Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JUw_MuIcI6nz0BZuk0ynvbv2_wc.roa
File: JUw_MuIcI6nz0BZuk0ynvbv2_wc.roa (raw, json)
Hash identifier: WDUkuv17rtKxEyufYB90uO8Q8NTQALlyuXm7Waxtx98=
Subject key identifier: 25:4C:3F:32:E2:1C:23:A9:F3:D0:16:6E:93:4C:A7:BD:BB:F6:FF:07
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JUw_MuIcI6nz0BZuk0ynvbv2_wc.roa
Signing time: Thu 15 Sep 2022 02:39:13 +0000
ROA not before: Thu 15 Sep 2022 02:39:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 113.21.88.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=254C3F32E21C23A9F3D0166E934CA7BDBBF6FF07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d4:c2:b3:f6:17:be:95:72:6d:b9:9c:15:0d:
ba:54:f0:de:e1:34:f2:b3:9b:a0:8b:87:15:e8:33:
fb:03:81:eb:d9:73:90:f4:7d:27:ad:3a:ef:08:2c:
86:bf:74:a3:a5:bc:01:af:82:76:b9:56:3f:14:da:
80:27:ff:ee:19:d7:c1:cd:78:fa:eb:5c:68:e9:81:
d3:a1:ea:13:36:52:77:f2:f9:99:48:ae:43:82:e6:
1f:30:ea:5b:0a:87:ef:ad:76:6b:ca:29:bb:ce:bc:
8a:fc:2c:f5:13:40:73:91:de:80:35:96:1f:ee:ba:
09:95:f3:94:fa:9c:d5:fc:b6:74:30:f4:18:0c:42:
00:80:87:e2:95:f3:4a:1c:d0:f0:af:1b:6f:a7:d1:
1a:fa:aa:19:47:c2:29:0d:0a:0d:66:b5:8d:76:ab:
aa:bf:98:96:fc:af:27:e9:88:45:4d:4c:ae:0a:e1:
34:1d:b2:ff:98:d1:9c:d9:86:69:56:23:80:a0:67:
81:84:55:2f:62:49:18:f8:4c:8e:d2:69:de:10:4d:
cd:8d:6e:b1:b4:e7:82:d4:be:45:e0:ed:26:7a:5f:
17:35:fd:b1:73:e3:2e:95:7e:71:42:35:12:50:39:
f9:b6:f2:e5:86:34:07:67:db:fd:f2:7f:2d:b6:a4:
ea:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:4C:3F:32:E2:1C:23:A9:F3:D0:16:6E:93:4C:A7:BD:BB:F6:FF:07
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JUw_MuIcI6nz0BZuk0ynvbv2_wc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.88.0/21
Signature Algorithm: sha256WithRSAEncryption
5f:0b:f9:53:a3:8b:d3:0b:8f:ad:39:8c:85:3a:e4:bd:1a:5a:
90:3a:f3:e7:df:b3:30:d1:a4:81:26:ee:69:36:3a:1b:1b:ff:
6b:5c:cb:31:c4:25:ab:4d:06:15:9c:25:14:4d:8a:a3:85:98:
f9:0f:88:5a:f5:41:8d:60:1f:5b:b5:9d:8d:c0:06:03:7b:cb:
b7:10:d0:8a:64:a0:fa:ff:23:95:69:1a:9e:71:f9:3f:3c:50:
32:03:22:75:a8:e5:e2:39:a8:e4:e2:25:6c:59:0b:61:cb:41:
cb:4c:19:d5:7b:bb:44:b3:fe:eb:da:b4:22:79:a6:43:58:02:
bd:a0:36:9c:33:e4:7c:09:12:6b:2c:2f:c4:b0:a4:aa:48:f9:
72:0b:cf:62:74:2e:a1:58:83:e5:7d:91:7b:e0:43:e6:ab:1d:
c3:a4:1d:04:85:33:11:19:3c:bf:09:f1:69:91:59:0f:90:43:
40:9e:2b:58:dc:7f:37:b2:97:1e:6b:6f:53:d3:74:72:77:85:
be:c1:43:da:4f:f8:68:b5:d1:05:b5:03:87:bf:ec:23:3e:87:
c7:bb:22:52:d3:8d:81:3c:5e:81:72:7a:7b:d0:dd:7f:04:ad:
24:74:e7:d0:96:49:ed:fe:e6:98:32:bd:65:08:6c:b1:a1:16:
8b:41:b4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org