Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QHOrYC1Q9y9BpiT5gfMZOUvOs28.roa
File: QHOrYC1Q9y9BpiT5gfMZOUvOs28.roa (raw, json)
Hash identifier: zb3hRCv73Szystreb1qvVupF2LOxseTpUz7AfsB6rf0=
Subject key identifier: 40:73:AB:60:2D:50:F7:2F:41:A6:24:F9:81:F3:19:39:4B:CE:B3:6F
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QHOrYC1Q9y9BpiT5gfMZOUvOs28.roa
Signing time: Thu 15 Sep 2022 02:39:06 +0000
ROA not before: Thu 15 Sep 2022 02:39:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10085
IP address blocks: 150.117.112.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4073AB602D50F72F41A624F981F319394BCEB36F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:52:b7:47:6b:28:1f:ef:9d:38:d8:48:e5:5b:
7e:ac:72:86:15:34:57:e1:d4:b6:f1:a5:1d:96:66:
72:22:c4:9c:e0:89:25:66:1a:ae:9b:4e:19:97:e1:
b6:0c:62:4d:7b:80:4b:48:01:5c:bb:c2:c4:2f:8c:
26:81:f2:7c:f2:04:bc:cf:05:19:b3:8a:21:46:7f:
47:56:00:34:43:0e:20:43:1b:85:ed:d6:cf:68:fd:
71:bc:b5:c7:45:1f:ca:94:4c:09:f2:97:31:b9:b8:
23:d0:80:b8:12:85:09:3a:b4:62:ac:a2:96:22:dc:
8f:39:f5:e0:9e:7f:8d:f0:71:1c:3b:72:26:57:ee:
4a:7c:d7:fb:65:c7:0c:4d:4b:d2:6a:7c:f5:99:03:
55:45:10:3a:46:23:6f:cd:0a:10:2b:df:60:b6:3c:
73:92:e0:db:f5:83:72:32:f2:a3:69:67:d5:ce:e4:
ac:11:5c:22:71:2e:10:65:73:89:47:f4:9b:e9:eb:
a3:86:3e:e2:f0:ae:79:83:27:fe:54:45:64:ea:c6:
86:4a:6d:b7:d2:30:a2:a4:fa:6e:7d:a0:95:ee:71:
d0:02:73:4d:b4:e2:25:ad:4f:fe:49:70:49:8b:18:
c5:9a:0f:81:63:a3:ce:74:86:96:74:ab:e8:ad:5a:
64:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:73:AB:60:2D:50:F7:2F:41:A6:24:F9:81:F3:19:39:4B:CE:B3:6F
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QHOrYC1Q9y9BpiT5gfMZOUvOs28.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.112.0/21
Signature Algorithm: sha256WithRSAEncryption
17:e1:99:ee:c5:3b:52:15:6b:76:8e:2d:74:54:d7:a6:0d:f1:
9d:d9:49:f5:54:08:26:f3:00:55:9e:b7:d2:62:51:68:87:e2:
52:e7:90:3a:a9:77:0b:42:ec:9a:a7:c5:3f:84:07:7a:be:02:
29:d6:06:4f:cf:ce:6d:9e:3f:92:a9:27:a8:a3:73:6d:f0:5b:
dc:2c:0d:d1:49:d2:ad:af:98:31:77:5c:4a:c4:13:85:76:50:
81:87:d3:50:03:d5:40:0f:d4:e1:4c:ae:1e:72:b9:59:06:f1:
1c:cd:fb:7f:28:8f:74:b3:df:0c:31:d8:04:97:94:4d:1c:a9:
0c:21:d6:2d:0d:33:b0:99:c4:f0:d7:e9:be:3b:ea:d4:6a:e6:
80:5c:fe:6a:cb:5e:7b:e4:f1:0c:52:89:36:4a:cc:9f:c6:73:
34:59:18:1a:9b:64:df:a5:cd:b0:1a:05:bf:45:9f:81:cf:42:
ef:00:3a:dc:c1:45:be:5f:ef:ef:01:82:d8:14:87:b4:3e:6b:
be:87:28:8f:23:99:ec:7b:9e:35:b7:b0:d2:87:ca:f5:1b:56:
86:ce:a5:78:74:4d:5f:50:30:ed:a6:73:c6:fd:52:aa:f9:5a:
72:a6:01:36:0d:69:1a:bd:8f:e8:a9:ce:ae:be:2f:cc:b7:ef:
82:d7:45:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org