Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/PMTWFy-BoRy_FEk20Vftt-G2pu8.roa
File: PMTWFy-BoRy_FEk20Vftt-G2pu8.roa (raw, json)
Hash identifier: ywz4hR4fdU+PsGscAFCh40bx/qRicr/RGLdY6Q1EhvI=
Subject key identifier: 3C:C4:D6:17:2F:81:A1:1C:BF:14:49:36:D1:57:ED:B7:E1:B6:A6:EF
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BD4
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/PMTWFy-BoRy_FEk20Vftt-G2pu8.roa
Signing time: Wed 29 Sep 2021 02:38:44 +0000
ROA not before: Wed 29 Sep 2021 02:38:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 118.150.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3028 (0xbd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3CC4D6172F81A11CBF144936D157EDB7E1B6A6EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d9:69:05:57:ea:56:24:df:d9:a5:c3:2b:65:
78:6d:22:90:ad:29:15:f4:26:e2:b2:63:78:a8:76:
49:f0:0b:28:cd:aa:23:34:3a:f1:6f:ed:db:15:bc:
e0:0f:91:e8:70:21:d5:3c:73:65:3a:0a:8f:cb:93:
8e:a5:6d:fa:46:a5:0e:8b:8c:65:97:c9:75:a5:78:
8b:ec:ee:8c:66:8a:50:dd:6e:33:70:3c:d8:90:48:
14:26:88:91:6c:a9:6e:0a:0f:93:07:ee:4e:a2:79:
23:81:cf:cb:a0:98:48:50:1c:8a:c3:ce:3a:6c:dd:
45:fa:9f:88:79:41:2f:45:05:44:c4:3c:6c:1f:9c:
a7:db:b7:a8:61:2b:4c:65:0c:c1:4c:d2:24:a6:af:
44:fb:f7:5f:23:91:50:ad:90:37:0b:14:6f:1b:c7:
a8:49:28:da:a4:ec:e1:25:9b:ca:5d:70:be:c2:96:
0e:13:7d:71:51:e4:bc:f5:56:ae:fe:6c:e2:a5:2f:
f5:07:59:25:8b:3c:29:07:4b:5b:9e:79:58:7a:ff:
b0:87:ac:10:3b:8a:fd:6e:84:ab:96:26:f6:77:5f:
8b:7f:97:52:d6:15:f4:c6:79:12:02:79:c9:7b:90:
d8:dd:82:26:f4:e3:19:2d:07:27:97:79:fe:58:06:
15:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C4:D6:17:2F:81:A1:1C:BF:14:49:36:D1:57:ED:B7:E1:B6:A6:EF
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/PMTWFy-BoRy_FEk20Vftt-G2pu8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.0.0/17
Signature Algorithm: sha256WithRSAEncryption
19:fa:f2:ad:ce:ab:8d:59:17:7d:9c:f7:5f:58:22:51:85:66:
7b:78:67:30:40:14:c0:9b:33:b5:dd:b1:1a:ea:68:10:83:03:
c2:00:0f:d0:db:5c:f2:bc:53:b7:a6:e6:02:40:26:07:af:a5:
cc:1b:29:9d:57:5d:be:9e:c8:bd:31:66:b4:88:0d:8e:69:3e:
d4:c1:1c:b5:02:f1:70:ab:5e:9e:8c:9e:34:8f:63:a0:e9:d7:
3f:8f:4a:dd:b1:12:73:18:ef:4b:5e:f8:de:a7:08:b5:bd:54:
97:02:7e:45:55:0e:cc:23:8e:84:6b:bd:d0:0d:79:15:e9:6f:
52:19:f9:ae:20:94:ac:e3:84:a2:e7:77:18:05:74:2f:c0:90:
97:dd:e8:40:d7:fa:46:1a:bf:4a:9b:1b:6a:0e:d5:da:7d:b4:
c5:d3:8d:64:1e:20:1c:1e:8c:b7:cd:dc:e4:ca:4c:4e:b5:c0:
ed:2a:6d:0a:be:2a:aa:ab:58:c0:f2:48:1b:3f:95:f2:ce:13:
e4:d0:a4:d1:ce:1c:37:da:44:3a:d4:6e:6e:3f:53:8f:eb:53:
2b:4d:4e:89:6c:ae:9e:c0:3c:07:d2:54:86:7a:ef:53:55:67:
34:16:58:8e:fa:1b:fa:fb:a9:ab:d1:66:ea:0b:28:fa:70:0a:
f7:45:21:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org