Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QM13boEv5TWnf2a1w_iyBYXx4nI.roa
File: QM13boEv5TWnf2a1w_iyBYXx4nI.roa (raw, json)
Hash identifier: VDIhigbKDybQnHGNBtp1TnluzRi/v0cmvHuhQtbllHs=
Subject key identifier: 40:CD:77:6E:81:2F:E5:35:A7:7F:66:B5:C3:F8:B2:05:85:F1:E2:72
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DCE
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QM13boEv5TWnf2a1w_iyBYXx4nI.roa
Signing time: Thu 29 Dec 2022 09:31:53 +0000
ROA not before: Thu 29 Dec 2022 09:31:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 223.26.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3534 (0xdce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=40CD776E812FE535A77F66B5C3F8B20585F1E272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5e:69:d1:52:03:31:de:21:c7:fb:14:45:35:
55:c2:11:fc:b5:cf:bf:3f:62:07:f6:9e:f3:02:b1:
24:57:96:d9:96:02:80:2d:75:39:a6:4b:1e:e9:38:
11:ad:44:8d:ea:3c:7b:e5:c3:4e:05:5c:e3:2f:c6:
e7:92:98:80:cd:81:45:64:d0:dd:cc:1d:b5:32:af:
4c:6e:ec:bc:6e:3f:26:78:80:b0:1e:6f:7f:8d:a5:
18:57:10:c1:f0:c8:d5:17:d8:e8:4b:1a:83:f4:af:
c2:48:58:c2:db:c6:df:48:71:e7:93:6d:36:54:82:
8c:e1:26:51:17:8b:bc:8d:7c:95:fe:55:1f:64:73:
52:15:bc:d6:58:6b:a9:b4:4c:40:ea:39:a7:1a:f7:
7d:25:04:62:40:20:fc:11:1e:df:15:3f:6d:01:bc:
a7:8e:b2:d5:4e:ab:ff:0b:bb:56:13:e2:80:6b:26:
67:a7:03:44:36:e7:49:3c:35:fe:8f:df:23:4d:20:
5f:76:e0:c6:2a:db:a5:d1:59:23:67:fa:f4:8a:2b:
d9:4f:66:76:0e:8b:06:4b:67:c4:d5:63:69:c2:38:
84:b7:7f:6a:2f:df:ce:e1:b8:c4:91:d0:52:95:61:
79:73:a4:55:e0:74:50:da:2a:e0:ab:b8:83:86:bd:
72:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:CD:77:6E:81:2F:E5:35:A7:7F:66:B5:C3:F8:B2:05:85:F1:E2:72
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QM13boEv5TWnf2a1w_iyBYXx4nI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.84.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:c7:38:1f:56:4d:79:16:0e:6d:a6:98:d5:1a:ef:fb:02:11:
c7:f7:4a:ab:f4:10:76:98:56:b9:08:f9:2a:4b:8a:30:05:86:
9c:91:23:da:8e:8f:cc:ea:fa:1b:7c:0d:7d:90:a6:2a:45:5a:
9d:61:c2:2e:17:4b:fc:95:a6:8b:4e:92:bc:aa:37:87:fd:86:
75:9b:bf:a5:ba:90:6b:8b:a4:3b:bf:93:38:a1:74:9c:76:e0:
5a:11:93:d8:73:92:08:20:5a:5d:99:23:c7:73:5a:5c:62:35:
0b:a0:e2:6e:d0:04:63:6c:84:bc:bd:3c:3a:5f:77:07:10:b2:
46:e3:79:ee:fd:69:bf:38:1c:6e:05:44:35:ec:20:57:e3:fc:
a8:68:ed:e2:e5:9c:00:1d:96:4d:f4:40:28:46:79:59:4b:49:
c9:0e:b9:aa:53:08:8d:a2:c9:51:22:2e:87:0d:9a:f0:c6:5c:
5a:42:d0:33:a5:ab:7f:82:4c:c4:05:ee:e9:51:1b:37:d9:3e:
26:e5:47:f4:96:c0:57:ab:f9:35:fe:4a:81:2b:0f:d3:15:91:
5d:db:dd:b9:fa:ff:79:f6:e1:0d:2e:9a:14:67:6d:eb:19:2a:
2d:74:53:2e:ac:5f:31:0d:79:23:14:af:61:0e:3e:05:72:17:
d0:6d:bb:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org