Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RwnEXei7N9WP1xO8PHA_NcY945U.roa
File: RwnEXei7N9WP1xO8PHA_NcY945U.roa (raw, json)
Hash identifier: aasTLoaC1D/Lo90F934VZCwYTizk/0WzwC3ozryURMk=
Subject key identifier: 47:09:C4:5D:E8:BB:37:D5:8F:D7:13:BC:3C:70:3F:35:C6:3D:E3:95
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C09
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RwnEXei7N9WP1xO8PHA_NcY945U.roa
Signing time: Wed 29 Sep 2021 02:38:58 +0000
ROA not before: Wed 29 Sep 2021 02:38:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 150.116.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3081 (0xc09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4709C45DE8BB37D58FD713BC3C703F35C63DE395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:82:71:57:4c:38:48:64:1c:78:c1:e1:f9:6c:
25:14:72:1d:0f:c4:30:af:94:70:15:a6:31:2d:16:
19:71:d4:7c:66:38:f2:ab:90:9f:08:d3:50:67:52:
4e:d1:0b:17:84:32:67:7b:97:11:b7:78:21:b1:0a:
ff:0f:1c:bd:ee:cf:e3:ff:1d:18:9b:08:3c:41:6c:
64:6a:da:57:d7:39:04:f0:b2:2f:b8:be:9c:e2:44:
ef:f9:3d:15:fb:44:a1:ed:da:52:0a:a6:ec:a2:f0:
17:2e:70:a0:64:76:73:1b:1b:cd:b0:5e:a8:47:84:
b2:b3:31:e3:69:5b:47:2a:30:02:22:72:96:f4:8d:
ba:61:ac:f0:34:0c:ea:89:78:ca:4a:09:15:7e:ba:
f9:e3:b6:a3:ec:67:ee:24:3d:14:44:e4:6d:62:c6:
63:4b:51:e3:a1:90:07:69:9d:ac:70:8d:29:5c:e4:
62:3e:0a:18:0e:f2:12:fa:8a:d4:c0:11:b2:09:2e:
9c:8f:4e:86:8b:16:46:8e:26:e8:13:1c:55:f4:7b:
6f:c1:17:7f:0a:81:03:63:60:95:3e:3a:20:21:d7:
93:3a:dd:d6:5d:97:2a:4a:49:bb:62:61:16:79:cc:
9b:0c:c9:b7:b7:c0:75:1c:6a:fb:de:87:e0:03:c5:
f8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:09:C4:5D:E8:BB:37:D5:8F:D7:13:BC:3C:70:3F:35:C6:3D:E3:95
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RwnEXei7N9WP1xO8PHA_NcY945U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.119.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:26:62:ba:b2:42:95:6b:3a:9f:5a:a9:15:fa:f7:93:0d:e6:
8c:09:a4:66:57:b8:27:4b:80:ef:1c:19:d9:e1:cb:db:f5:f4:
bd:90:31:3b:be:23:21:db:34:80:57:5c:6d:d9:1c:42:de:38:
b1:65:74:3c:f2:af:be:5d:d8:93:5d:43:c3:d5:5f:08:84:b9:
ef:9d:59:5d:58:02:f5:2d:aa:ff:ad:f8:5c:6f:eb:a1:82:67:
b5:93:59:e0:11:9f:e5:a0:9a:81:11:14:8b:76:50:b5:98:94:
54:4c:63:70:1f:24:1a:ac:97:05:34:02:9b:a5:d6:65:bc:1b:
5a:a7:29:e3:78:d8:2f:78:a9:9d:6d:b0:4e:4a:20:0e:19:12:
22:22:c1:62:48:56:c8:b3:e8:44:e2:46:77:7b:64:67:ae:47:
6e:ea:f4:e1:c4:c6:e3:c5:da:5a:1c:49:67:79:02:32:b5:70:
45:53:ac:5c:78:02:cd:21:99:e4:4a:d1:ae:ea:36:bb:f8:8c:
76:08:c1:35:c3:2c:44:2d:0d:89:2a:1f:f1:69:66:5f:80:5e:
ca:59:64:82:85:7d:3e:25:c2:96:ba:51:b1:fa:34:96:27:98:
bb:0a:59:c2:87:df:85:2b:8a:a3:51:bf:d3:37:1e:59:8b:b6:
33:1b:a2:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org