Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/P3wk_qzwCz77VzXCGycaoStb2Bw.roa
File: P3wk_qzwCz77VzXCGycaoStb2Bw.roa (raw, json)
Hash identifier: o9FQdpKGHn6V4PQvJjHCfTvjpIt5MYYupupMRGgRttE=
Subject key identifier: 3F:7C:24:FE:AC:F0:0B:3E:FB:57:35:C2:1B:27:1A:A1:2B:5B:D8:1C
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C78
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/P3wk_qzwCz77VzXCGycaoStb2Bw.roa
Signing time: Mon 22 Nov 2021 00:55:10 +0000
ROA not before: Mon 22 Nov 2021 00:55:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 118.150.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3192 (0xc78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Nov 22 00:55:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3F7C24FEACF00B3EFB5735C21B271AA12B5BD81C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:62:2d:88:74:a6:91:e7:32:8f:81:a3:f2:78:
8f:b3:2d:72:45:60:56:71:82:d4:aa:cb:a2:16:24:
d9:e4:53:9b:28:bd:a6:6d:f1:c4:01:40:3c:ec:72:
4d:ff:f2:1d:39:15:0a:a6:ec:cd:1a:1a:0a:19:bd:
63:2f:45:db:d4:57:8c:e4:96:16:c1:f4:9c:b6:3f:
1d:49:43:c4:dd:21:62:08:79:25:e1:61:50:fb:a2:
f7:cb:c1:20:38:6f:e2:70:be:e6:e1:f0:de:f6:b6:
b9:d3:c8:44:37:61:b4:e4:45:ad:ba:5e:81:a1:42:
29:78:4d:74:9e:59:d7:c7:d5:3d:59:14:fe:02:36:
8f:c1:07:dd:5d:4c:95:31:8a:0e:09:7e:0d:da:f5:
e9:25:37:de:a9:a7:73:8f:38:9b:27:1b:47:33:a0:
bf:b0:62:08:84:11:22:ce:bc:14:96:86:0a:09:96:
5d:3b:3d:ef:19:14:a7:df:d7:7c:67:78:99:7b:12:
7a:1a:1f:6a:62:ea:d6:89:06:be:3c:ba:61:3d:cd:
22:26:24:fb:42:4b:f4:f6:23:1d:a1:99:0c:2c:e3:
0b:d9:32:cb:a5:6a:cf:43:1b:32:cc:7b:c0:8c:b4:
f3:d4:a9:d1:97:a1:34:94:dd:57:8c:29:e5:24:ea:
25:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:7C:24:FE:AC:F0:0B:3E:FB:57:35:C2:1B:27:1A:A1:2B:5B:D8:1C
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/P3wk_qzwCz77VzXCGycaoStb2Bw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.224.0/21
Signature Algorithm: sha256WithRSAEncryption
1e:b3:8e:e9:59:ca:50:7e:64:c1:bf:3a:1d:36:70:78:8a:80:
08:cf:b4:d3:af:8a:53:a6:62:30:34:2a:95:a8:56:80:94:3e:
ec:93:91:db:59:1b:38:38:7f:f5:89:50:a4:4b:7c:bc:40:e1:
cc:e4:f7:e5:28:b6:88:d6:56:5a:68:61:cc:3d:aa:22:13:ad:
c5:2a:c2:6b:d0:e1:d3:3d:f1:6a:39:1b:ec:3f:51:9d:bd:57:
28:1c:1d:c7:04:35:9b:99:c6:b4:37:a9:32:2b:b0:0e:2b:a3:
46:c3:d5:ae:ef:3d:1e:da:f3:44:83:ab:23:0f:e3:92:2f:90:
6c:51:ef:45:5d:70:ac:2a:9c:f2:35:2d:00:d3:0c:ff:e9:29:
55:87:b5:92:69:d5:94:03:cb:79:a0:13:8d:0d:78:4d:e3:fc:
77:66:7b:e3:f0:68:cd:98:d9:df:eb:3b:bb:f3:a1:11:74:85:
df:b8:aa:4a:b3:dd:aa:a3:6f:38:0b:75:38:8b:2c:bb:00:4b:
b8:80:aa:cd:8d:4b:4a:dd:59:8c:ee:29:3a:06:9a:71:df:83:
e0:aa:b7:18:28:fe:6c:73:fd:52:c5:a4:fe:07:52:8c:b5:1a:
e7:97:55:b6:47:bf:f3:e8:94:2d:2c:9b:89:e5:30:e6:05:6f:
ac:63:e4:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org