Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NB_Bh12bSHdhxVb8FzCWpUE4n9U.roa
File: NB_Bh12bSHdhxVb8FzCWpUE4n9U.roa (raw, json)
Hash identifier: H4wVEKN/R9lqPzTEY0ZmKCgTTu9N2qVOwpE0zAoJi1E=
Subject key identifier: 34:1F:C1:87:5D:9B:48:77:61:C5:56:FC:17:30:96:A5:41:38:9F:D5
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NB_Bh12bSHdhxVb8FzCWpUE4n9U.roa
Signing time: Thu 15 Sep 2022 02:39:09 +0000
ROA not before: Thu 15 Sep 2022 02:39:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=341FC1875D9B487761C556FC173096A541389FD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c1:89:92:fd:fd:24:a1:8a:f6:8a:7d:15:08:
e0:b2:21:68:f2:4e:66:41:a5:72:7f:5e:10:59:0f:
f0:f6:9a:1e:bd:6e:f5:87:28:7a:cd:cd:6b:54:f4:
63:6c:c5:f1:ac:d3:bb:02:c8:4a:3e:2a:81:2c:e7:
ee:0f:4f:80:d5:2f:74:4e:92:6c:0d:5f:56:a5:21:
8b:f2:af:5b:c3:7e:2d:cc:36:9d:e4:8e:4c:4e:e9:
17:f6:b8:0b:a5:e9:7c:cd:79:2b:48:76:3f:2a:fe:
66:6c:b3:8e:e3:ac:03:27:b6:03:d7:f2:5e:3d:8f:
70:a6:8d:2d:13:6a:f4:21:11:68:85:a1:c2:f4:0c:
ac:db:8a:97:a4:7a:83:ab:bf:85:9a:81:6a:b7:d0:
85:80:5a:e8:95:1e:8b:8f:88:a5:3f:f9:14:42:83:
a9:bc:5f:22:f8:3d:49:61:11:95:23:cc:f7:54:04:
83:f2:ed:a8:8a:e7:0f:60:5d:cc:84:3a:50:08:42:
c0:6f:97:01:a7:3f:b6:ac:b7:7f:87:aa:b7:e1:06:
6b:16:37:6c:f9:e3:02:24:82:0b:81:ae:fe:73:be:
a2:59:70:f7:4c:ea:2b:91:56:be:da:ab:6a:9d:fe:
a6:f6:34:a3:7c:9a:da:20:c2:fc:c5:08:dd:85:fe:
27:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:1F:C1:87:5D:9B:48:77:61:C5:56:FC:17:30:96:A5:41:38:9F:D5
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NB_Bh12bSHdhxVb8FzCWpUE4n9U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.84.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:46:27:79:e4:80:c4:1e:fe:cb:b3:cd:4f:8a:80:3a:03:58:
f9:9b:87:b7:66:16:5d:51:db:8b:86:b2:ba:7c:d6:b9:8f:ce:
2c:07:bf:4f:6a:b1:b9:b0:79:09:ec:15:50:27:1e:f7:6e:93:
a3:60:3c:f6:9a:82:19:f3:51:45:1c:78:a4:d9:a1:32:75:33:
f0:d6:d8:86:4d:35:82:40:8c:16:e3:67:af:7c:fa:00:70:e3:
21:ce:9e:f4:c7:d7:df:b3:e6:3f:41:a7:64:ce:4c:f7:81:5a:
bd:a0:06:74:be:27:da:8a:1b:66:7f:19:03:88:25:fa:b8:d8:
bb:50:06:35:df:ca:53:ba:da:d4:41:0d:db:fd:99:af:87:5d:
b7:90:58:4e:55:27:26:a1:42:4a:31:8f:25:6d:b8:63:3c:8d:
e7:18:bc:5a:4b:dc:97:c8:55:6f:55:49:a9:06:20:ee:d8:17:
cd:55:33:3b:10:e1:97:6b:02:c6:cc:77:c7:e0:db:56:ff:21:
7c:06:0e:85:63:15:b6:54:16:4d:bd:5c:af:46:d1:a3:8f:07:
90:8b:e7:25:51:8a:1d:4b:b2:c7:d7:eb:d2:8b:53:ed:eb:32:
a6:4b:bc:bf:6b:bc:dd:82:cf:d6:7c:64:73:87:5c:ad:a0:cc:
f8:d2:0b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org