd:1f:48:
c6:39:22:53:e2:b5:ef:54:c0:32:55:e1:67:23:68:
39:c1:79:f8:b5:2c:18:9d:dd:ac:03:a1:e0:6a:5c:
e3:08:e9:ef:27:5f:cb:ac:20:63:62:bc:ac:ee:45:
e8:47:15:d2:4c:ad:08:a9:99:0e:e9:8a:3f:1c:d8:
90:fc:f3:50:2e:04:83:49:5e:cb:45:39:0a:2f:aa:
4d:85:82:65:c8:2f:00:e2:89:dd:2c:19:88:de:3e:
ac:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:43:76:8D:A2:FD:0E:00:EC:70:A5:1E:91:A6:B0:98:C7:AF:34:F3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IUN2jaL9DgDscKUekaawmMevNPM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.112.0/21
Signature Algorithm: sha256WithRSAEncryption
25:94:37:9e:55:d1:51:36:5f:f3:47:d0:f5:1b:93:79:e5:12:
98:55:8d:77:89:e4:12:60:10:aa:35:ba:84:2e:78:18:cf:01:
84:46:ec:d2:06:2d:51:10:9d:10:fa:f0:ea:bb:0f:fb:7b:ff:
97:6c:9d:30:d9:10:29:d9:80:91:e6:63:23:5b:5e:a3:76:59:
4c:c7:87:14:1d:08:84:ef:10:e5:c6:22:06:90:85:65:dd:25:
09:7b:b2:8d:44:ac:4f:7d:d5:95:2d:70:7e:80:4e:5c:0c:f2:
bd:61:06:a6:59:fb:e9:a4:25:15:19:13:34:f4:94:a4:06:8b:
1c:96:68:e4:fe:4e:84:bf:ba:03:1b:d5:60:96:05:b6:6c:f9:
55:ad:73:a3:34:d9:a3:f4:fe:e5:32:1e:bf:1c:ff:dc:03:18:
62:76:6e:ea:88:82:8c:0f:66:7f:f0:42:d2:9c:b3:a0:67:81:
1d:ff:23:8e:d3:c7:60:a9:53:16:bb:65:65:57:66:8b:0a:c9:
d7:44:d8:0f:47:11:59:5e:45:14:c0:72:65:f9:3f:c1:4e:cf:
d7:a9:c2:81:dc:d0:5d:8b:ed:90:fe:c4:4f:3f:90:f5:3c:72:
ed:f7:c3:ad:17:8b:97:a6:b3:86:03:7a:77:f6:e2:af:33:b2:
fb:c2:6a:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org