Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/KoEM3IWR21GXpr6UJEUOVqrkQ-4.roa
File: KoEM3IWR21GXpr6UJEUOVqrkQ-4.roa (raw, json)
Hash identifier: xj3Lz3dAmX3oYQZ322kj8OCMhsV2uQAPTYxG6SaQAbk=
Subject key identifier: 2A:81:0C:DC:85:91:DB:51:97:A6:BE:94:24:45:0E:56:AA:E4:43:EE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BEE
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/KoEM3IWR21GXpr6UJEUOVqrkQ-4.roa
Signing time: Wed 29 Sep 2021 02:38:51 +0000
ROA not before: Wed 29 Sep 2021 02:38:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131607
IP address blocks: 150.117.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3054 (0xbee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2A810CDC8591DB5197A6BE9424450E56AAE443EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:51:80:4a:0b:7d:5c:d7:7d:38:d1:0d:92:c7:
76:62:d2:1d:18:a2:49:fe:a8:da:c0:e1:01:b5:33:
39:2a:dc:0a:05:db:5b:ee:bc:57:0e:3a:e7:e3:49:
c0:81:d6:64:af:40:66:3d:87:bb:00:54:23:cc:7d:
d2:85:78:97:64:ee:b6:b0:49:6a:59:c2:04:59:48:
bf:c5:09:ed:e5:71:75:8b:18:83:83:7c:06:83:70:
45:30:44:76:49:84:9a:97:4f:23:a1:b8:a9:0b:c3:
1a:5b:63:3a:4e:56:81:c6:0a:05:43:c0:ad:13:22:
f0:f9:c9:22:e0:07:a5:69:5c:aa:0b:56:ac:3d:0e:
9d:c2:c3:9e:71:ce:b8:00:63:23:be:1f:4a:c2:5d:
c7:8d:32:60:57:61:5f:e6:79:3c:d1:0c:40:e8:e1:
63:5e:8a:3e:fb:c2:63:db:f9:89:e0:33:b6:6a:44:
8d:71:06:6e:e9:0d:ed:c1:05:08:2e:b3:02:9d:0b:
a1:b9:7e:59:54:3a:97:28:35:13:47:ad:c7:86:e8:
8f:fc:de:92:42:f4:2e:a9:23:73:0c:e5:7e:24:e5:
25:02:e2:64:e2:f4:90:3e:e3:88:d2:47:55:c0:bc:
0d:ad:5c:41:10:38:cf:32:82:87:78:da:35:77:3c:
cc:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:81:0C:DC:85:91:DB:51:97:A6:BE:94:24:45:0E:56:AA:E4:43:EE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/KoEM3IWR21GXpr6UJEUOVqrkQ-4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.56.0/21
Signature Algorithm: sha256WithRSAEncryption
b3:95:02:ab:6b:04:b3:9d:4e:69:a5:7a:62:af:4f:db:c8:50:
43:59:c0:cc:76:85:ff:98:7c:62:33:d5:98:97:68:54:4c:1b:
07:59:42:c3:c3:56:8a:6f:96:88:c4:9b:c4:22:1e:b0:22:e0:
f8:86:96:2b:9c:33:b7:5a:c2:67:9e:21:47:e9:c9:62:ed:5a:
66:33:0b:a5:7b:48:cc:d1:13:4b:a2:db:81:1c:95:c8:28:88:
1b:58:d6:34:5d:8c:92:b4:83:5d:7d:cb:66:de:f0:f2:8f:32:
35:fe:2d:dc:65:27:e6:08:6f:7c:f6:db:7c:0e:34:95:65:e1:
d3:0c:ba:d5:12:be:09:37:b1:18:58:5a:01:6b:02:7d:74:d3:
62:b5:de:37:db:4e:07:96:81:f1:87:b0:c3:6b:9c:12:56:37:
76:48:67:99:04:8e:9a:87:be:7b:94:19:0f:8d:f3:c3:08:6c:
cf:ab:0d:e8:f9:3c:ef:75:3f:9c:22:e1:e8:41:27:28:a6:1c:
f4:e4:3e:2b:6a:59:16:8d:cd:60:32:c1:c9:c3:e9:e0:20:8a:
78:8e:fa:8b:b7:46:90:4d:b0:e7:96:d0:e8:ca:cc:15:cd:63:
f9:dd:5d:ec:f1:2b:86:be:8d:32:84:a3:e6:91:10:46:d7:82:
65:73:28:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org