Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/KJk_3IVY5MOUa_QHnxS9I-5Isgg.roa
File: KJk_3IVY5MOUa_QHnxS9I-5Isgg.roa (raw, json)
Hash identifier: 9Cfb8qNr2in+iJ1JFMe0SS699JeD3wBnBnzKlAOtkTo=
Subject key identifier: 28:99:3F:DC:85:58:E4:C3:94:6B:F4:07:9F:14:BD:23:EE:48:B2:08
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C12
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/KJk_3IVY5MOUa_QHnxS9I-5Isgg.roa
Signing time: Wed 29 Sep 2021 02:39:00 +0000
ROA not before: Wed 29 Sep 2021 02:39:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131607
IP address blocks: 203.163.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3090 (0xc12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=28993FDC8558E4C3946BF4079F14BD23EE48B208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6d:c6:68:45:8b:7e:36:65:12:8d:59:0e:52:
24:86:e6:4e:20:09:ad:89:e2:e6:69:0a:2f:f9:fa:
9f:51:c4:29:1c:62:be:46:f8:02:45:a7:6b:06:31:
29:93:74:82:a2:85:c9:69:aa:99:6b:6d:08:42:bb:
4d:bb:5c:0f:e1:af:00:a3:36:77:e1:69:2c:d8:f3:
19:37:b5:b7:62:5c:3e:7c:d1:1d:a5:a9:fc:30:d6:
33:ca:61:1c:ec:e8:53:d5:0a:39:ac:69:5d:81:1c:
ae:5a:15:f6:1a:5e:5a:f5:1f:d6:bb:78:51:08:f8:
24:8a:ed:01:e8:ee:ab:5f:2c:51:d8:b4:39:3e:73:
a9:d3:01:4b:9c:59:6a:63:b6:02:a3:71:ae:41:74:
7b:81:1a:d8:9e:d9:be:35:30:1b:80:69:c3:b1:87:
5a:c5:05:22:ab:5f:57:a2:6d:38:26:c7:16:15:2e:
db:85:f2:f0:6d:dc:6f:be:3c:26:62:82:68:e8:bd:
b6:7f:8d:4f:9c:9f:2b:d7:0d:ca:e9:ac:ba:4d:21:
e9:7b:c2:f5:80:7b:6a:ee:db:5c:bc:a3:3d:f4:6e:
10:35:85:0f:14:e1:79:cb:51:dd:62:c3:4c:a7:05:
b5:85:00:8d:78:bd:e2:d8:d7:9d:75:03:08:bf:7c:
e7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:99:3F:DC:85:58:E4:C3:94:6B:F4:07:9F:14:BD:23:EE:48:B2:08
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/KJk_3IVY5MOUa_QHnxS9I-5Isgg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.193.0/24
Signature Algorithm: sha256WithRSAEncryption
06:98:f8:ef:55:90:b6:c9:a5:6a:aa:0f:39:6e:75:66:e7:4b:
c2:fc:25:9b:69:fb:93:02:dc:88:38:53:84:9f:6c:22:3c:f9:
aa:3e:10:94:da:5b:07:3a:d5:e6:e7:80:ea:80:9f:40:f8:05:
bd:60:96:4d:8b:04:de:dc:80:19:75:52:49:b8:ce:6f:e3:19:
ab:79:ab:0c:30:06:bc:1f:79:e9:d3:26:d5:2a:02:0b:8f:ce:
e7:4a:00:03:fc:30:05:0e:86:30:4e:4f:bd:ed:c3:33:3d:14:
e5:2a:33:b9:a4:63:82:5d:62:9d:b1:0f:dd:b6:52:d8:f4:ad:
d7:8d:0b:de:0d:94:d3:9c:8c:39:e3:e8:81:fe:e7:40:b5:a3:
8c:02:f4:ec:29:52:82:c4:97:4e:cb:33:df:e1:39:49:ab:11:
64:7f:69:a2:14:ac:bf:75:4f:04:0a:75:3f:3d:a5:f6:89:22:
0a:ef:6e:6b:92:f1:09:c0:68:7e:db:0b:99:ec:43:df:08:e2:
3b:60:fe:16:a5:62:22:14:8b:a0:2b:d6:57:60:7f:ca:b8:ab:
37:de:a7:b4:73:72:07:d9:16:1d:ae:fe:93:99:ff:a4:24:de:
06:7d:7f:b7:d9:23:dc:95:46:f5:46:ef:d5:c9:4c:c6:23:51:
da:45:ba:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org