Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/T8YRzc3JKliCSo4jo-mHtZlRLPk.roa
File: T8YRzc3JKliCSo4jo-mHtZlRLPk.roa (raw, json)
Hash identifier: VJr5HTXMS7YSsdnnvZqDzd7FhC2yWWliPafkrcLw1Kk=
Subject key identifier: 4F:C6:11:CD:CD:C9:2A:58:82:4A:8E:23:A3:E9:87:B5:99:51:2C:F9
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B26
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/T8YRzc3JKliCSo4jo-mHtZlRLPk.roa
Signing time: Sun 07 Feb 2021 13:13:18 +0000
ROA not before: Sun 07 Feb 2021 13:13:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 150.116.0.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2854 (0xb26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 13:13:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4FC611CDCDC92A58824A8E23A3E987B599512CF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:32:e2:ad:bb:3c:97:ce:d1:67:e7:20:08:d9:
9a:a6:3c:6f:c8:a6:03:c0:10:c3:46:2c:60:ab:6c:
7e:50:72:33:f4:f8:82:83:da:9e:4b:8d:ca:c9:ed:
49:d9:38:75:d4:f8:8f:b0:e6:42:f9:1c:da:b8:42:
da:6b:1a:f0:ac:3b:c0:0f:bb:38:57:94:0a:fd:d1:
80:7a:94:a7:b7:2e:b0:df:d2:01:3a:23:e7:8f:03:
d3:f1:57:dc:2b:46:19:9e:16:0b:86:06:dd:af:79:
33:44:00:79:c3:2b:5e:86:de:1e:e1:7f:db:06:17:
a7:fd:f0:b2:22:1d:07:26:f8:fd:4b:19:a6:e3:af:
10:91:69:16:20:10:5b:60:86:10:db:69:5a:47:6a:
cd:7d:55:e8:97:52:7f:d4:76:5c:95:e1:17:48:1b:
1b:b9:f6:32:38:5e:8f:5a:8c:0f:19:2f:03:b3:23:
01:b0:e7:0c:0a:33:7a:df:f5:2b:ef:e1:10:73:41:
ec:ba:71:5e:39:10:3a:c0:de:30:30:8e:fa:bf:2c:
2f:df:3c:5a:3e:f3:75:35:e1:55:15:14:c6:3f:14:
2a:12:0d:e8:95:ea:da:87:fd:f1:4e:8e:7e:a5:de:
50:b2:fb:fa:4d:cd:a1:e0:aa:46:4a:90:06:61:35:
2f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C6:11:CD:CD:C9:2A:58:82:4A:8E:23:A3:E9:87:B5:99:51:2C:F9
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/T8YRzc3JKliCSo4jo-mHtZlRLPk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.0.0/21
Signature Algorithm: sha256WithRSAEncryption
87:fb:0f:b2:ce:4e:1b:6b:d3:83:0d:12:1c:79:7c:fe:6e:ac:
9b:42:f9:b3:64:91:56:22:9a:a4:89:a4:d7:96:20:7e:02:20:
e8:4a:bb:04:b7:0b:2b:12:f9:e8:50:d1:3f:34:89:4c:c0:4a:
ee:18:13:be:bd:58:52:b2:09:f6:90:73:06:34:0d:fd:e2:dd:
2a:54:5d:93:53:56:9d:0a:27:2e:58:16:12:19:9b:91:f9:ca:
d8:57:09:3f:4e:82:c2:a2:07:d9:bf:4a:12:e4:c0:50:21:ed:
9e:98:3f:80:c9:ed:58:e2:27:21:b2:be:0a:c2:6e:ed:1d:16:
9f:7e:1b:f1:5b:a3:11:69:e0:8c:a9:e3:1f:38:57:3c:a4:9b:
ce:0a:d9:8e:54:b2:ef:7a:01:85:38:f3:16:0a:9c:57:39:e6:
bf:b0:14:04:e1:2b:81:2a:e5:6c:5a:bb:15:59:cd:d9:d1:47:
2a:da:e9:5b:d8:5b:81:ab:a1:dd:2d:ce:0d:8c:ed:b1:69:79:
db:d5:e7:6c:f5:ef:37:c7:b6:57:3f:4a:83:02:6c:7b:af:c7:
35:42:8a:e9:50:e3:d9:ed:b6:a6:91:52:97:f6:cb:3c:85:22:
1b:4c:84:a0:00:a7:54:cb:a3:4d:fc:b4:83:b1:50:9b:43:1a:
45:53:04:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org