Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/T6d2oAOtehevOy8iR_QDiggwO6Q.roa
File: T6d2oAOtehevOy8iR_QDiggwO6Q.roa (raw, json)
Hash identifier: h2w7+agP/U4kTDBcb7VVOw19eIgqTJUIYldTLd9nOBI=
Subject key identifier: 4F:A7:76:A0:03:AD:7A:17:AF:3B:2F:22:47:F4:03:8A:08:30:3B:A4
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0850
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/T6d2oAOtehevOy8iR_QDiggwO6Q.roa
Signing time: Tue 29 Sep 2020 10:02:18 +0000
ROA not before: Tue 29 Sep 2020 10:02:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2128 (0x850)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4FA776A003AD7A17AF3B2F2247F4038A08303BA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:97:b7:25:6f:4c:ad:44:7d:d7:b4:85:4c:bd:
6b:57:52:bd:28:b6:c9:22:6b:a4:86:31:c9:a2:58:
71:ca:d2:a2:17:ac:3a:b2:60:31:a4:66:91:bf:0e:
9c:84:4e:5d:50:d6:18:85:e5:f1:1a:0b:3f:30:61:
78:e7:f6:5d:70:dd:01:f9:91:ef:11:44:b8:68:0c:
00:07:1c:03:0c:a3:01:0b:2a:76:5e:2e:85:b9:6e:
c2:b3:2b:71:76:69:b7:5d:61:16:10:6c:94:02:16:
2d:31:12:6f:84:39:7c:91:95:fb:9f:fa:15:30:93:
23:2c:1d:f5:88:16:4d:5a:b8:81:2f:76:d3:e2:86:
52:a8:e4:f6:16:84:9c:f0:62:58:8e:1b:42:d2:c9:
1a:81:2f:39:33:66:3f:82:d6:51:9b:21:51:a6:2f:
c3:08:ea:a5:f9:6d:0c:99:f0:da:2f:5f:81:7a:1d:
f3:15:22:b7:e2:6d:87:08:82:1f:a6:aa:78:92:8b:
c8:40:65:87:31:f7:f9:cb:51:8c:d5:e4:95:72:eb:
fc:ac:97:80:a4:85:41:f4:fb:5b:6b:41:36:3e:a1:
45:90:04:c1:9e:dc:b2:d8:da:9b:a9:ae:04:95:94:
4c:4a:55:ad:d5:9d:ac:16:92:94:67:c1:6a:8a:7e:
56:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A7:76:A0:03:AD:7A:17:AF:3B:2F:22:47:F4:03:8A:08:30:3B:A4
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/T6d2oAOtehevOy8iR_QDiggwO6Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.224.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:47:7f:2d:40:cb:95:7b:e2:72:73:83:f4:d1:b5:cc:d6:13:
c1:08:62:9f:6b:62:da:6b:d2:29:4e:ec:85:40:b5:d7:1a:d8:
cf:fd:24:de:5c:f7:b9:a0:cc:8f:e6:85:9c:a6:41:e5:6b:3b:
66:dd:02:4f:a2:21:f5:89:1c:db:8c:8d:bc:cc:81:c6:75:59:
94:e1:23:b3:e4:fe:3f:a8:7b:0a:b2:68:5a:7f:ae:b4:cb:99:
80:e4:d4:ac:6c:f0:8d:00:83:b8:ea:8b:49:4f:5e:56:d7:2e:
87:b1:78:5d:df:5b:62:13:cf:74:0d:50:4a:ce:8b:69:60:96:
69:3b:13:f9:45:35:f6:19:0a:2f:0c:fb:a7:5c:41:3a:aa:3d:
84:ee:06:44:d4:c5:10:ff:62:b9:f1:ab:ff:f9:61:99:79:b8:
2e:56:07:58:ab:a1:af:0d:bc:ce:3e:da:94:a4:70:91:7c:c9:
8e:44:b2:7e:c3:d1:55:ff:9d:7d:8c:df:04:fc:93:7f:77:6c:
dd:0d:cc:ac:c4:c5:39:f2:54:ba:04:4f:78:ec:dc:14:da:13:
db:97:a0:32:b2:da:2d:53:7d:3e:e3:34:a3:56:72:76:82:3b:
db:b9:54:75:50:1a:22:9b:22:31:cf:63:14:9e:7d:28:0f:db:
8a:ee:68:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org