Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/K1cjHMrITz-IPXVcGLs66k7OGO0.roa
File: K1cjHMrITz-IPXVcGLs66k7OGO0.roa (raw, json)
Hash identifier: 8pCIm217bTyShSBi93jrPLNPHkaW/rEf9wphHzEeut8=
Subject key identifier: 2B:57:23:1C:CA:C8:4F:3F:88:3D:75:5C:18:BB:3A:EA:4E:CE:18:ED
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/K1cjHMrITz-IPXVcGLs66k7OGO0.roa
Signing time: Thu 15 Sep 2022 02:39:13 +0000
ROA not before: Thu 15 Sep 2022 02:39:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18046
IP address blocks: 150.116.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2B57231CCAC84F3F883D755C18BB3AEA4ECE18ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:95:d6:1d:fc:36:9d:c5:3b:15:3c:2d:03:2a:
88:eb:a0:73:8b:e7:5e:99:b9:bf:b5:70:42:49:ad:
bf:25:39:59:17:e4:bb:6b:5e:e4:78:84:bc:e6:b9:
aa:ab:25:19:4c:e3:84:ef:bb:f1:7c:1d:ab:28:33:
2f:f8:f8:0a:ae:4b:b1:bb:63:dd:38:63:c3:00:fd:
84:d6:42:9f:4e:45:27:f7:38:9f:b2:08:fb:f7:d1:
d3:02:ab:3e:f1:38:a8:dc:2b:1c:19:55:81:08:52:
5a:3f:fd:7b:87:dd:18:72:57:5a:d6:26:4d:cb:57:
4a:44:71:82:4e:a4:19:c6:d1:32:b9:43:2c:18:b4:
a7:85:f8:90:50:7a:f3:0f:08:6b:ce:38:6e:c2:c1:
01:72:ba:f9:82:b4:ba:3d:a7:0d:b1:ab:aa:fe:dd:
7a:e9:6b:f1:36:50:36:b3:a5:e5:60:58:df:e8:3c:
b7:b5:d8:34:f7:c6:c0:5c:b1:87:f1:28:eb:55:7a:
df:ce:92:cd:ed:5e:27:80:a2:4f:37:40:77:e0:cf:
96:21:eb:50:0b:32:d4:f0:75:ea:3e:8f:4c:d1:3d:
89:a4:be:1e:bd:d1:7d:05:51:40:87:c1:d1:07:f9:
de:49:5e:5b:0a:9a:2f:cc:97:95:2f:69:90:3c:42:
9f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:57:23:1C:CA:C8:4F:3F:88:3D:75:5C:18:BB:3A:EA:4E:CE:18:ED
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/K1cjHMrITz-IPXVcGLs66k7OGO0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.16.0/20
Signature Algorithm: sha256WithRSAEncryption
ab:c0:ce:da:4c:ec:f1:0b:54:36:00:2d:fb:43:63:08:b1:a9:
3f:de:37:81:4e:e7:50:9d:4c:e6:77:ef:6a:9c:b7:dd:57:0f:
f9:82:f9:93:c6:18:e0:15:8b:4c:a4:0c:76:96:bd:4f:a3:2a:
b5:a7:be:68:c1:d8:ab:d8:12:03:fa:2a:77:d5:a7:e9:a5:54:
fa:d2:da:1c:c9:e4:f4:f8:b9:16:01:61:1c:a2:3c:94:32:c4:
2f:b0:1a:f6:23:82:f2:e5:4b:51:15:9a:1b:23:68:03:8e:1d:
34:07:34:ac:81:8a:16:59:a5:98:3f:47:2e:35:76:bb:f9:e5:
3e:ec:d2:56:23:25:4e:59:a0:b8:74:c9:4d:52:3c:87:3a:6d:
ef:b7:8a:93:e4:3d:a4:81:d6:3a:fc:dc:74:2c:8f:46:45:61:
83:f3:13:68:72:69:95:00:f1:38:c5:15:e7:9e:ee:9c:37:66:
94:42:7f:bc:b0:f5:8e:4e:34:67:4d:be:f0:f9:d6:3c:b6:b2:
6c:75:17:ae:3b:6a:4b:35:23:0d:28:6b:7c:d1:20:ae:98:66:
d1:d3:f3:e9:1e:92:39:96:78:f0:d1:6a:3a:e9:27:47:d5:fa:
17:45:01:f5:ca:3b:ff:cb:dd:3f:a9:5c:ce:2b:41:be:f3:e9:
49:17:51:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org