Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/M2txVJ68I8MLS1Ng8RIEC2-Q7b8.roa
File: M2txVJ68I8MLS1Ng8RIEC2-Q7b8.roa (raw, json)
Hash identifier: tOjygjShnHWhCHAasd6KY7rXD+hygINJI3vXsOtu1lE=
Subject key identifier: 33:6B:71:54:9E:BC:23:C3:0B:4B:53:60:F1:12:04:0B:6F:90:ED:BF
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/M2txVJ68I8MLS1Ng8RIEC2-Q7b8.roa
Signing time: Thu 15 Sep 2022 02:39:19 +0000
ROA not before: Thu 15 Sep 2022 02:39:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=336B71549EBC23C30B4B5360F112040B6F90EDBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:52:a9:66:90:05:22:52:88:6d:24:b2:15:7b:
8f:53:4a:f0:d0:fa:7b:11:27:e7:5c:e8:61:fa:90:
00:53:22:fc:b3:ea:f8:6a:46:08:43:e2:f0:5b:47:
7d:3a:bd:b3:e7:28:3a:cf:74:00:d9:82:77:36:52:
c4:fa:60:54:24:78:48:52:90:93:6c:2a:74:2f:e4:
9b:64:7e:eb:a3:7c:cc:41:2a:68:67:91:34:97:8d:
ec:63:00:64:94:a8:0f:75:36:73:95:40:7e:d5:bd:
d0:05:c8:3c:c9:d5:f2:36:0b:4e:9a:22:21:3d:59:
82:cf:cd:96:4f:32:12:2b:ee:14:27:a9:d2:f2:3c:
71:a4:cd:5b:03:33:e0:a3:f2:33:6f:4f:e1:43:07:
44:c4:a3:0b:c9:11:f3:b8:dc:b6:c0:db:55:5b:3a:
dc:ad:6e:bc:15:2c:28:9f:e7:fe:ff:91:d9:fc:67:
a6:a0:8c:d0:c9:bb:fd:12:d3:1a:cd:e5:25:2d:38:
d3:a8:df:91:ad:34:39:96:54:f6:97:ef:56:d6:56:
42:0d:b2:eb:fb:58:91:b2:d8:91:45:d8:00:a8:b7:
f0:87:ec:d1:4d:75:61:a4:63:36:bc:d1:20:b5:3d:
2b:7a:6a:eb:7f:be:47:0c:4f:ae:10:6d:4e:09:7e:
fa:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:6B:71:54:9E:BC:23:C3:0B:4B:53:60:F1:12:04:0B:6F:90:ED:BF
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/M2txVJ68I8MLS1Ng8RIEC2-Q7b8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.192.0/19
Signature Algorithm: sha256WithRSAEncryption
5e:f9:80:f5:54:46:79:e5:2a:61:a7:be:95:97:14:2a:38:11:
8b:b9:18:3b:8a:50:5f:fc:01:be:7d:08:f5:16:f3:d9:22:0f:
b4:98:3b:ba:87:8a:87:4b:c9:42:32:9f:32:77:b1:4d:7c:80:
0d:50:68:6f:7a:25:02:6d:d5:7b:6b:53:d8:ba:44:ab:4a:e0:
6d:70:62:5c:68:e8:c3:e6:33:88:dd:db:c2:d9:31:30:d1:44:
8d:68:42:1a:a2:f5:68:8d:40:fe:45:90:36:7a:1f:4d:9c:9b:
15:f5:4b:b9:01:d4:83:7b:22:02:8a:08:57:1f:30:39:92:43:
65:aa:ea:62:e3:af:d7:38:51:8d:3c:23:12:f4:f5:ad:86:09:
7b:ba:4f:7e:41:66:f3:6c:b9:ef:d8:6b:84:a0:f6:02:bd:82:
62:a2:0c:93:dc:17:42:3e:15:7b:9a:4f:f4:ab:dc:f8:b6:cb:
70:c2:f0:a3:0d:44:a7:9f:0e:50:1c:74:d6:98:50:1c:eb:54:
ee:92:88:44:a8:e4:ec:4c:7a:59:01:56:c3:ef:4b:f7:cb:64:
bc:33:93:5a:e4:75:99:3f:55:23:7c:8c:c3:63:2f:7c:1b:bb:
6d:e7:ad:88:5e:1b:da:63:43:ec:d1:bd:d1:f4:b7:ba:c0:2d:
3d:9b:10:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org