Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JpbTZrHOd9jR-BIcYSJGFSpyx6E.roa
File: JpbTZrHOd9jR-BIcYSJGFSpyx6E.roa (raw, json)
Hash identifier: EPX+vgq1XIaQsq/l3kCk6+aEI3W23y97fvNzTG/s4OM=
Subject key identifier: 26:96:D3:66:B1:CE:77:D8:D1:F8:12:1C:61:22:46:15:2A:72:C7:A1
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BE8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JpbTZrHOd9jR-BIcYSJGFSpyx6E.roa
Signing time: Wed 29 Sep 2021 02:38:50 +0000
ROA not before: Wed 29 Sep 2021 02:38:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.116.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3048 (0xbe8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2696D366B1CE77D8D1F8121C612246152A72C7A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c2:2b:4a:91:bc:bf:70:ea:cf:bb:b3:f3:d7:
6f:51:e2:b2:80:b7:8e:14:44:b0:04:e9:9a:05:78:
30:6f:44:3f:86:21:db:58:fe:8c:42:4d:94:5f:21:
c1:f0:8d:b7:c0:96:f2:6b:70:84:b2:d6:b0:ad:86:
3a:17:5c:fc:23:5f:4a:4e:a1:1a:4a:a8:8d:d5:4c:
28:10:ca:2c:49:21:7d:99:cd:81:ed:7f:92:0a:19:
fb:97:01:29:eb:5e:4d:1c:fd:32:0a:0f:3c:4a:f9:
0c:a7:83:ee:7a:69:31:ec:69:1c:5a:6c:d2:46:4a:
68:ce:98:cb:7f:1d:03:e2:5b:fc:e3:72:21:d7:da:
10:3d:28:3b:82:60:22:fa:db:95:60:67:35:a4:c1:
d0:9c:f2:02:e8:59:e1:83:c5:92:6f:58:fe:d0:dd:
f0:af:41:7c:d0:fc:46:b2:a1:d3:e0:2f:a6:5c:f8:
56:f7:11:76:9a:01:57:67:2a:83:c0:6e:e1:b6:69:
56:a8:64:9f:31:2c:db:3f:d6:42:6d:7b:dd:ae:18:
02:70:85:06:75:22:13:73:f5:61:d8:0e:09:d7:21:
b7:86:4e:a9:55:ec:90:64:82:18:6e:35:2d:a8:dc:
34:35:6e:99:d9:0c:4c:f9:82:e4:a4:e1:c9:cc:81:
a4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:96:D3:66:B1:CE:77:D8:D1:F8:12:1C:61:22:46:15:2A:72:C7:A1
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JpbTZrHOd9jR-BIcYSJGFSpyx6E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.238.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:4e:7f:b8:f4:37:8e:f0:36:c4:17:fb:bf:67:f6:85:80:d0:
4f:84:20:6e:ca:2d:c1:44:5e:d4:0e:11:f8:4d:e5:0f:50:68:
9c:33:98:51:76:aa:b5:de:74:fa:f4:a6:60:35:22:71:62:a4:
22:57:d8:4a:ae:3d:a9:f0:0b:18:91:30:34:ea:a7:c3:c2:96:
2b:0a:f7:d1:e6:8d:c7:46:a1:ba:94:49:8b:54:45:20:8b:b3:
33:e0:36:93:e6:5d:83:d5:0e:09:27:2f:b9:f3:26:8a:3d:45:
8a:89:06:0f:39:88:06:00:ed:42:c3:c2:76:6e:55:74:a1:d4:
1d:f0:f8:84:99:f3:39:39:73:21:66:d2:6e:ff:e2:ed:d1:e8:
58:83:36:8d:bb:ad:c6:fe:e0:6c:90:8c:c3:60:da:1a:36:12:
f6:18:7d:7a:ab:0c:40:59:d7:ff:91:1b:80:1d:6a:f4:63:f2:
1b:b4:c8:31:6e:ef:10:e5:f3:cd:89:65:c0:05:48:e7:2a:81:
d7:df:05:e4:8b:22:a5:05:81:4f:49:01:41:b6:45:ea:e0:ae:
70:fe:0c:f3:5c:16:c8:fa:4b:3c:76:0f:3e:e0:6c:0e:29:6c:
74:a5:b4:52:8a:be:ce:de:e2:15:3e:ea:f0:ed:39:a0:50:5e:
6d:93:c2:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org