Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Qb4y50EvtQcWM5LYNgzdM5JdaXU.roa
File: Qb4y50EvtQcWM5LYNgzdM5JdaXU.roa (raw, json)
Hash identifier: iydANpdpYT2dkPcNkN80o7bDYloZGsEqwwdbOErWGbQ=
Subject key identifier: 41:BE:32:E7:41:2F:B5:07:16:33:92:D8:36:0C:DD:33:92:5D:69:75
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0CFD
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Qb4y50EvtQcWM5LYNgzdM5JdaXU.roa
Signing time: Thu 28 Apr 2022 06:12:27 +0000
ROA not before: Thu 28 Apr 2022 06:12:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 63199
IP address blocks: 203.163.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3325 (0xcfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Apr 28 06:12:27 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=41BE32E7412FB507163392D8360CDD33925D6975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:10:90:76:a8:74:7d:dd:d4:46:52:90:b3:07:
66:bd:4c:e9:9c:7f:bc:fe:73:7c:be:4a:25:72:31:
8c:e8:a6:ea:3f:74:cd:9f:2c:ec:ce:88:29:db:01:
20:e2:4f:0b:7f:ef:60:1e:10:0a:7c:73:36:99:5c:
01:27:ff:3c:18:45:a1:bc:b9:7f:bf:ab:52:01:38:
b6:27:66:61:78:f4:16:5b:13:59:02:6d:c9:df:18:
fa:53:4a:fb:16:4f:27:7c:a5:d0:9a:39:eb:f6:a5:
9b:f7:b8:69:2f:2f:cf:b6:09:b8:01:85:9e:f0:99:
39:7e:a8:b7:0e:e4:54:e8:58:6b:04:11:1a:b7:2d:
9c:10:88:01:a5:e1:29:09:a9:8d:5d:60:d2:1a:ee:
4f:23:40:cf:2d:e6:f0:26:fc:4f:26:b2:57:f0:57:
f6:0f:aa:77:4e:d3:c5:1a:a2:43:05:e7:07:cd:33:
86:c9:47:00:79:a6:96:84:08:6c:30:2e:88:18:c8:
41:03:6e:40:30:11:c8:97:73:63:3e:98:03:8a:73:
4e:fe:69:d2:08:5b:c7:aa:2c:51:40:2d:e2:d8:42:
ac:3a:16:73:d0:a8:29:df:5f:7b:a8:69:0f:b7:f9:
a9:8b:2b:88:b2:4a:1f:ff:a3:a3:13:68:2f:05:35:
b2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:BE:32:E7:41:2F:B5:07:16:33:92:D8:36:0C:DD:33:92:5D:69:75
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Qb4y50EvtQcWM5LYNgzdM5JdaXU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.216.0/24
Signature Algorithm: sha256WithRSAEncryption
12:91:e7:ed:07:9a:4f:70:4a:a0:1a:13:23:46:0d:94:8e:5f:
68:1c:01:e3:83:d9:0b:5c:ec:d3:4a:a2:61:93:6d:f5:52:34:
7d:60:95:67:e3:8f:96:a0:ee:7a:92:3e:93:41:d4:73:98:7f:
67:a1:3e:55:f7:74:ce:60:e0:07:4b:7d:92:b2:09:18:1a:1b:
1a:92:70:5f:cc:40:fc:bf:3e:43:d2:95:16:54:f1:6e:19:e7:
57:4f:9c:b4:c7:5e:80:9e:79:69:c4:17:2d:99:71:87:0f:dc:
7c:41:e9:50:88:26:9f:45:e9:e2:d6:94:bb:a2:80:b8:1c:16:
08:73:b0:a0:e5:34:24:c3:64:9b:ec:5f:53:88:50:ea:c4:01:
21:b0:06:e0:77:88:b6:04:3e:5f:fe:dd:df:c7:cc:fc:54:b5:
55:c4:87:ff:8f:33:5c:ad:a3:c0:37:ee:7a:c4:d6:9e:25:1b:
94:00:cf:6a:92:08:47:93:c5:60:7f:41:d1:9e:c2:24:29:40:
14:aa:0b:a5:1f:c8:d4:0c:b4:e0:f6:01:03:0b:b6:8c:6f:91:
fc:db:b2:6b:f2:80:16:72:10:53:85:42:b5:4b:f2:d5:01:df:
78:36:90:a5:c1:01:a5:23:6e:96:ac:b6:d7:e0:0b:34:87:24:
77:e4:c5:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org