Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MmGS1HfGvkZSfUasKsTL7BR0pkY.roa
File: MmGS1HfGvkZSfUasKsTL7BR0pkY.roa (raw, json)
Hash identifier: u4G5BTLAkiYnQT2W3fD4IrRtHIva9NtN3LFAsBXMEeY=
Subject key identifier: 32:61:92:D4:77:C6:BE:46:52:7D:46:AC:2A:C4:CB:EC:14:74:A6:46
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DD3
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MmGS1HfGvkZSfUasKsTL7BR0pkY.roa
Signing time: Thu 29 Dec 2022 09:31:54 +0000
ROA not before: Thu 29 Dec 2022 09:31:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131600
IP address blocks: 150.117.120.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3539 (0xdd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=326192D477C6BE46527D46AC2AC4CBEC1474A646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9c:3e:08:50:0d:4f:b5:f1:40:1d:e0:f8:f6:
b9:c1:dd:05:bf:5a:a3:3d:ae:ee:09:86:26:d8:39:
74:51:91:14:2e:9f:64:17:8a:37:f5:4c:6d:34:ca:
1d:6d:63:76:6b:24:9d:4d:ed:65:31:76:6e:e9:3e:
f7:fb:98:78:bd:59:c1:8b:fc:5a:41:cd:4b:13:57:
a0:f5:95:b9:c0:6c:18:c6:f3:88:9f:40:ae:c1:61:
15:89:aa:44:bb:4a:e9:2a:30:94:dc:ae:c6:51:d4:
cb:b7:63:29:4c:52:3b:f5:6c:75:23:09:b5:cd:e7:
12:38:22:70:62:96:92:eb:1e:d8:4e:eb:2a:ab:fe:
12:8e:41:18:b2:18:f6:0b:74:31:9f:cf:da:17:c7:
10:f1:a9:e6:5d:9e:43:b8:8a:f0:ae:16:27:41:7d:
84:d4:70:02:87:fb:91:fb:8d:61:2b:bb:3c:66:f0:
62:92:22:56:cd:65:8d:be:6b:0c:8e:1e:ff:cc:34:
90:ec:f0:ed:6e:2e:08:5f:ed:f7:52:9b:b3:0d:53:
f7:c9:d3:e2:e5:40:ac:7b:33:39:59:89:6c:7f:2e:
65:fb:f5:16:7b:ee:05:2d:e9:6f:8d:58:cd:2f:6a:
2b:25:d9:11:68:cd:0f:1b:1f:6c:2c:e7:84:f5:23:
c5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:61:92:D4:77:C6:BE:46:52:7D:46:AC:2A:C4:CB:EC:14:74:A6:46
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/MmGS1HfGvkZSfUasKsTL7BR0pkY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.120.0/21
Signature Algorithm: sha256WithRSAEncryption
9f:d8:c7:45:8d:d5:4d:5f:92:f3:1f:43:f3:cb:42:e1:39:38:
4f:5e:fa:6f:18:f9:67:b1:50:0a:69:06:e4:7d:52:57:a1:98:
4c:4b:3f:c0:21:5b:37:f6:f4:c8:d4:f9:58:00:3d:10:b3:b0:
15:f0:05:83:65:3b:c7:1a:c0:6d:b1:66:18:86:c8:27:6c:87:
38:3c:f4:27:d2:28:e7:ee:5a:88:1a:f1:9a:e0:33:48:81:23:
bd:87:4a:69:9f:3d:a8:4f:42:e0:be:c0:85:15:96:8e:21:b5:
1c:cc:fc:8c:40:7d:34:ba:2a:b3:b4:30:e5:4f:91:04:99:67:
cc:63:2a:da:69:0a:31:44:23:4d:28:24:b7:9e:d6:9c:1f:4f:
9c:b6:a1:23:68:ce:15:bb:08:24:5b:23:b1:b0:23:92:39:a6:
05:b0:74:4d:18:72:33:21:c5:26:41:a5:87:fb:e3:1a:27:5f:
23:cb:29:65:fb:d7:fc:49:21:df:27:09:10:e9:ee:9e:37:83:
e9:26:5f:9a:3d:5b:87:51:ba:7d:31:eb:cf:e7:61:a9:53:49:
17:f0:97:4f:4c:46:1c:42:f2:2b:7f:a3:40:18:f5:43:ac:63:
33:6a:50:c8:25:c3:dd:a2:44:a9:79:aa:1b:94:62:4c:1f:65:
43:7c:bd:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org