Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/O77KBFwfJM88mGFqP5bIY-y_pxU.roa
File: O77KBFwfJM88mGFqP5bIY-y_pxU.roa (raw, json)
Hash identifier: //Oy4tTpk+BYk7n5hzBW6rZmPMl6jvUxIk4hLEQPiM0=
Subject key identifier: 3B:BE:CA:04:5C:1F:24:CF:3C:98:61:6A:3F:96:C8:63:EC:BF:A7:15
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 085F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/O77KBFwfJM88mGFqP5bIY-y_pxU.roa
Signing time: Tue 29 Sep 2020 10:02:23 +0000
ROA not before: Tue 29 Sep 2020 10:02:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 203.163.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2143 (0x85f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3BBECA045C1F24CF3C98616A3F96C863ECBFA715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:8f:71:bb:63:d5:2f:87:fe:55:16:32:db:2e:
ff:2c:92:94:15:c1:89:e1:55:74:ca:43:bb:cc:df:
4f:70:fc:47:c5:95:6f:c7:bd:90:00:cd:4e:59:4b:
58:5a:f3:b9:c3:3a:95:db:61:78:2d:9c:ac:49:d2:
43:ba:a4:47:0f:96:cd:af:19:c2:b2:90:2c:d7:3e:
ff:c4:ea:da:f5:09:34:c5:49:f0:09:fc:5a:f3:4f:
a4:2d:d2:80:37:d6:46:89:84:bd:84:40:9a:4c:fe:
3f:e2:fc:ea:77:dd:2c:92:e1:8f:41:cf:95:b6:dd:
41:2c:c0:8f:7d:dc:c4:99:88:a8:e0:e3:ff:48:49:
18:88:e6:a6:9a:d4:a2:f4:38:38:49:c8:ef:a6:59:
e4:35:26:d6:69:2c:d2:69:c9:dc:97:e5:82:f0:fb:
53:fe:79:b9:07:4e:0c:4b:34:6e:6f:1a:32:3b:54:
8b:dd:e6:bb:60:43:a2:dc:3b:5f:fc:fd:8a:94:7b:
20:2e:d4:15:13:b5:b5:9d:96:82:a7:a2:31:67:b0:
b1:fa:41:85:00:11:ce:36:7a:26:c9:d2:13:55:1c:
36:45:6c:27:0a:e6:94:3e:42:58:d1:38:a3:cf:8d:
71:4f:02:3c:ab:9b:3c:fe:a2:11:c3:7d:c0:9b:48:
be:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:BE:CA:04:5C:1F:24:CF:3C:98:61:6A:3F:96:C8:63:EC:BF:A7:15
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/O77KBFwfJM88mGFqP5bIY-y_pxU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.208.0/22
Signature Algorithm: sha256WithRSAEncryption
74:c7:57:03:91:68:8c:fd:2e:bf:46:06:94:b3:af:a9:3e:a2:
b4:51:3b:a3:b4:a1:eb:b9:1b:15:60:29:5e:5e:6d:5b:91:98:
d0:91:2b:a2:d6:fa:4c:f4:c1:b7:15:98:ec:6c:a0:89:18:45:
4e:92:88:62:e9:16:02:a1:2e:dd:09:95:9e:f3:1c:f3:23:2a:
b0:cc:5b:2a:17:2f:b1:d0:eb:ff:61:35:95:23:95:ac:9f:ab:
77:f2:fc:55:c3:26:5e:49:71:2c:cf:dc:d8:04:9d:f1:80:42:
54:d1:60:ab:b8:93:c1:c4:3c:94:34:04:8c:8c:a9:1b:40:b7:
7e:c0:86:06:e8:32:1d:b2:5a:27:2b:94:e5:7b:10:92:8a:91:
d0:15:bf:b6:c9:b0:30:c2:c2:90:22:0d:59:a2:bd:50:71:81:
b0:bf:d2:21:26:76:f0:20:90:dd:c9:e3:06:f7:87:ee:fb:28:
88:f5:3c:2a:ce:2f:86:31:cc:fc:e3:ae:49:46:42:39:3b:cb:
e8:a3:d8:14:c9:f2:75:29:ec:4e:8a:a9:09:31:3e:e9:fb:25:
83:df:72:60:61:4b:ed:7c:ca:70:9c:38:b7:9d:b7:4d:df:31:
2d:43:00:a8:92:5b:b7:db:1f:7b:36:e2:92:16:a8:c9:0c:6f:
15:89:6e:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:48 2023 by rpki-client on console-ams.rpki-client.org