Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RtrFPhlBoS6LBynl2XnDZ2NHr-c.roa
File: RtrFPhlBoS6LBynl2XnDZ2NHr-c.roa (raw, json)
Hash identifier: yOG/Jf2nCJRiQn/GdXwYvfCvex6RI81gYKVIQZM3iZ4=
Subject key identifier: 46:DA:C5:3E:19:41:A1:2E:8B:07:29:E5:D9:79:C3:67:63:47:AF:E7
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E1A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RtrFPhlBoS6LBynl2XnDZ2NHr-c.roa
Signing time: Thu 29 Dec 2022 09:32:14 +0000
ROA not before: Thu 29 Dec 2022 09:32:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17651
IP address blocks: 150.116.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3610 (0xe1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=46DAC53E1941A12E8B0729E5D979C3676347AFE7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5f:14:cc:79:7f:7c:48:b8:90:3a:c2:70:35:
ec:5f:89:26:5c:33:44:81:9d:39:ab:ce:72:a1:fe:
f5:30:3b:06:76:d1:1a:e1:6b:e7:5c:49:9d:9f:11:
26:07:7e:4c:0b:f8:82:27:18:f6:65:6f:ca:5f:6c:
a1:1d:90:84:7e:bf:b1:66:4d:13:fb:7a:23:8f:d8:
37:b0:37:38:44:d7:b6:d3:7e:dc:19:4a:2f:2f:d2:
31:76:c8:28:c0:7d:2d:93:38:44:d7:ca:2c:b1:3e:
24:91:d5:3f:71:60:66:82:3d:ee:71:cb:15:c8:b7:
f4:f0:e9:af:43:13:6a:bc:b4:c3:57:b4:e2:c2:42:
26:fd:79:23:1f:22:32:2d:93:20:e1:99:93:f2:1c:
ad:62:81:06:1c:d2:98:00:46:05:52:d5:c2:fb:65:
62:5c:53:4e:2b:c3:42:b2:93:af:75:65:aa:22:54:
fe:23:aa:35:f3:c7:33:d2:21:3d:ef:88:1f:da:3c:
62:8f:96:b6:42:e7:05:be:58:44:05:b6:52:89:00:
ab:02:5f:58:55:e5:f4:17:88:2c:c5:48:14:1f:97:
05:cd:a6:40:e4:49:b4:da:e8:5a:34:1e:64:dc:2f:
5b:47:b6:61:c4:99:06:1f:3e:1c:fb:ce:d7:02:1c:
c1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:DA:C5:3E:19:41:A1:2E:8B:07:29:E5:D9:79:C3:67:63:47:AF:E7
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RtrFPhlBoS6LBynl2XnDZ2NHr-c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.116.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:3b:de:8d:2a:c1:31:e8:74:7e:c9:18:8c:aa:47:9c:1e:12:
e8:1f:81:98:52:12:ba:42:66:91:d4:a0:99:d2:04:33:d9:16:
fa:99:96:24:a5:4a:0e:0a:0c:79:de:6c:86:1d:39:88:33:55:
4b:1c:37:38:d9:80:72:02:ae:3b:0c:67:a8:9c:c6:c3:c6:23:
5a:44:25:09:e7:a3:09:72:a2:19:c1:7d:54:9e:30:80:33:e8:
eb:46:6c:12:92:9a:89:6d:f3:7d:91:03:02:14:ac:7e:58:0b:
54:67:88:5f:e0:64:85:c1:c2:25:a0:53:76:24:40:b3:dc:d9:
43:95:0b:fc:aa:fe:79:5d:74:c7:cf:e0:a4:e4:4e:33:5d:81:
5b:c3:16:13:1a:5f:55:59:22:a1:c1:cd:77:19:1b:26:a3:8c:
77:2c:ce:56:cf:bf:30:f0:71:91:ff:cf:b2:18:c2:55:0e:8c:
bc:6e:f2:4b:d4:35:89:1c:84:0a:d6:4c:01:c0:60:7c:e7:59:
59:08:5e:b1:43:1a:11:15:f1:10:f2:72:13:21:db:19:bc:d6:
d4:c5:be:ea:82:ec:61:08:57:fa:bc:11:75:33:6d:37:08:4e:
01:1e:22:d2:44:35:53:87:f8:78:0f:66:0c:9f:01:bf:db:df:
c7:6b:af:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org