Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MdLJuiOuYjIIS58JEwjKmJ1rg6Y.roa
File: MdLJuiOuYjIIS58JEwjKmJ1rg6Y.roa (raw, json)
Hash identifier: MZiihFE7FBPd/+Hra/4EmHC+BHMshEibisKxgP8zFjs=
Subject key identifier: 31:D2:C9:BA:23:AE:62:32:08:4B:9F:09:13:08:CA:98:9D:6B:83:A6
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DFE
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MdLJuiOuYjIIS58JEwjKmJ1rg6Y.roa
Signing time: Thu 29 Dec 2022 09:32:07 +0000
ROA not before: Thu 29 Dec 2022 09:32:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 223.26.70.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3582 (0xdfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=31D2C9BA23AE6232084B9F091308CA989D6B83A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1d:d1:91:e0:20:68:33:ab:7a:05:f8:4e:ab:
23:f3:f0:b8:20:21:5f:e8:03:a5:ec:74:96:ab:95:
52:ab:4a:82:16:2f:99:3c:c6:a2:b8:54:e9:f2:ab:
23:f1:73:42:d8:7c:23:93:93:96:2a:8d:9f:d9:e2:
00:18:5f:ed:e2:18:03:c5:e6:06:41:50:83:29:4c:
ee:2a:84:7d:bd:b8:69:63:d2:53:37:c8:70:ac:d4:
69:05:73:5b:ee:bd:12:ba:09:fb:aa:e4:93:79:0c:
82:67:70:23:a3:58:38:68:48:cd:39:07:6f:dd:3f:
d3:f7:e8:cd:cc:80:1f:5a:1f:2d:d4:24:b1:b7:52:
b4:d3:71:af:93:1a:c2:a0:1d:3e:73:78:17:ee:b4:
25:3c:ce:70:c1:ab:cc:2c:5b:36:61:bc:50:ef:db:
cf:03:c0:a4:80:36:6e:92:34:50:ab:91:18:a0:e7:
ad:de:d0:0a:f3:8d:cb:b9:19:3e:de:ee:68:2c:64:
01:f2:c0:7a:26:49:a8:b3:c6:c2:bb:e0:58:c5:aa:
3f:04:52:2d:ac:0b:73:c9:d9:65:e3:a1:cb:98:d2:
e0:27:a8:80:85:c7:1b:76:69:88:8e:8b:79:1d:53:
6b:47:83:3c:d3:a7:7c:9f:26:64:9e:96:d3:64:0c:
ab:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:D2:C9:BA:23:AE:62:32:08:4B:9F:09:13:08:CA:98:9D:6B:83:A6
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MdLJuiOuYjIIS58JEwjKmJ1rg6Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.70.0/23
Signature Algorithm: sha256WithRSAEncryption
91:eb:25:a8:7e:2f:4e:70:ec:46:df:68:e2:a7:d9:04:32:2c:
84:21:50:4e:2a:cd:d8:96:4b:e4:28:d5:5e:af:28:2f:d2:a4:
75:a2:5e:ff:44:f0:64:0e:2d:05:a7:4a:36:8e:43:b3:ea:53:
09:e4:06:50:1a:db:48:f1:c6:6c:30:b7:7a:5c:84:40:7d:a1:
43:aa:f7:92:51:ce:22:cf:4d:05:7e:72:62:72:0a:c2:e4:60:
d4:0a:fe:17:4c:7e:95:7c:a2:a5:7c:c6:20:97:12:86:e3:88:
46:09:03:e8:64:60:72:a0:ce:ab:28:4d:45:dd:f8:3d:a7:c9:
95:06:e7:d5:cb:92:9d:43:21:e5:05:d6:6a:3c:a4:aa:0c:1c:
89:47:3f:bb:b3:74:4b:51:5a:35:62:8e:2b:ab:24:07:b3:a0:
68:fd:a4:24:f9:6f:74:13:b2:64:f6:88:b7:6d:a5:c7:28:87:
e8:0b:86:14:e8:48:8b:44:96:bf:60:de:ee:3e:81:7b:33:09:
0f:67:57:ca:d1:40:20:7f:2c:9e:5e:f2:d7:83:44:ab:91:42:
33:5a:dd:b8:40:4e:2b:8c:6f:82:79:d9:ae:b5:4e:1e:1c:f0:
14:8a:9d:31:bc:17:f3:7e:01:0b:42:7b:c6:7d:8f:0b:b5:90:
03:c0:17:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org