Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/PDM-Eur4HS54nyjb5MoO4CSmZrg.roa
File: PDM-Eur4HS54nyjb5MoO4CSmZrg.roa (raw, json)
Hash identifier: knMWbC92e8G9q8Cj0QskWtwtbFsjBCuhoP8jBeeqlbc=
Subject key identifier: 3C:33:3E:12:EA:F8:1D:2E:78:9F:28:DB:E4:CA:0E:E0:24:A6:66:B8
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/PDM-Eur4HS54nyjb5MoO4CSmZrg.roa
Signing time: Thu 15 Sep 2022 02:39:05 +0000
ROA not before: Thu 15 Sep 2022 02:39:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 118.150.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:05 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3C333E12EAF81D2E789F28DBE4CA0EE024A666B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1c:b8:0d:00:6b:5b:29:5b:19:b7:2b:e5:b0:
a1:1b:a7:74:06:0a:a2:ee:3a:e2:47:d3:19:f2:96:
34:9c:17:88:b6:20:a1:8f:6b:2a:32:4a:ff:8f:ca:
4c:7a:ec:93:e2:45:48:d3:24:3f:73:7b:3a:b5:30:
5b:6c:6f:fb:66:4e:cd:5e:42:f2:58:a1:e7:9a:7d:
d6:57:ee:20:ca:c9:30:93:d0:37:cf:03:e3:6b:af:
fc:25:e3:db:57:91:8e:29:03:d2:e5:c8:e6:87:fc:
7e:0c:9d:a4:86:6c:54:60:24:29:e9:1d:ab:bd:63:
bf:ae:2d:16:38:0f:a5:ff:1c:88:bc:51:04:6f:ce:
eb:46:6c:57:b1:c4:a4:aa:32:23:9d:2b:32:39:8d:
d3:04:05:2c:ae:cd:68:df:6c:f5:1c:dd:2b:d9:d0:
b4:6a:05:92:5c:85:c9:10:b0:87:04:1d:6f:fc:a0:
9e:17:4c:ce:1b:74:c4:f1:0e:1a:47:a3:3e:89:73:
4b:8f:f0:f0:af:ac:fa:0e:68:20:36:71:ee:35:78:
96:1e:f6:2d:27:91:5d:48:f3:de:18:04:38:7c:5d:
25:6e:72:db:5f:4a:63:26:b0:64:75:cd:9e:21:9b:
80:32:59:fb:e8:3d:43:58:19:bd:54:6d:4d:dd:f2:
08:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:33:3E:12:EA:F8:1D:2E:78:9F:28:DB:E4:CA:0E:E0:24:A6:66:B8
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/PDM-Eur4HS54nyjb5MoO4CSmZrg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.0.0/17
Signature Algorithm: sha256WithRSAEncryption
0a:e3:a2:e1:8c:ef:a7:1d:11:17:bb:bf:0b:ed:7b:2d:f5:77:
1b:9c:42:51:fb:08:78:fe:b0:9f:8e:68:bf:0f:2e:b9:53:ce:
a9:ca:02:d2:2f:4c:00:75:0e:0d:9a:75:d8:b1:dc:38:f8:e9:
2c:cc:c1:73:66:af:d2:04:b1:8b:d4:a0:87:d6:4a:70:52:6f:
10:3e:d3:b1:b2:f2:3f:ec:08:25:da:46:ad:bf:44:96:7f:29:
26:2b:ba:12:be:0d:c0:1c:8f:82:1a:e7:f3:c7:dd:ef:22:2c:
53:d7:a6:c9:7d:90:19:6b:96:1f:de:89:55:d4:03:f1:99:b4:
d0:c2:70:9c:12:38:7d:8a:bd:51:ed:e1:95:f8:2d:d1:b5:d2:
4a:00:81:5a:c0:12:eb:db:7c:a0:35:84:80:68:f2:d6:b7:e6:
7b:cc:9b:1f:37:ca:95:c8:74:d7:a7:e6:a7:7b:87:54:0d:b2:
ea:bb:ad:27:71:bb:5e:f7:74:af:40:a7:80:38:26:ad:27:b7:
33:ff:0d:2e:dd:77:51:2f:63:e5:b5:b8:e3:83:30:59:38:f4:
ec:6d:cf:41:05:c9:a9:1b:27:ea:72:0e:93:ab:4b:73:7d:9e:
11:bd:d6:ac:b2:9a:b5:2a:e4:8d:db:c1:31:4a:a4:6b:09:5f:
3b:f7:25:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org