Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MJrFCvdWDXnQUZbWlefn_8Th5lg.roa
File: MJrFCvdWDXnQUZbWlefn_8Th5lg.roa (raw, json)
Hash identifier: BQY3WhhnhI2mKMs9T7SBWZekgAwVivygQmxCWnambzE=
Subject key identifier: 30:9A:C5:0A:F7:56:0D:79:D0:51:96:D6:95:E7:E7:FF:C4:E1:E6:58
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AB4
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MJrFCvdWDXnQUZbWlefn_8Th5lg.roa
Signing time: Sun 07 Feb 2021 11:52:28 +0000
ROA not before: Sun 07 Feb 2021 11:52:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 150.116.52.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2740 (0xab4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:52:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=309AC50AF7560D79D05196D695E7E7FFC4E1E658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:99:1e:3b:2c:e1:6a:fa:8d:00:67:e5:9e:4a:
fb:40:e2:1a:6a:67:bf:c7:ee:92:cd:c9:67:30:af:
7a:66:50:b1:c6:05:e9:2e:f6:c1:cb:95:cd:2b:be:
71:24:84:29:df:39:5f:19:b4:be:6e:9e:a7:ad:e4:
8a:97:ea:b5:ce:95:78:62:a0:e6:7d:c9:62:69:a3:
71:0d:13:62:42:3a:7f:68:24:10:2b:43:ae:03:20:
3e:d9:6a:ee:27:57:77:8e:66:ff:e1:a5:17:c0:0c:
9e:10:0d:d7:0a:ae:a3:7b:b1:53:48:bb:00:77:48:
ae:c4:7f:8b:d6:81:a8:c8:04:90:8e:8c:42:a8:ce:
32:b0:55:f2:15:2b:cf:30:10:4c:7c:93:aa:b9:3d:
bb:0e:0c:09:52:29:be:f1:d0:a9:28:2d:8c:dd:20:
08:85:52:86:12:ff:55:3a:64:60:f5:f5:e5:20:83:
d7:c2:8e:b0:07:21:63:16:03:bf:12:e0:4b:7a:7d:
53:d4:23:6c:1e:7c:85:bf:64:4f:02:c5:ef:28:c5:
fe:74:c9:00:7f:ee:29:e0:fd:f4:72:8c:23:53:a5:
cf:85:76:82:7d:45:64:dc:e5:48:59:aa:0a:98:b2:
47:c0:e5:cc:e2:4b:ac:d6:f6:e3:ec:46:cc:63:88:
74:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:9A:C5:0A:F7:56:0D:79:D0:51:96:D6:95:E7:E7:FF:C4:E1:E6:58
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MJrFCvdWDXnQUZbWlefn_8Th5lg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.52.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:86:f6:11:d0:be:d3:6a:1d:df:00:ca:e9:d4:5e:e0:96:6a:
95:c5:e9:89:31:53:ce:0d:fb:75:b6:af:9e:85:d0:5e:ef:5e:
b8:ed:46:2f:bb:d8:3a:05:75:f1:8b:ea:54:e0:71:11:d3:68:
96:38:17:95:73:1d:63:5d:13:2b:74:e3:da:6d:87:6b:7d:bd:
fe:85:ba:ff:56:1c:60:58:43:e1:32:46:77:87:27:e3:3d:9c:
29:3e:8d:a3:a1:e1:d3:0a:14:71:42:38:32:a5:d3:8d:95:c2:
dc:da:8a:26:8a:e3:96:ca:5f:dd:3e:db:07:40:a2:08:b7:86:
57:32:23:17:d3:6e:73:7e:37:cb:63:b3:60:de:0a:eb:e6:96:
a0:c8:24:4a:f5:25:90:f5:91:29:22:b9:b1:38:a8:dc:b1:df:
58:78:bf:62:20:5d:a4:f7:09:34:3c:fc:4d:e2:89:21:05:10:
c3:ee:7d:07:e6:10:7e:ac:dc:b3:00:b9:70:b6:21:a3:56:f0:
53:43:72:53:b0:e7:36:77:34:7e:a7:19:8a:19:21:d7:b5:70:
f5:9d:34:22:0e:ed:65:31:17:b5:6b:1d:a5:54:39:68:a7:dd:
48:d7:b6:66:c8:4e:96:c9:51:c3:e8:98:1d:2c:ca:f1:b3:20:
77:9e:4f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org