Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QJZNZvGHUhoZPUediS51C9Uatf0.roa
File: QJZNZvGHUhoZPUediS51C9Uatf0.roa (raw, json)
Hash identifier: xyVAwHEA8WUxz8+FP01k2ZKWpXFsbgAuZsMO74lPiYs=
Subject key identifier: 40:96:4D:66:F1:87:52:1A:19:3D:47:9D:89:2E:75:0B:D5:1A:B5:FD
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0862
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QJZNZvGHUhoZPUediS51C9Uatf0.roa
Signing time: Tue 29 Sep 2020 10:02:24 +0000
ROA not before: Tue 29 Sep 2020 10:02:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 203.163.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2146 (0x862)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:24 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=40964D66F187521A193D479D892E750BD51AB5FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e7:21:14:e9:82:6c:84:22:63:a0:5b:4a:0b:
9a:4e:b7:4c:b3:90:28:95:31:ce:28:26:73:c7:32:
90:83:a0:22:87:1f:8c:34:45:53:9f:e0:6c:0c:d5:
c9:66:2f:dd:c5:7f:ca:de:ce:f8:8d:da:91:73:ce:
13:3c:88:d5:f8:87:88:43:60:4b:77:b4:c0:b2:03:
24:4d:2a:84:28:6b:2a:3f:53:a0:85:f0:40:a9:5b:
9b:fa:f9:b5:8b:ce:0d:9c:81:58:5c:36:1a:c8:d3:
d7:d0:e6:12:07:57:5d:22:ec:13:0f:e0:73:08:7d:
dc:6f:7c:21:d6:07:85:db:76:3a:08:14:c2:9f:9e:
40:94:c9:8d:ea:ab:08:84:57:6e:24:69:f2:2f:3f:
40:1d:e1:54:e3:3e:7b:9f:79:4a:54:7d:b6:58:05:
55:81:d5:fb:e1:39:a8:be:b2:db:b1:49:2e:3d:33:
9d:3c:c5:af:4c:c7:b6:3a:e8:5c:bf:75:8e:65:8b:
a4:28:a3:1d:31:05:75:f2:2c:ac:17:ea:84:3a:41:
d5:79:96:24:66:cb:6d:08:73:c5:59:aa:9c:99:a9:
a5:b3:4b:e5:f1:37:d6:88:c5:cb:47:37:a8:70:a5:
9a:b7:8f:2e:a4:3f:78:a3:86:bc:95:0f:16:cc:9c:
14:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:96:4D:66:F1:87:52:1A:19:3D:47:9D:89:2E:75:0B:D5:1A:B5:FD
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QJZNZvGHUhoZPUediS51C9Uatf0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.204.0/22
Signature Algorithm: sha256WithRSAEncryption
31:28:9e:92:52:8a:9e:ae:02:91:a9:c1:3c:4c:8c:1f:2b:71:
99:31:57:3f:ce:d5:65:9b:a2:9d:7c:02:25:86:44:28:16:50:
2e:05:e7:7d:df:ce:27:98:8f:c5:df:5b:80:53:01:22:04:e4:
81:99:d9:25:2b:38:49:6e:1b:b2:e9:16:4e:52:dc:9a:eb:87:
c6:63:8d:34:83:5e:0d:ec:14:09:71:14:59:bc:60:7b:08:6a:
fe:dd:3a:a6:20:8d:d8:84:5e:08:31:05:95:4d:41:56:1d:6f:
0c:47:2d:0e:54:9b:45:48:97:9a:bb:9d:fc:e8:eb:f3:8b:be:
45:fb:51:29:04:6b:6f:03:71:ba:03:eb:39:04:a8:00:0e:95:
87:71:c2:2c:11:70:a6:4f:d8:0a:bb:23:06:26:72:c1:ad:48:
05:e4:e9:ce:b3:7e:3e:10:5b:d2:27:61:23:ab:80:6d:55:00:
18:4f:44:58:06:0e:89:48:ba:7a:50:c6:aa:95:b2:03:3d:1f:
b4:e5:49:2c:3d:06:17:16:00:ff:60:17:eb:be:37:d0:38:f3:
9c:40:e9:7d:3b:b8:14:26:42:f4:40:4d:7a:48:4f:cb:c3:bc:
db:41:a3:b1:a7:42:92:dd:f8:08:da:8d:be:70:3b:66:0a:b1:
6e:a0:ba:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org