Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/PFyE-viX_Usr_99rfGBiyzod2UI.roa
File: PFyE-viX_Usr_99rfGBiyzod2UI.roa (raw, json)
Hash identifier: zXshul6nbu7Vzx1O1G+TqNO4aqjsMqjLrLncrYP6Z90=
Subject key identifier: 3C:5C:84:FA:F8:97:FD:4B:2B:FF:DF:6B:7C:60:62:CB:3A:1D:D9:42
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C7A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/PFyE-viX_Usr_99rfGBiyzod2UI.roa
Signing time: Mon 22 Nov 2021 00:55:22 +0000
ROA not before: Mon 22 Nov 2021 00:55:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 118.150.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3194 (0xc7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Nov 22 00:55:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3C5C84FAF897FD4B2BFFDF6B7C6062CB3A1DD942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e8:56:a8:fa:4e:aa:8e:e1:52:2c:87:6f:22:
1e:88:71:b5:7e:1a:71:52:3f:45:24:f2:6d:3c:6c:
ba:d7:40:bc:e5:78:4d:4f:20:3a:46:da:93:3e:10:
52:61:0e:53:79:75:8c:79:4e:c3:e6:32:f9:e8:71:
33:53:b1:f4:67:56:1c:8b:28:e8:78:89:b7:ba:92:
38:69:3a:c0:3d:a2:44:9e:9f:2b:d7:97:ad:83:dc:
18:83:33:49:a4:63:67:59:0e:06:97:e3:85:89:0c:
61:e2:35:fd:64:23:35:5e:1b:01:af:ad:0b:fd:69:
d5:21:08:25:3d:e5:37:bf:43:23:10:b3:b7:c9:18:
7a:d2:b5:dc:fc:fb:da:e1:61:f1:e4:91:2f:d9:54:
b3:5b:c6:83:b3:c4:b0:b0:f8:d5:14:1d:33:8b:49:
4d:ef:1e:aa:70:00:a3:16:a5:65:26:2b:18:23:66:
01:05:6f:bd:15:35:92:63:7e:63:d1:bd:db:09:36:
c8:4c:17:d1:09:ce:7c:65:38:1f:fc:f0:02:ef:17:
29:8d:d5:49:08:17:cb:46:d5:d9:86:91:bf:fc:2d:
0f:67:11:65:64:5f:33:96:23:0d:15:f7:17:97:a4:
7c:39:52:e6:0a:16:86:86:df:56:b2:ad:84:b8:bc:
98:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:5C:84:FA:F8:97:FD:4B:2B:FF:DF:6B:7C:60:62:CB:3A:1D:D9:42
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/PFyE-viX_Usr_99rfGBiyzod2UI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.240.0/21
Signature Algorithm: sha256WithRSAEncryption
66:f7:3b:7b:21:f0:a4:a3:60:25:81:8d:1f:63:08:88:9b:17:
20:d9:c7:0e:2a:56:43:b2:d3:e9:c5:9a:73:f5:ea:d3:66:75:
ec:1c:f0:11:98:50:d3:f8:c5:d1:69:35:80:a9:41:2a:e4:6f:
f3:c0:ff:ae:04:8a:d6:e6:79:61:ae:7d:0a:a7:78:63:ca:9f:
42:42:52:61:e0:e7:29:f7:32:14:2c:6c:ae:24:96:11:23:25:
d6:7e:96:38:e3:23:c5:21:a8:61:3b:15:be:4a:b8:b9:e4:c6:
ae:94:76:6a:a4:c8:a3:72:79:ba:19:68:f5:21:5c:2f:be:43:
6c:c6:bb:29:32:2d:dc:97:92:e2:d1:4a:52:28:63:b4:d9:25:
0c:41:53:5d:a4:19:56:68:f6:41:5d:ea:08:dd:37:06:da:bc:
d0:56:b5:10:64:93:73:2d:2f:26:69:95:e9:53:a2:7a:aa:d9:
d3:c9:55:27:17:d6:74:5f:13:3a:ec:27:ce:10:bf:a7:5f:81:
5a:e0:3f:17:4d:77:dc:2c:c7:12:de:b5:e2:21:e3:46:8c:33:
6c:32:24:33:ec:ab:1f:a9:89:aa:d1:85:07:30:da:df:7b:4b:
00:1c:7e:cd:1d:06:6e:a7:19:91:4e:1a:5a:60:81:ac:9d:ad:
82:22:59:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org