Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SaRyF_dfrQIQoTGrRIjT636I1hw.roa
File: SaRyF_dfrQIQoTGrRIjT636I1hw.roa (raw, json)
Hash identifier: uB/A5DCqDMmcVLP8zs5Zx/HG1Ke+YsStm0jNzQQfRzg=
Subject key identifier: 49:A4:72:17:F7:5F:AD:02:10:A1:31:AB:44:88:D3:EB:7E:88:D6:1C
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A6A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SaRyF_dfrQIQoTGrRIjT636I1hw.roa
Signing time: Sun 07 Feb 2021 11:49:43 +0000
ROA not before: Sun 07 Feb 2021 11:49:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2666 (0xa6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:49:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=49A47217F75FAD0210A131AB4488D3EB7E88D61C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:43:31:d5:df:c9:65:fb:85:2c:ee:1e:94:38:
e5:0e:a8:be:63:f7:9f:7f:88:e3:26:43:bf:71:e6:
c4:30:d6:58:4a:b1:a1:93:83:4b:a7:17:f1:b8:a4:
05:e1:84:76:4b:56:a8:80:de:20:da:c5:a1:8a:ab:
07:7c:4c:fc:ef:69:0f:37:0b:6d:62:1b:a8:ef:e2:
70:69:11:c7:5f:f7:b4:60:be:6a:71:cb:c3:20:3d:
ba:fa:22:72:21:0a:87:f0:85:7a:9a:12:20:ff:05:
02:3c:94:42:b3:de:0e:fe:5d:0c:ba:2c:5a:1a:26:
97:28:02:e8:74:6e:ff:7f:c6:68:03:b3:93:6b:4c:
af:9d:15:54:07:5a:d2:25:d7:a7:dc:62:d9:1a:21:
a6:c5:15:74:22:52:d5:ac:ba:47:61:20:5a:ea:37:
c8:f2:33:7f:8b:aa:53:d1:ca:c1:66:4a:52:23:d0:
d0:33:82:fd:2b:51:7e:fe:3d:e7:2b:dd:ff:d1:c0:
7f:e7:64:6a:ad:0b:65:8d:d6:e6:17:12:12:1c:cb:
16:9b:4f:4f:4f:32:41:77:71:47:b0:03:7c:21:48:
59:68:8d:0b:c0:29:fd:b4:a5:3f:e2:a7:7b:c9:cd:
92:71:68:3b:30:a4:bd:ec:ca:21:d1:55:ad:95:47:
d0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:A4:72:17:F7:5F:AD:02:10:A1:31:AB:44:88:D3:EB:7E:88:D6:1C
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SaRyF_dfrQIQoTGrRIjT636I1hw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.32.0/20
Signature Algorithm: sha256WithRSAEncryption
b1:31:31:c1:49:f3:19:e8:26:94:d8:92:a3:1c:0b:b2:a2:ec:
ac:e6:f0:f3:76:c1:08:74:ff:ff:81:8b:37:4c:e7:03:97:ce:
b8:be:62:d2:17:b9:aa:39:6a:cc:31:2e:e2:29:b7:1e:93:e0:
d6:b7:47:57:e8:20:ad:0a:b6:14:23:ad:ae:00:09:7b:0b:57:
08:92:31:35:4f:19:43:07:bc:1c:cf:98:0f:10:4f:82:0a:6d:
38:b0:55:7c:e2:26:20:56:d0:b8:d2:97:3c:7a:98:64:26:a0:
e1:46:e2:19:49:3a:75:d1:89:fe:fb:f0:17:69:81:07:ee:b2:
a8:a1:69:1d:26:be:0e:49:ed:e8:bd:bd:79:25:38:89:c6:3a:
a4:fe:05:8c:a6:e9:5a:bc:8e:49:df:cf:ed:2f:5e:9c:f3:fe:
73:7c:0a:82:30:27:14:41:9c:10:91:db:6e:5a:6f:a4:f0:68:
70:19:a7:5f:1b:90:de:ed:f7:95:c6:c3:d0:86:79:05:c0:12:
eb:ed:aa:ab:8b:dc:48:6c:e5:1d:cd:1d:23:ed:35:64:55:ae:
a1:10:52:f4:ca:17:04:28:a2:e2:2a:cb:a9:b1:13:bf:fb:83:
7f:d0:aa:30:e7:f6:b1:e0:bb:1b:6c:5d:a0:2f:b4:b3:7e:59:
68:24:13:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org