Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QsFn8MbM84AKrthuZSRraV8xMYA.roa
File: QsFn8MbM84AKrthuZSRraV8xMYA.roa (raw, json)
Hash identifier: soLmiaTrzTaucqTxoR7HuGZPPnpCNSpquR85Im/sr8Y=
Subject key identifier: 42:C1:67:F0:C6:CC:F3:80:0A:AE:D8:6E:65:24:6B:69:5F:31:31:80
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B0A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QsFn8MbM84AKrthuZSRraV8xMYA.roa
Signing time: Sun 07 Feb 2021 12:59:44 +0000
ROA not before: Sun 07 Feb 2021 12:59:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 203.163.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2826 (0xb0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:59:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=42C167F0C6CCF3800AAED86E65246B695F313180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0e:44:1f:26:4e:16:03:18:e0:56:45:21:a0:
5f:51:d7:05:4f:f3:95:f0:87:e3:74:6d:cf:8e:3a:
c2:36:d9:90:6d:db:7a:c5:c5:3b:a4:72:c2:02:63:
f9:b3:5a:fd:c1:5d:f4:2a:aa:65:7e:52:00:7c:3e:
fe:da:fb:5d:e1:78:a4:07:ec:1d:cb:a4:62:25:5d:
41:b3:cb:be:e9:35:de:dc:0e:ee:d6:b4:b6:a9:42:
30:13:0d:e0:62:13:33:f3:83:15:93:7d:19:d3:50:
8b:70:65:ea:07:08:85:f4:84:c3:76:40:2b:0f:4f:
b3:fb:21:e4:cc:1d:ab:14:c9:28:69:ba:a8:aa:8b:
5e:34:85:aa:8f:4c:59:d3:18:4c:f8:42:e0:94:9b:
51:63:89:d6:61:1b:c4:fe:2a:f0:99:2d:01:82:53:
c6:54:b8:38:44:1f:5f:df:f6:e1:1a:5b:b5:e3:e7:
f6:b3:91:cc:96:55:73:60:52:9a:92:39:6b:58:8a:
44:41:bf:78:d0:f8:e6:7d:2a:6c:c5:5b:f0:0d:89:
5b:3c:61:ab:9a:c1:59:96:2b:6f:56:c8:f9:e5:2f:
8f:fe:21:4f:96:04:6a:22:a0:cb:e5:da:51:bb:4d:
b6:82:78:56:75:81:08:a6:e3:be:28:c0:bf:98:d0:
ed:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C1:67:F0:C6:CC:F3:80:0A:AE:D8:6E:65:24:6B:69:5F:31:31:80
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/QsFn8MbM84AKrthuZSRraV8xMYA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.208.0/22
Signature Algorithm: sha256WithRSAEncryption
92:8f:ce:bd:9a:bf:9b:7a:6b:a0:ec:df:14:bd:b9:95:67:ef:
7d:c9:7d:8c:f5:32:fe:a0:ae:43:f7:c7:2a:a7:ea:6a:da:5a:
ab:3e:56:f5:9f:03:91:4f:40:78:57:c5:5c:a4:25:51:68:db:
8b:0c:9d:14:61:f2:89:40:e1:70:92:ee:d7:96:e3:b4:1a:f2:
9b:b2:51:a1:c8:8f:1b:0e:6c:08:14:46:53:0a:64:c2:61:1d:
8d:ee:3f:2f:32:6e:30:ab:63:b7:a0:a9:30:8d:8b:7c:10:fa:
33:47:12:ba:d6:19:de:85:be:4c:a8:cb:14:6b:cd:18:03:a5:
bc:d2:45:46:4d:18:99:ee:ac:e6:82:96:46:64:11:e9:6b:ea:
65:31:3f:85:ed:4d:3f:a6:65:7a:bb:4b:29:49:2d:90:67:08:
17:fd:21:08:50:4d:3f:36:ed:9b:ef:13:d5:6c:55:7d:e4:49:
b5:51:c8:1f:b3:9c:a6:96:b7:68:12:f0:4f:e2:25:a7:c6:b4:
3e:24:19:f9:92:85:14:54:67:00:f8:3f:b9:78:09:30:07:fe:
21:97:6d:d4:c8:02:c5:74:30:a1:af:16:9b:e4:be:2a:2d:06:
02:48:bc:65:db:d6:ca:54:97:6b:9e:a0:4e:c5:9a:7e:43:25:
8c:f0:8e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org