Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IroYxbMcRCsjAYWSgDkTRCwOIkI.roa
File: IroYxbMcRCsjAYWSgDkTRCwOIkI.roa (raw, json)
Hash identifier: ej3j50jxgCfsbYz1Cu0NSFIqX0EdniAe7u3YdguNEFE=
Subject key identifier: 22:BA:18:C5:B3:1C:44:2B:23:01:85:92:80:39:13:44:2C:0E:22:42
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C0E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IroYxbMcRCsjAYWSgDkTRCwOIkI.roa
Signing time: Wed 29 Sep 2021 02:38:59 +0000
ROA not before: Wed 29 Sep 2021 02:38:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.117.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3086 (0xc0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=22BA18C5B31C442B23018592803913442C0E2242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3f:80:8a:8b:10:de:e8:c5:f6:69:fd:2a:43:
f8:bb:6d:48:94:3f:bd:4f:1d:ef:2e:1f:6e:b9:b1:
9a:95:0d:0b:20:db:a2:e8:2e:f3:60:da:43:d2:86:
0c:4a:63:ce:d3:ec:aa:05:f2:0c:ec:de:03:6f:cc:
11:9e:de:75:d5:30:86:e7:bf:73:f6:a1:a0:9a:d4:
ea:01:2d:96:14:6e:7f:e7:d4:71:32:26:c3:37:cf:
71:db:60:a9:a3:fe:3e:fc:5b:58:0b:49:f9:29:17:
e3:d3:0c:4e:45:84:6a:3e:ba:6f:fa:f3:21:45:e9:
43:09:9a:6b:04:9c:bf:a0:9d:00:c5:5e:01:1d:e5:
fa:40:3f:a3:ec:a1:3f:e6:09:e2:50:de:40:9e:67:
4d:2b:c2:37:95:eb:0d:bc:ab:fa:0a:1b:e9:ac:6b:
25:0f:bc:15:2e:14:06:d0:0e:44:63:b8:07:37:e3:
0d:e1:0b:10:98:f1:87:8b:ab:bf:09:f6:fe:c5:a0:
b8:db:5e:1a:2d:d7:ee:1b:13:23:51:7f:08:2c:01:
6c:da:1f:b4:52:e5:08:7e:83:89:c4:a1:4c:98:55:
d9:5c:a1:6a:be:e0:b2:59:ab:89:17:37:eb:d0:d1:
8b:cc:7b:6e:9d:1f:18:1b:35:42:c4:29:dd:dd:7f:
e7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:BA:18:C5:B3:1C:44:2B:23:01:85:92:80:39:13:44:2C:0E:22:42
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IroYxbMcRCsjAYWSgDkTRCwOIkI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.128.0/19
Signature Algorithm: sha256WithRSAEncryption
8e:23:3d:69:a5:e9:50:92:88:1b:ab:d6:d0:34:2c:a0:05:98:
4a:74:f3:08:91:ef:dd:b2:4f:7c:44:8b:7f:64:30:37:7e:70:
d6:a6:d0:9b:18:eb:e8:2f:0a:2a:55:55:db:51:ce:c2:23:7b:
34:c5:7e:be:89:26:a8:ad:06:76:e3:5f:92:d7:70:58:55:dd:
1c:9c:11:e8:d9:21:65:59:fe:fa:00:5b:bf:33:90:fb:f1:9c:
26:a8:96:a7:56:e7:e6:ed:b4:7f:e6:c3:bd:6a:93:8f:c9:1e:
78:3b:b8:2d:6b:00:2e:2b:a6:cb:53:ae:b9:b5:45:e0:93:1e:
d6:ff:11:7a:04:79:2c:17:f7:f3:f6:4f:55:e5:78:ff:43:38:
54:5e:8c:16:6e:d9:55:f2:03:ee:96:9e:58:46:e2:36:10:9b:
67:c0:62:87:d0:ad:b8:69:46:1c:85:2d:1b:ac:13:ee:35:ed:
df:0c:74:b8:3b:af:85:38:45:0b:aa:d1:fd:64:50:39:28:1f:
48:5b:12:be:dc:50:ba:b7:94:e8:46:85:33:6d:6c:96:42:69:
83:27:9b:e8:d7:35:01:27:75:ed:4c:11:12:c7:84:52:23:36:
48:e4:52:ca:74:58:e1:30:49:fd:8d:5c:9a:c6:6f:45:eb:f9:
d9:17:f4:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org