Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LHlSDbqz8E69AL-kX76yrorQ_qQ.roa
File: LHlSDbqz8E69AL-kX76yrorQ_qQ.roa (raw, json)
Hash identifier: VIj/GACAsE0OEtTfovC3hUMDy/u0vY0YHm9VThz/fE8=
Subject key identifier: 2C:79:52:0D:BA:B3:F0:4E:BD:00:BF:A4:5F:BE:B2:AE:8A:D0:FE:A4
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LHlSDbqz8E69AL-kX76yrorQ_qQ.roa
Signing time: Thu 15 Sep 2022 02:39:11 +0000
ROA not before: Thu 15 Sep 2022 02:39:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 150.117.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2C79520DBAB3F04EBD00BFA45FBEB2AE8AD0FEA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e6:5d:47:2c:65:4b:76:a1:e9:79:d6:a6:7a:
a0:9e:cf:b8:b3:f5:cf:64:6f:17:66:78:38:33:bf:
de:16:47:2e:ba:e5:3c:a1:49:38:3f:d9:ff:eb:cb:
02:7f:b0:29:6b:e6:b5:e3:cb:85:32:8c:d2:45:01:
9a:ea:b3:27:87:55:01:6e:84:30:f0:39:98:f2:22:
6f:5c:e8:a7:57:1a:c8:ad:6c:c2:49:45:73:f8:a4:
31:0a:1f:eb:af:f4:ba:d1:da:bc:83:58:60:96:32:
cd:40:ee:df:f0:0b:43:13:b4:f6:f1:dc:0c:1c:f7:
35:08:86:d4:3b:14:2d:77:12:71:2c:cd:9f:e3:ac:
74:a5:c0:8f:18:d1:e6:18:37:1c:25:68:9e:e9:ae:
f5:32:b8:4c:ea:5d:09:f7:ec:94:8b:31:b4:d2:bf:
0c:24:22:cd:d8:48:4c:80:38:91:9e:28:87:a5:64:
42:c2:44:dc:e5:72:34:96:ea:85:75:0c:f7:25:d0:
5a:41:c8:ed:7f:38:d0:8c:39:df:30:ad:41:d0:26:
6d:a0:89:8a:c7:8f:2c:a8:76:78:a9:07:1e:ea:56:
f3:22:a5:8d:79:67:e1:14:b6:e3:1f:90:6c:ee:eb:
c1:43:60:23:cc:42:57:6a:dd:45:99:36:00:3e:af:
ee:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:79:52:0D:BA:B3:F0:4E:BD:00:BF:A4:5F:BE:B2:AE:8A:D0:FE:A4
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LHlSDbqz8E69AL-kX76yrorQ_qQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.176.0/20
Signature Algorithm: sha256WithRSAEncryption
91:11:7a:07:15:1a:ce:01:95:4a:3e:d4:46:34:29:50:e7:c5:
30:d7:34:03:9c:74:58:5f:dc:2c:e8:fe:e9:2e:c8:f3:ee:bc:
3e:e5:fe:8f:a4:f5:a3:e8:9e:44:1d:b9:ac:e4:68:e5:cf:3c:
55:51:e1:de:e1:e4:16:c3:a7:92:d6:fc:7e:9f:cc:47:68:f7:
4d:91:2a:55:de:19:e5:e2:3c:e8:ca:e3:4e:e5:83:96:16:74:
76:28:7c:d2:19:0a:55:98:0a:e8:2d:6e:ec:8f:10:02:82:08:
23:2e:9a:17:ed:7f:2e:8b:bd:c7:01:af:af:0e:02:92:24:58:
c0:e8:87:22:64:1c:bd:5e:96:b3:42:52:e8:01:88:16:03:f4:
a2:07:df:46:32:0b:bd:f3:b0:fb:f7:16:28:5e:dd:35:c1:9f:
da:f7:06:66:32:b8:a6:38:c8:1b:9c:03:c5:34:9d:e2:d1:d4:
9b:df:dd:7e:d0:27:c2:7b:e7:d9:1b:92:b1:3a:5e:f9:46:b2:
e3:ef:a5:af:27:8b:9d:58:6d:64:c8:0d:6b:15:e7:5d:ed:ad:
5b:5b:e2:da:c0:1a:35:7d:37:0b:e6:57:ba:a1:ae:62:b1:81:
a2:99:30:3a:fc:f7:3f:45:1c:e1:fd:38:6d:4f:0e:42:1a:e4:
75:78:c9:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org