Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NrfEeGNcxDgE6bkRMMUtJV7qHcM.roa
File: NrfEeGNcxDgE6bkRMMUtJV7qHcM.roa (raw, json)
Hash identifier: 94vANfXGP/254ieJJ0l0Vpg9AuYFOZXI8G89K/JlanI=
Subject key identifier: 36:B7:C4:78:63:5C:C4:38:04:E9:B9:11:30:C5:2D:25:5E:EA:1D:C3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C05
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NrfEeGNcxDgE6bkRMMUtJV7qHcM.roa
Signing time: Wed 29 Sep 2021 02:38:57 +0000
ROA not before: Wed 29 Sep 2021 02:38:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 223.26.104.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3077 (0xc05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=36B7C478635CC43804E9B91130C52D255EEA1DC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:30:07:d4:33:a4:f2:11:40:53:9b:1f:48:8a:
0d:85:94:5b:cc:b9:f1:ad:dd:29:84:1e:4d:7f:de:
57:fd:aa:ea:fb:2b:64:e2:a8:a3:fd:21:94:40:d7:
ef:51:53:db:c4:74:09:5c:0f:2a:84:e9:55:fc:d8:
69:1a:c1:12:89:40:cf:d5:f9:90:ac:fa:2a:59:e3:
06:f2:07:ca:3f:2d:8a:59:02:ec:02:5d:47:77:57:
32:be:94:87:44:99:fc:da:15:1b:2d:63:ee:a3:8d:
07:9a:ba:36:93:a8:e9:ee:11:c9:61:db:cc:cb:6b:
82:1a:8c:ff:48:0d:5b:9a:a6:a4:cf:c6:a9:de:04:
53:10:92:a8:7a:77:16:d3:1a:1b:f0:2d:6d:2a:9e:
33:93:c3:fa:7e:c8:bc:59:b2:d5:84:0c:e9:74:77:
ed:c9:e7:05:3f:3c:78:67:1e:89:29:a6:56:f5:aa:
47:9d:df:72:98:f4:b1:5a:6e:0c:62:44:b1:54:43:
fb:e0:80:14:ce:5b:a6:1e:9c:59:90:38:c4:2b:41:
12:f4:fe:02:d7:1c:14:c7:61:c5:af:ff:07:fa:6b:
0d:f5:ee:eb:58:a2:f5:4e:3b:7b:63:24:0c:2e:71:
15:19:48:b6:0d:74:16:20:39:4f:c3:0f:cc:5e:73:
c8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:B7:C4:78:63:5C:C4:38:04:E9:B9:11:30:C5:2D:25:5E:EA:1D:C3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NrfEeGNcxDgE6bkRMMUtJV7qHcM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.104.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:b3:bd:0d:3a:0d:dc:f2:09:61:9b:e8:cd:41:16:77:a3:d7:
75:a3:2c:c7:78:05:dc:72:ae:79:e1:48:46:53:51:98:db:95:
81:66:31:9a:a0:f8:e6:52:58:5d:8d:2a:e6:9f:8c:df:21:7e:
b3:d7:d2:c4:bc:da:a5:d3:27:56:66:78:d1:23:97:47:dd:b6:
ae:bf:d6:2a:a9:3d:38:3d:ae:36:b8:11:af:dc:3c:f4:09:9e:
47:66:86:ed:cb:b1:b5:6f:82:64:77:09:b5:8c:f9:50:94:1a:
1b:24:00:00:67:f8:f1:ae:e2:92:ce:b2:f3:53:99:1b:61:33:
c6:22:f0:d6:77:49:c1:cc:99:be:25:5e:af:91:ed:61:b3:dc:
ff:ec:19:73:2b:ba:7a:ea:9e:e1:e8:c9:b2:e9:d3:d4:14:85:
4f:4a:2e:fc:f8:77:82:f7:1d:67:ca:15:c4:ff:4a:c4:03:17:
19:f0:4a:47:df:79:36:22:6f:de:59:28:c6:6a:21:b5:ee:38:
c0:4f:0a:f5:fa:5e:73:f9:98:ad:cd:77:b0:67:22:95:f6:37:
b6:02:39:17:df:79:8d:ca:96:7b:ac:04:38:36:0c:14:75:22:
49:ba:8c:de:15:b6:a3:12:c2:21:74:f6:7e:a2:27:3a:c0:ad:
f4:05:45:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org