Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ImE2u7vtIjh7ATTkPi15cQml3r0.roa
File: ImE2u7vtIjh7ATTkPi15cQml3r0.roa (raw, json)
Hash identifier: 0qJ1eGYrHfXKgHOb36ca/tE+2eBOQUcPSFNk1xZAm8s=
Subject key identifier: 22:61:36:BB:BB:ED:22:38:7B:01:34:E4:3E:2D:79:71:09:A5:DE:BD
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ImE2u7vtIjh7ATTkPi15cQml3r0.roa
Signing time: Thu 15 Sep 2022 02:39:22 +0000
ROA not before: Thu 15 Sep 2022 02:39:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63199
IP address blocks: 150.116.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=226136BBBBED22387B0134E43E2D797109A5DEBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:17:6a:46:76:93:c7:fc:5e:03:a8:a5:ea:36:
3f:ac:06:c7:5f:0c:60:ca:87:8d:44:56:91:b3:17:
0c:15:ff:79:29:1b:99:40:37:c8:67:b8:fd:4d:8f:
be:77:7f:4a:75:1c:aa:00:19:9b:3b:2d:33:74:0f:
47:c7:da:cc:66:56:21:63:f7:45:a5:03:c5:b1:39:
38:ec:0c:42:45:2b:f4:19:da:2d:80:33:43:d2:5f:
d4:74:24:fe:f8:ad:19:59:fb:70:11:0e:24:d3:a2:
7c:3e:1c:8e:e3:01:f7:ff:87:d8:e2:7a:87:8c:82:
27:14:41:5d:72:ab:fc:17:b3:e5:da:3e:44:86:35:
5a:a2:77:e6:db:5c:d3:43:fa:0b:a1:15:3b:93:89:
36:fa:58:b7:dd:1c:1a:20:e0:16:c6:03:25:f2:6c:
9f:bb:d2:c7:ab:21:f3:b1:17:bc:63:d7:9b:4a:88:
20:de:5c:77:f5:bc:e5:21:40:4e:5d:5e:98:a5:85:
8e:a2:06:81:3e:81:05:57:bd:e5:58:8c:65:19:fb:
51:28:72:60:17:51:a0:90:b5:6e:76:d4:50:2a:8d:
8d:1f:e9:20:a1:0d:6d:e7:c0:54:c7:f0:9f:a7:56:
0b:a8:c0:29:d5:e8:37:81:62:9d:3f:a2:9c:6c:fb:
3b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:61:36:BB:BB:ED:22:38:7B:01:34:E4:3E:2D:79:71:09:A5:DE:BD
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ImE2u7vtIjh7ATTkPi15cQml3r0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.3.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:29:05:09:36:fa:6f:81:9b:61:c9:69:84:46:b7:43:da:8b:
98:82:c7:04:0e:ca:01:9f:51:62:d5:b9:ae:3c:47:15:e2:b9:
16:7f:bb:09:aa:b0:fc:ec:05:c2:17:b2:cd:d4:00:12:52:e8:
e1:a6:87:d0:18:e3:60:c4:4c:26:5a:6a:93:20:1b:66:49:cb:
ea:83:a6:d3:1a:f9:e4:3d:fb:5d:6a:9e:84:37:a4:67:67:30:
16:63:7e:bf:4a:6e:12:a3:0c:ba:df:38:80:00:cc:36:f4:85:
89:bb:8f:88:d7:4b:3c:a9:3d:bf:4b:b2:10:77:6f:f5:46:9f:
47:5a:b5:f1:6e:95:2e:1f:96:4f:37:1d:b5:73:e7:91:2f:46:
9e:08:f2:36:07:6f:a6:74:31:db:db:24:1a:2c:a0:ff:35:27:
6b:8b:b1:60:d8:83:3f:f2:98:54:90:35:4b:ed:f2:d3:87:6d:
e4:c8:98:87:7c:53:41:3c:c0:d7:d9:39:f9:da:bf:82:82:ce:
67:46:3f:85:db:7f:b8:f2:ef:9f:6f:0c:50:19:d7:38:e7:66:
9f:ff:72:89:8d:12:6f:66:59:c2:28:3a:7c:17:94:8d:3e:e8:
50:83:3b:1a:51:25:df:6d:83:e2:97:84:5c:fd:60:be:9f:00:
d4:2e:77:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org