Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OlJ1HXt_sz8lBs9OjBChrIBdAY0.roa
File: OlJ1HXt_sz8lBs9OjBChrIBdAY0.roa (raw, json)
Hash identifier: 5+aDNp4ot77UigluV0sE2WbimBw319EzTCvaOrNP3uw=
Subject key identifier: 3A:52:75:1D:7B:7F:B3:3F:25:06:CF:4E:8C:10:A1:AC:80:5D:01:8D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OlJ1HXt_sz8lBs9OjBChrIBdAY0.roa
Signing time: Thu 15 Sep 2022 02:39:15 +0000
ROA not before: Thu 15 Sep 2022 02:39:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63199
IP address blocks: 150.116.2.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3A52751D7B7FB33F2506CF4E8C10A1AC805D018D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ae:ba:2c:93:6a:f0:57:32:59:5b:61:e1:80:
8a:95:1b:bb:c9:85:67:f4:bb:a8:3d:45:71:56:49:
6b:35:ac:57:6a:8e:47:06:d3:da:72:f8:36:5f:d3:
75:53:12:b7:68:4b:a9:4c:2e:64:10:68:67:77:ef:
c4:a3:f5:16:f2:51:70:68:ef:61:fc:c6:bc:52:cd:
de:72:a4:da:a0:76:29:55:ab:23:4a:93:c6:a8:40:
14:e7:d5:a3:14:cd:6e:67:52:d1:db:d2:fb:97:e9:
51:98:3c:1f:13:b1:58:7d:65:b1:59:9d:7b:fc:ee:
2b:60:f7:4c:c9:5b:99:7a:de:91:4c:63:89:91:cf:
78:00:5d:63:2a:bf:15:0f:57:0b:84:94:c3:9a:61:
49:7a:53:ed:5b:38:0f:07:c8:69:16:dd:a7:62:98:
73:8d:be:d7:0d:ef:db:2e:55:c2:66:5f:76:b1:65:
a0:0f:97:59:be:08:2e:47:dd:5b:4c:52:e2:a9:e0:
ef:b2:e5:90:9e:80:02:99:2d:68:16:58:b6:9f:8f:
14:83:9b:bc:6e:34:c0:a3:43:00:11:6a:1d:ae:a9:
d3:4a:01:66:bf:72:5d:e8:79:15:27:f5:1b:62:38:
54:9e:5e:fc:97:b2:86:65:ca:45:90:07:c3:56:e5:
b1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:52:75:1D:7B:7F:B3:3F:25:06:CF:4E:8C:10:A1:AC:80:5D:01:8D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OlJ1HXt_sz8lBs9OjBChrIBdAY0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.2.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:a3:db:45:ac:24:d2:2e:e9:0d:d6:3f:d7:62:e2:e9:db:8e:
2f:73:d9:9e:d0:92:37:39:42:6f:04:a8:7f:6f:3e:82:e5:9d:
b6:f5:0c:03:1e:d9:8c:08:c5:ac:e2:80:e4:b2:e9:31:56:59:
a8:8d:80:b4:24:eb:fd:3d:79:60:32:2d:c9:3d:2b:13:26:5c:
62:ee:2e:4f:d6:b7:85:30:2e:44:aa:a5:fa:09:3f:38:cd:eb:
2b:08:e8:45:11:d9:45:ed:87:47:81:b4:66:1e:ae:34:76:74:
75:c4:93:4b:c5:fc:94:26:3d:0a:2f:73:39:fa:b0:cd:8e:32:
ff:71:d5:71:ab:a9:07:7d:10:72:9c:35:6d:cd:a7:47:2d:b1:
2d:d6:d1:2e:fd:89:c1:ef:6a:02:07:54:0f:66:ac:ec:fd:df:
5c:14:c9:78:a9:ec:d0:3a:64:32:33:29:ab:69:70:47:80:8b:
59:f2:2a:64:53:72:a7:ca:53:d4:3e:4a:a7:1e:fb:13:63:37:
84:23:b7:1f:48:da:12:e9:4d:27:a8:4c:11:00:c8:32:ab:95:
ce:78:47:45:f1:23:aa:80:e1:27:93:4f:37:6a:71:fb:32:0f:
a5:20:53:52:da:1f:76:47:75:4c:9a:98:6f:ec:49:9a:f5:9c:
b8:1b:c5:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org