Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IUgjDFXNuVpBPckaBYPM7jFMskY.roa
File: IUgjDFXNuVpBPckaBYPM7jFMskY.roa (raw, json)
Hash identifier: tj2ULmjwcXzc5+5ANNOCpXBLZtCtFgr9jf8zNPEP9K4=
Subject key identifier: 21:48:23:0C:55:CD:B9:5A:41:3D:C9:1A:05:83:CC:EE:31:4C:B2:46
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 089D
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IUgjDFXNuVpBPckaBYPM7jFMskY.roa
Signing time: Tue 29 Sep 2020 10:02:41 +0000
ROA not before: Tue 29 Sep 2020 10:02:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131600
IP address blocks: 150.117.120.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2205 (0x89d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2148230C55CDB95A413DC91A0583CCEE314CB246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b7:b9:1b:f7:e7:ef:a3:f3:37:4d:1b:4d:36:
60:31:61:27:eb:85:6d:bc:39:6e:c6:38:ef:d2:b0:
a3:87:65:c6:3c:b7:cc:ee:f6:f3:4a:56:d3:03:34:
3e:45:aa:13:cf:17:c5:56:db:9c:14:d5:0e:ce:af:
40:e6:e0:6d:17:f1:68:db:e2:00:dd:d0:c4:f7:7f:
01:ee:bb:e6:b4:25:88:3c:34:32:4d:35:8b:84:ca:
b8:77:7c:26:0b:74:37:2d:59:d3:4e:36:a1:63:14:
b6:b0:8a:67:ad:0f:a2:75:5c:17:98:d2:f2:3f:ef:
2c:eb:54:70:1c:22:2a:a0:44:39:72:ea:89:86:c6:
4c:8d:e5:ed:20:0e:32:e3:d4:39:94:3d:e8:6b:a0:
f4:db:92:ae:c1:33:15:ae:c8:c6:d6:32:9b:67:52:
df:b1:d5:a1:1a:d1:90:5d:7b:0c:fe:03:58:01:c6:
82:fa:e2:80:33:39:f0:be:74:cd:81:6d:5e:5a:9e:
51:9c:2a:17:b9:2b:49:41:b9:e8:f7:1e:b8:60:33:
26:26:7a:ac:da:20:09:ef:26:fb:b8:03:08:e0:c8:
7f:cd:03:6c:87:8d:8d:ac:6a:bd:f6:96:ce:7d:c0:
1b:81:2d:8f:3e:1c:95:f2:05:f3:4c:7d:de:7c:bb:
68:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:48:23:0C:55:CD:B9:5A:41:3D:C9:1A:05:83:CC:EE:31:4C:B2:46
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IUgjDFXNuVpBPckaBYPM7jFMskY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.120.0/21
Signature Algorithm: sha256WithRSAEncryption
2a:7e:89:72:a0:65:ed:53:d2:bd:f7:60:93:57:39:6c:f1:01:
37:41:3a:cd:fa:ad:36:92:3f:48:b2:4b:53:4a:10:c0:8b:f1:
58:3b:ad:da:3b:99:a6:96:41:26:99:3e:6d:f9:1c:27:0b:a5:
62:53:8d:8a:4a:89:cd:a1:42:5d:e6:28:31:59:2f:1a:8f:33:
08:34:86:65:f9:ca:5c:2d:de:7f:69:b1:4e:6d:85:08:5f:76:
f8:1b:c2:b5:9e:ba:02:14:20:4a:22:f1:8d:00:62:58:90:d7:
9e:34:00:76:9f:bb:2e:8a:83:cd:0f:0a:67:fb:c3:01:f3:87:
6d:79:44:2d:61:57:af:b6:24:53:d4:71:25:24:80:38:3d:e0:
d3:ce:bd:06:fa:26:54:ee:a7:b1:03:2d:d0:3d:11:13:a3:8a:
4a:9d:89:9d:a3:0c:7d:7c:be:10:c9:a1:37:b9:d8:3f:d3:ac:
0f:58:d5:d7:20:59:fb:0a:ed:41:46:4a:d5:02:a6:33:05:f1:
fb:3b:37:86:cd:5b:96:74:e3:8f:c5:79:8d:28:cc:eb:1f:91:
71:c9:e7:ed:3a:24:3a:62:17:aa:f0:01:6e:d5:7e:f3:a3:d1:
ee:63:b9:e7:31:54:dd:e2:35:76:93:c7:12:ee:95:65:68:7b:
24:4f:cc:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org