Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OVDWhbStUaUX1bpWAb-QJYtde9I.roa
File: OVDWhbStUaUX1bpWAb-QJYtde9I.roa (raw, json)
Hash identifier: 7ydL8iVT8eYRlXTgPis3E6jJEHfmHhXqXBQsavc9tRI=
Subject key identifier: 39:50:D6:85:B4:AD:51:A5:17:D5:BA:56:01:BF:90:25:8B:5D:7B:D2
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OVDWhbStUaUX1bpWAb-QJYtde9I.roa
Signing time: Thu 15 Sep 2022 02:38:56 +0000
ROA not before: Thu 15 Sep 2022 02:38:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10085
IP address blocks: 223.26.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:38:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3950D685B4AD51A517D5BA5601BF90258B5D7BD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e7:5a:10:44:0b:c7:4e:3c:89:1f:f7:e2:84:
3a:5b:ad:89:19:7e:7c:96:bb:ee:3d:1e:37:34:e7:
6c:52:55:d6:c9:0f:49:85:f5:21:42:85:8d:45:df:
27:31:b8:0a:7c:5a:55:07:c1:34:f7:c8:e4:71:c3:
2d:03:1c:47:87:10:58:78:2c:1f:39:a2:bd:f1:b2:
c8:f9:ad:a5:6b:dc:c4:4e:9a:5a:8a:06:56:78:9b:
fb:68:be:e1:bb:bb:69:18:bc:f4:aa:04:bf:5e:62:
d6:fa:71:2f:ed:88:3b:74:22:d6:83:76:50:e8:11:
91:39:e6:0b:7a:28:1e:d5:40:0b:ad:41:4d:ec:93:
c8:fe:ba:01:52:fe:df:8f:fb:1d:f3:5a:c1:88:0f:
ee:5d:80:cf:c2:6c:dc:49:e5:0f:5a:b3:4c:1e:0d:
09:eb:0e:21:98:23:a8:5e:5d:23:4d:91:7b:60:93:
a5:8b:d9:76:93:79:bc:30:24:a1:06:81:a9:61:ac:
3b:96:a0:46:0e:9e:64:18:19:8c:38:b2:4e:0e:ae:
3b:2c:f4:ed:e2:d0:96:ab:c8:03:c4:97:01:43:59:
66:a9:d2:9b:4c:d7:7e:9c:6c:fb:06:44:0a:14:c1:
d7:f2:14:f9:c2:68:01:78:24:4d:d5:57:db:25:78:
be:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:50:D6:85:B4:AD:51:A5:17:D5:BA:56:01:BF:90:25:8B:5D:7B:D2
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OVDWhbStUaUX1bpWAb-QJYtde9I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.88.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:60:8b:ca:d6:b0:0d:f2:3a:e0:09:6e:c4:e5:7f:f0:62:fe:
a9:a2:fe:96:df:1d:4e:1d:0f:c7:06:41:e9:88:8f:8c:68:7f:
7c:4d:e5:a1:67:c2:53:75:1c:67:1b:d2:a0:e4:66:ec:1f:dd:
4d:3f:1a:5e:09:f9:c9:79:7c:28:64:4d:f2:95:b8:57:db:21:
38:cd:b2:60:b4:de:43:35:c0:fd:3b:24:63:36:b8:7d:f3:60:
0b:b9:57:87:97:62:5a:ba:0e:88:20:15:88:0d:7e:6e:ea:f3:
d5:29:00:b6:a7:12:03:50:8a:4b:77:5e:be:66:ec:02:b3:48:
c9:45:48:71:03:69:51:79:91:1b:d3:6d:e3:35:f5:e8:80:f7:
32:75:41:a5:6b:5f:46:a9:f5:3f:02:db:27:3e:28:61:bd:95:
c3:17:d7:19:7b:44:9f:33:eb:57:69:b4:95:07:cc:b8:b9:d1:
6e:a8:56:d5:cf:38:01:dd:29:d2:1f:aa:22:3f:c4:9b:3e:fc:
b2:4c:1d:5b:40:eb:31:c9:c4:7a:59:45:89:e4:10:ce:9d:d2:
10:c2:56:ea:d2:22:6f:23:6c:25:71:c3:39:ad:a3:b4:f1:ca:
f4:8d:46:d3:c6:75:89:dd:98:d3:d9:37:d1:64:f3:3c:b7:84:
e1:a9:7d:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:45 2025 by rpki-client