Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RicSI-bDTCeC6byDxoipzJBFxHc.roa
File: RicSI-bDTCeC6byDxoipzJBFxHc.roa (raw, json)
Hash identifier: qEAGtedmTnJY4cE0v+e8unswOda/C+cS+IiDM7iBpzE=
Subject key identifier: 46:27:12:23:E6:C3:4C:27:82:E9:BC:83:C6:88:A9:CC:90:45:C4:77
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DE5
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RicSI-bDTCeC6byDxoipzJBFxHc.roa
Signing time: Thu 29 Dec 2022 09:31:59 +0000
ROA not before: Thu 29 Dec 2022 09:31:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3557 (0xde5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=46271223E6C34C2782E9BC83C688A9CC9045C477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:55:ee:ce:2a:29:11:3e:db:0c:17:07:5d:a1:
7e:cd:b5:70:b6:6c:e2:f7:92:48:98:73:7a:e9:e8:
57:83:a7:40:20:db:a8:bf:5a:d8:ac:72:d8:b0:24:
24:6f:f3:62:0f:6a:66:45:01:dd:11:43:78:20:43:
46:3c:3f:95:8a:dd:07:39:08:02:11:9c:e2:5a:82:
17:f9:8d:d2:bd:95:04:11:89:53:de:b2:bf:6e:a8:
32:0d:8a:07:85:87:e5:87:61:46:ed:ac:e5:17:0e:
33:45:d3:98:f1:f3:47:f7:9c:30:9d:ea:89:81:cc:
6e:ec:42:b0:2d:10:27:5c:ec:8a:f1:63:6c:08:2d:
97:74:7b:e8:09:31:74:42:ac:8b:85:8d:b9:40:c2:
78:84:ac:09:e4:ee:75:7d:07:81:2d:93:2d:8a:c6:
cc:eb:51:20:c3:4c:f8:57:a3:a4:db:a7:0c:2f:75:
d5:6e:11:bf:d1:21:62:6b:cc:4d:8f:2f:ac:40:d4:
f4:a4:80:4c:9d:02:0c:9b:2e:78:ac:46:71:70:62:
3e:e6:ed:fd:4f:54:c1:8c:39:84:a9:75:0a:e2:8e:
c3:ea:05:37:41:29:75:1c:75:d9:e7:66:f3:19:27:
48:16:ce:93:5d:c7:51:83:0c:cc:b4:ea:46:d4:10:
ac:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:27:12:23:E6:C3:4C:27:82:E9:BC:83:C6:88:A9:CC:90:45:C4:77
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RicSI-bDTCeC6byDxoipzJBFxHc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.172.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:0f:42:9c:72:4b:54:90:99:5e:4e:14:2c:58:ce:ed:dd:bc:
cf:04:3c:4a:0b:6f:af:a3:df:86:f9:f5:0a:f4:32:62:96:0e:
4f:63:6d:36:c2:eb:89:aa:c1:69:1f:75:02:f6:4d:15:4c:08:
c7:25:13:42:2c:60:f7:96:70:86:93:de:39:81:96:77:9c:ad:
f0:2a:bb:d0:1e:85:24:5f:ef:fc:bc:8b:a4:3a:92:3f:2c:0e:
9e:5c:26:ce:73:33:f3:14:fd:8b:ce:b3:c9:78:48:c0:42:cc:
47:e8:7d:3d:03:9e:87:c2:7c:25:de:b5:5f:a8:1c:fd:38:3f:
65:10:3c:33:65:14:3e:bb:c0:bb:c4:02:82:9a:2f:88:b8:75:
f2:c2:a4:af:e0:ee:cc:6d:5c:83:0a:8e:cb:55:7f:d2:be:f0:
41:08:94:0f:ea:bc:17:20:e2:9a:ea:be:64:85:45:50:64:dc:
52:e1:1a:bd:ac:07:9c:7c:fe:24:02:77:9e:d0:25:54:aa:c3:
c0:ff:66:2d:fa:ae:d2:0d:cd:eb:37:07:e1:6e:fe:b9:aa:f2:
41:fb:1e:44:b1:aa:38:97:47:68:9c:2d:a1:2f:07:9f:5f:e1:
63:15:16:a8:e9:78:74:77:d5:35:a8:45:02:5d:f4:8a:34:9c:
43:93:d7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org