Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/KybP8nUX7AY-qFL5DeyTfJAoErA.roa
File: KybP8nUX7AY-qFL5DeyTfJAoErA.roa (raw, json)
Hash identifier: 5pSmf65zKt+M3PrAC1K1+8jM7RHjOJI7TntQwLoQPog=
Subject key identifier: 2B:26:CF:F2:75:17:EC:06:3E:A8:52:F9:0D:EC:93:7C:90:28:12:B0
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0938
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/KybP8nUX7AY-qFL5DeyTfJAoErA.roa
Signing time: Tue 27 Oct 2020 08:34:07 +0000
ROA not before: Tue 27 Oct 2020 08:34:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9831
IP address blocks: 203.163.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2360 (0x938)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Oct 27 08:34:07 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2B26CFF27517EC063EA852F90DEC937C902812B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f7:fc:6c:8b:83:ca:dd:d0:f7:92:3c:e9:6d:
44:0a:e3:fc:ec:c0:eb:38:be:9f:e3:89:b0:76:a0:
76:75:11:40:46:62:32:35:b6:1d:a1:ef:23:a2:f7:
63:1f:c0:cc:1c:f4:98:a0:be:d8:af:d6:f5:3a:88:
03:28:fd:2b:64:e8:6d:10:09:0e:b7:81:fd:ab:2f:
6e:af:f9:0c:e0:ad:df:8c:20:d0:3f:75:2d:92:04:
c7:b7:f7:42:4d:b7:f6:86:eb:c4:8e:e7:d1:34:d1:
18:a2:9c:bd:49:ce:a0:be:09:59:09:b0:48:24:64:
64:13:89:b7:d3:34:0f:d2:51:2a:0f:c0:f2:57:c8:
bc:48:79:f9:9e:79:c7:38:b4:aa:7d:61:b7:1d:69:
33:cc:54:69:71:c5:b6:2e:53:5b:af:80:b7:d2:e2:
08:7c:0f:37:a6:81:9e:2a:a9:f9:6c:72:55:0c:61:
1c:7e:a8:6f:6d:f3:ee:1b:2b:43:be:bd:58:f2:21:
ca:84:3d:ad:33:d7:0c:ff:71:61:8a:3a:93:a6:f8:
2f:45:5b:3a:da:71:26:e7:7c:b4:1e:2a:06:4a:12:
a8:57:c6:be:08:5f:12:31:fb:a9:d8:af:b4:02:03:
3a:b3:ea:44:06:5e:4c:78:07:f4:fb:a1:1d:85:18:
31:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:26:CF:F2:75:17:EC:06:3E:A8:52:F9:0D:EC:93:7C:90:28:12:B0
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/KybP8nUX7AY-qFL5DeyTfJAoErA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.201.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:2a:5c:4f:8d:f7:57:80:8b:e0:fd:96:d4:d0:0d:35:82:89:
03:89:20:7d:55:f3:08:4b:13:87:ee:ab:35:e6:3f:a1:c0:02:
f6:b9:b0:4f:78:e7:98:e3:f1:48:e4:68:04:a0:60:47:80:3e:
d3:44:bf:77:15:95:2e:3a:a4:d9:de:be:e9:c1:a2:ca:42:65:
aa:ba:ca:a6:09:e3:9a:dd:0f:dc:83:ff:76:18:c0:c8:d4:2f:
38:70:3c:a5:5c:36:35:08:42:16:65:78:5c:84:c5:9e:25:54:
88:04:c5:94:68:f5:63:94:ed:64:49:35:82:3d:19:c5:21:c7:
28:2f:22:d1:25:64:1e:51:24:55:c0:8c:90:56:dc:36:30:e9:
7d:bf:d5:e7:36:81:5d:76:97:d3:10:7d:58:ad:7b:79:1c:85:
f4:77:0e:20:90:b3:ad:f1:df:98:cb:20:78:4e:ec:cf:03:43:
d8:13:e5:cd:33:17:65:eb:3a:b1:1b:c8:93:e8:d7:b0:37:74:
f3:51:90:92:75:0e:72:d4:4b:c3:4d:4d:29:53:a9:74:f4:37:
8d:bc:97:d1:d3:0d:c1:8b:04:59:58:ef:bc:25:ca:fc:e6:9b:
0b:ba:40:a8:b6:33:64:62:2b:1c:df:a7:1d:6d:dc:45:8b:55:
bd:59:cd:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org