Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/O3xIl2y9AMtRmPjkNXbVdafr4ew.roa
File: O3xIl2y9AMtRmPjkNXbVdafr4ew.roa (raw, json)
Hash identifier: aIrOeikclrtJDSqZvaFicRBijtnTUDx67jbEiGtGmWI=
Subject key identifier: 3B:7C:48:97:6C:BD:00:CB:51:98:F8:E4:35:76:D5:75:A7:EB:E1:EC
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DF0
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/O3xIl2y9AMtRmPjkNXbVdafr4ew.roa
Signing time: Thu 29 Dec 2022 09:32:02 +0000
ROA not before: Thu 29 Dec 2022 09:32:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3568 (0xdf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3B7C48976CBD00CB5198F8E43576D575A7EBE1EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:69:9f:40:5d:84:77:85:60:a0:9c:82:50:04:
ea:41:bd:4c:a9:7f:ab:97:72:d8:13:c6:d7:08:18:
cf:e1:25:2a:b5:a4:c5:41:26:94:12:3e:78:d4:50:
8f:1c:19:3e:d6:04:79:6e:32:6c:1f:b2:69:39:7f:
db:4a:e9:46:81:3f:16:26:ef:d9:29:f1:3c:37:24:
e4:47:39:4f:8c:2d:3a:5b:93:dc:76:95:7a:71:f0:
d0:6f:7c:be:60:6e:b2:81:a6:43:6d:f2:03:33:e4:
55:a5:5c:fd:df:4a:17:7f:5a:cd:3c:d9:34:f6:46:
f2:80:24:07:95:d2:bf:d8:d5:2f:4b:53:ff:2e:3d:
58:ef:63:f1:83:4b:57:92:f4:9d:40:86:7e:8e:83:
ce:ad:a8:8d:c7:c1:33:36:dd:84:28:b1:54:a8:7a:
22:84:39:bc:91:cd:4e:df:b0:21:73:ff:ab:2f:47:
aa:e6:01:15:f6:8c:d2:f1:ad:ec:f6:05:4d:59:5e:
09:a8:9c:7f:7c:9b:1b:7d:4d:17:78:9d:5f:83:ed:
f4:ed:11:fb:df:e3:26:d7:30:9f:08:0c:c0:3d:c8:
b2:1a:af:c3:fe:92:e7:55:88:b6:72:bb:a4:99:94:
40:f0:e8:69:75:29:53:67:05:91:4d:a1:50:73:7b:
ff:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:7C:48:97:6C:BD:00:CB:51:98:F8:E4:35:76:D5:75:A7:EB:E1:EC
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/O3xIl2y9AMtRmPjkNXbVdafr4ew.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.64.0/20
Signature Algorithm: sha256WithRSAEncryption
23:8c:45:7a:a4:70:9c:fd:6f:f2:08:35:ae:0d:0a:62:94:35:
a8:cd:aa:69:5e:01:e7:5e:64:d5:d3:ed:63:b5:e0:17:d7:87:
63:ef:e7:b8:79:2f:50:54:d2:1d:8f:7e:07:d5:cd:c4:2a:0e:
ef:41:89:b4:6b:b0:42:26:6d:15:c8:6d:af:6c:d7:06:e6:82:
95:cb:a4:96:75:fe:3c:ff:3e:63:cd:51:a1:5a:7d:f6:19:d9:
11:55:50:1e:03:77:d7:39:c1:04:25:ee:84:a1:c4:ae:de:dd:
0a:b0:cb:b7:cb:d5:44:c8:f8:db:32:c2:b7:48:7d:2d:dc:b5:
8d:b3:bf:66:e9:7f:07:f8:23:04:e7:7c:aa:f1:65:a3:e9:37:
06:a5:40:cf:d5:39:9b:0e:e1:b4:a1:d7:53:fc:59:53:24:ad:
c1:89:1c:ea:b7:0f:af:d4:2b:11:56:ab:84:6e:5d:45:78:c0:
8c:3a:9e:41:d0:1e:43:be:1f:fa:85:ba:fd:9c:91:01:25:e2:
f8:90:3e:6e:ef:6f:31:e6:9f:3c:51:9f:43:41:25:51:e3:78:
e4:ff:d9:65:2f:d0:27:eb:1c:93:ad:61:91:fd:90:07:f0:9a:
ca:1f:a9:2c:36:ae:0a:29:f5:9e:a6:e8:ab:ee:fa:09:6b:cd:
ec:c4:31:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org