Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SEgcAn5AAedTatNHX6w4IRYonYw.roa
File: SEgcAn5AAedTatNHX6w4IRYonYw.roa (raw, json)
Hash identifier: HTJArWbInsWL34h+xe0IL6+lV/cCepF2ZIFrlq7UoeA=
Subject key identifier: 48:48:1C:02:7E:40:01:E7:53:6A:D3:47:5F:AC:38:21:16:28:9D:8C
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DD2
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SEgcAn5AAedTatNHX6w4IRYonYw.roa
Signing time: Thu 29 Dec 2022 09:31:53 +0000
ROA not before: Thu 29 Dec 2022 09:31:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 55497
IP address blocks: 150.116.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3538 (0xdd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=48481C027E4001E7536AD3475FAC382116289D8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:11:7b:c9:6c:fd:26:42:a4:9a:70:67:32:21:
06:4b:f0:85:97:60:19:cc:47:ef:00:0e:68:82:2f:
4d:a1:90:c7:4e:e6:58:41:83:5a:1d:d8:f1:56:a5:
c3:a6:13:2b:07:75:ed:95:d2:2a:50:6c:d6:63:25:
7c:8e:74:49:23:e7:88:70:e6:d5:e3:94:4e:b7:a6:
64:99:78:2f:d4:80:5f:9e:5a:13:d3:c2:9c:a7:92:
ae:eb:e5:f5:aa:5c:8f:42:46:ca:39:50:b4:bf:58:
27:d9:0f:8f:00:e0:35:52:aa:b1:ca:be:7e:bd:d6:
ec:f4:e3:48:f5:8f:4b:34:47:94:21:8a:5b:a0:be:
4e:15:b6:6d:eb:2c:28:5a:4b:f5:13:a5:f1:49:ba:
0e:a1:e6:97:1b:71:ad:d1:07:5c:8e:16:86:57:27:
f3:c7:a0:ed:37:db:c2:44:cd:f5:88:e9:67:da:1a:
59:e7:4c:f3:e8:e9:98:c7:56:28:49:07:22:65:bd:
cb:3d:7e:c8:1c:de:79:0e:fb:0c:c8:c3:23:3e:dd:
79:4b:c9:58:ce:4e:7a:87:de:03:e4:1f:40:d2:6e:
fe:40:0f:2c:e3:48:ff:47:6d:d7:4e:82:84:24:83:
61:7e:2e:df:5a:67:c2:69:bd:24:65:86:8e:9e:b0:
70:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:48:1C:02:7E:40:01:E7:53:6A:D3:47:5F:AC:38:21:16:28:9D:8C
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SEgcAn5AAedTatNHX6w4IRYonYw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.9.0/24
Signature Algorithm: sha256WithRSAEncryption
18:81:42:93:e0:1e:aa:13:85:cf:ea:70:c9:33:7e:40:b8:bc:
de:24:4b:83:b3:a4:e1:03:84:36:0c:1c:c8:2e:b3:3f:04:01:
db:48:be:9f:38:f3:aa:be:e2:be:1a:ca:b8:d8:59:48:30:95:
38:0b:73:d1:3c:c2:1d:04:45:02:7f:cc:6d:30:25:5a:36:16:
d0:b6:80:8b:2c:04:2b:e6:74:ed:f9:15:27:1a:e2:64:e5:df:
59:09:76:29:ee:76:ea:24:fb:28:37:d8:b4:ad:73:fb:6c:cf:
5d:64:1f:02:e3:da:a7:1a:6d:4a:6a:e7:4a:61:74:5b:9e:54:
26:37:09:6a:0d:fd:a2:af:cd:63:a3:fa:81:97:3f:8f:99:93:
4d:4a:f2:51:29:57:89:e8:e8:52:8e:66:d7:3b:d6:4c:8d:c4:
57:54:c1:ab:23:29:38:10:bb:90:30:3a:a0:b5:8b:85:6d:22:
e2:25:fa:42:3e:a1:4a:c3:7b:b6:64:a8:b3:dd:aa:f0:73:b8:
33:14:71:f1:b2:e4:a4:32:2b:41:05:24:ee:62:cb:6e:cb:b6:
fb:e4:ed:be:da:ed:a2:12:57:15:6b:22:03:63:0e:ec:7e:df:
62:13:88:46:bd:a7:c2:86:83:0f:d2:3e:1a:7f:7f:ba:05:dd:
55:45:21:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org