Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ijhz5ij6yWVmW_uSoOK-N9z21zI.roa
File: Ijhz5ij6yWVmW_uSoOK-N9z21zI.roa (raw, json)
Hash identifier: 8G4zTEOB8kEbItEnBnX1ntpyoZ4AmAhSb0Hr56y5ng0=
Subject key identifier: 22:38:73:E6:28:FA:C9:65:66:5B:FB:92:A0:E2:BE:37:DC:F6:D7:32
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A92
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ijhz5ij6yWVmW_uSoOK-N9z21zI.roa
Signing time: Sun 07 Feb 2021 11:50:30 +0000
ROA not before: Sun 07 Feb 2021 11:50:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 150.117.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2706 (0xa92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:50:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=223873E628FAC965665BFB92A0E2BE37DCF6D732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7e:f5:70:eb:88:5c:29:87:b0:b1:43:0f:41:
6b:6d:fa:f2:48:22:00:29:9f:3e:51:fa:a7:88:25:
ed:5e:e1:d4:9b:77:cd:34:cc:2e:21:7d:1f:69:0b:
d9:cb:51:3e:cb:39:a4:c5:83:00:04:81:6b:54:86:
b3:e9:37:f9:e3:40:b2:9e:65:1c:a8:04:91:1e:f6:
1d:f1:db:8c:49:5b:45:ce:e6:ca:e8:a3:ea:b1:3a:
20:75:0b:ee:52:66:33:da:be:e8:d0:94:15:aa:59:
42:4a:f5:83:d5:d6:00:37:6d:1b:ff:79:25:86:90:
b6:19:ec:1d:2d:14:7f:f9:61:82:e0:c6:b0:91:c2:
00:dd:75:7d:7c:05:84:7d:7b:60:b5:09:52:02:02:
99:3d:50:e0:5b:bc:94:f8:c9:d3:2d:d4:7c:b9:fe:
35:ba:40:4d:e8:06:54:0a:d5:09:bd:ab:98:da:0b:
44:83:5f:8c:8a:a4:78:b6:6f:a6:a4:3d:65:ea:33:
28:bd:74:9e:e1:d6:ff:7d:6a:22:34:e2:66:7c:6c:
73:88:99:c1:bd:58:95:8c:da:b3:62:1c:a0:46:5a:
82:ec:41:d2:42:71:39:89:54:a3:ff:82:6a:a5:f9:
c8:8a:30:7f:83:83:c1:b7:13:1b:9c:c2:68:37:20:
9f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:38:73:E6:28:FA:C9:65:66:5B:FB:92:A0:E2:BE:37:DC:F6:D7:32
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ijhz5ij6yWVmW_uSoOK-N9z21zI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.48.0/21
Signature Algorithm: sha256WithRSAEncryption
11:94:35:8e:83:29:ad:eb:62:98:87:c4:37:c7:b5:37:fb:5b:
75:4a:37:a9:48:fe:f2:2a:9f:ce:89:35:33:14:30:7a:72:2e:
d9:f8:0e:31:d3:58:ef:79:57:a2:ae:9c:e3:2e:ab:22:b1:35:
a6:ec:3a:4e:73:41:39:e8:d3:df:d0:bf:ae:bc:5d:d9:84:0f:
4c:8f:ef:b4:12:aa:d0:ec:85:c0:12:c2:36:56:6d:62:80:8f:
b9:a5:60:35:75:5b:bd:34:a5:6f:75:b8:f7:7d:d5:43:f3:78:
c5:94:3f:fc:3d:08:3f:e7:25:c8:84:d8:30:64:03:82:94:7c:
b2:ca:58:59:1d:9c:97:04:32:e1:dd:e7:59:78:07:d2:75:83:
5a:60:54:61:08:d6:9c:d6:3f:4d:ab:ec:c9:c5:a3:2a:ec:6f:
a7:cf:31:f4:3a:6f:c6:06:94:e9:8b:0b:c0:2e:80:fe:0f:4a:
a0:b4:3f:c2:a6:72:c2:de:2b:f1:b4:85:f1:04:29:b7:cd:8f:
bb:c6:c5:bf:38:56:1d:94:00:02:fe:e4:4d:80:32:f5:79:03:
93:11:ba:fd:52:10:50:ec:c1:1e:40:a0:9c:7c:5f:b1:56:b3:
6a:a7:ec:3d:51:88:50:5a:77:98:00:6a:7b:d3:fe:90:c1:7c:
ff:47:0e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org