Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SHjsg1rQozKHO_GJ2tRxjkJTmdw.roa
File: SHjsg1rQozKHO_GJ2tRxjkJTmdw.roa (raw, json)
Hash identifier: v7UvWgPPyHLoI9n5OkSKSd+XE0kYusaAl7dHIhnn1pU=
Subject key identifier: 48:78:EC:83:5A:D0:A3:32:87:3B:F1:89:DA:D4:71:8E:42:53:99:DC
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C31
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SHjsg1rQozKHO_GJ2tRxjkJTmdw.roa
Signing time: Wed 29 Sep 2021 02:39:09 +0000
ROA not before: Wed 29 Sep 2021 02:39:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10085
IP address blocks: 203.163.202.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3121 (0xc31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4878EC835AD0A332873BF189DAD4718E425399DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e9:11:00:c0:c9:6b:97:56:8d:73:cb:d3:2c:
76:6e:a9:98:e6:fd:ce:75:cc:b4:a4:26:aa:9c:7a:
5d:9b:1d:e3:5b:b6:32:4e:ba:8b:5f:9a:3d:7d:6e:
de:91:40:1b:45:cb:53:f7:5e:11:d7:aa:d4:72:4c:
d3:77:6e:39:df:f8:52:39:f7:8e:37:1d:22:9d:eb:
0f:32:60:59:53:ee:80:a8:87:a7:eb:3a:f5:69:d7:
04:be:48:a7:b5:45:e7:bf:72:cf:43:25:c4:3f:f5:
8f:33:9a:e6:5f:d9:74:43:f7:6d:a3:70:cc:19:10:
3e:8d:cb:74:7b:c8:5b:fb:c4:b7:b5:17:e6:8d:d2:
24:16:cf:97:58:23:41:61:e2:32:27:01:db:de:e4:
46:21:2c:f0:0e:7f:a8:f8:9e:a0:fd:bb:45:6e:bc:
30:56:46:1d:79:08:9a:37:0f:e2:bd:b6:43:76:19:
95:8b:c7:ed:4e:28:49:07:c6:d7:a1:7c:3b:03:83:
22:e6:e4:9e:97:33:cf:ab:7d:f4:4d:58:00:fb:c8:
e0:e2:aa:19:2b:05:e6:f9:77:06:bc:b9:a2:9f:6c:
85:7d:c0:eb:c5:62:c1:aa:05:7b:0f:86:01:08:59:
11:70:15:55:45:43:3b:78:96:cb:4a:f8:91:54:7a:
b5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:78:EC:83:5A:D0:A3:32:87:3B:F1:89:DA:D4:71:8E:42:53:99:DC
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SHjsg1rQozKHO_GJ2tRxjkJTmdw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.202.0/23
Signature Algorithm: sha256WithRSAEncryption
69:47:ee:3e:fd:cf:de:b1:16:88:67:6e:ff:ab:0d:ee:e3:c4:
4e:bf:c5:87:0b:f3:7d:eb:c1:e7:ab:91:07:a1:78:3e:1e:cd:
3d:9d:93:95:c4:f7:70:0c:32:98:71:01:3f:7b:ff:43:e4:34:
97:2b:c4:8f:b6:5a:3a:7c:6c:fb:9f:d8:4d:fd:af:5e:c6:9c:
8e:b1:01:a6:4d:5a:7c:46:43:21:b8:e6:9d:1f:d1:cf:60:72:
41:ba:a9:bf:d8:f9:64:9d:87:e6:77:f5:5b:90:d4:a1:e2:0d:
86:d1:ab:cb:69:7c:87:77:59:f4:7d:cd:ff:27:fb:fd:1b:b1:
e0:ad:a5:aa:99:b7:84:a0:89:27:5a:12:78:e4:18:3c:ca:e1:
99:30:a6:a8:bd:e8:51:13:55:d5:ff:14:78:bd:15:34:df:88:
f1:65:e4:8f:0e:51:a5:15:46:28:a8:86:81:bc:82:bf:7b:95:
15:d5:9f:84:a7:88:a0:ff:33:ff:7f:dc:16:b7:59:33:8a:60:
24:0b:bd:6e:3f:a1:b8:dd:04:5d:78:ec:0f:b4:d1:ee:4e:6c:
72:83:f4:f4:a4:b7:07:5d:67:b4:6e:be:48:02:e6:69:d6:1c:
63:ed:96:f3:f1:02:94:da:3a:7f:70:8c:f5:aa:86:be:79:24:
2a:de:69:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org