Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Tanfrhrk64JuLJJ8Hq--d2m1GlU.roa
File: Tanfrhrk64JuLJJ8Hq--d2m1GlU.roa (raw, json)
Hash identifier: 7HzR5aquoHVqhqietwvPZt3BNDl+WUp9nX31z2uDKzk=
Subject key identifier: 4D:A9:DF:AE:1A:E4:EB:82:6E:2C:92:7C:1E:AF:BE:77:69:B5:1A:55
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B02
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Tanfrhrk64JuLJJ8Hq--d2m1GlU.roa
Signing time: Sun 07 Feb 2021 12:59:36 +0000
ROA not before: Sun 07 Feb 2021 12:59:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 223.26.92.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2818 (0xb02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:59:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4DA9DFAE1AE4EB826E2C927C1EAFBE7769B51A55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e1:d5:39:ec:4d:7c:69:b5:a6:63:be:f6:9c:
8f:06:83:b6:5f:54:b6:59:4a:92:84:55:68:b8:e0:
5f:77:9c:b3:ae:72:c2:78:d3:c1:7d:00:fa:b4:c2:
e1:a5:b6:ca:0d:1e:d6:91:83:0c:9c:d0:13:fd:72:
76:2c:2d:e6:28:e8:ca:fd:5f:00:03:8d:5e:fd:a4:
b3:4d:a9:c7:18:ee:8d:de:59:47:df:a9:a0:e5:95:
fa:56:34:f6:9d:09:cd:10:a3:f4:b8:ce:9a:6c:bc:
eb:20:bd:c9:7a:ed:c4:e6:64:39:d9:00:83:0b:54:
fd:28:a4:20:a4:c1:df:f6:51:e3:04:ef:25:69:35:
47:d1:36:cb:a3:1b:8a:a0:d2:ba:79:6e:70:2c:8c:
b4:cf:aa:5e:99:ee:4a:89:ad:b4:a0:1b:21:37:ee:
53:d3:c5:6b:28:23:56:1e:6d:e3:47:c2:a9:f6:a6:
29:d3:df:c3:89:23:e3:0a:fc:01:b5:20:46:14:6c:
1a:46:f1:68:a1:60:ad:dd:ef:38:4f:7b:63:1f:83:
bb:7c:56:7d:af:e5:b3:a8:f7:ae:1c:85:e1:ed:93:
0e:cc:16:5c:44:f4:bc:f1:5f:86:24:cb:60:b8:0e:
73:7e:f2:93:42:d8:83:3c:3e:04:e2:c2:e0:10:83:
6b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A9:DF:AE:1A:E4:EB:82:6E:2C:92:7C:1E:AF:BE:77:69:B5:1A:55
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Tanfrhrk64JuLJJ8Hq--d2m1GlU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.92.0/22
Signature Algorithm: sha256WithRSAEncryption
82:19:44:89:5f:1a:ba:28:df:de:c9:56:4f:8f:9f:56:f7:8b:
59:b2:ef:3d:c8:04:27:c4:98:6b:cb:31:2f:31:14:fb:bd:2f:
f7:53:87:ac:d9:33:6f:1d:09:74:5c:3e:f4:ad:6f:67:4a:3e:
66:28:a2:e5:d8:9f:fd:32:94:4c:f0:88:7b:58:07:49:f3:2c:
85:34:b0:a6:1e:cf:21:3f:0b:f2:ae:b7:b0:bc:25:e1:f3:0f:
f9:28:a2:e9:d8:f8:4b:ea:06:5d:4a:50:95:05:88:08:a6:fa:
f4:5a:4f:18:4a:17:5e:5a:cb:83:ae:7d:b7:ba:a9:d2:70:b6:
27:fc:28:a6:ba:a9:f7:5b:68:fb:ac:91:9f:d5:40:69:6c:b0:
b3:96:af:34:5b:b5:91:6c:65:e8:7d:b5:3b:63:ff:d2:eb:eb:
f9:46:ab:70:ac:92:e7:12:23:2f:0c:46:22:a0:a0:d3:df:2a:
84:80:45:8a:cf:a8:9f:44:f9:b3:6b:bd:9f:35:6a:d7:94:4d:
f8:d7:7d:ad:ef:d3:56:d7:5a:27:2e:9e:0e:18:17:5f:4d:ac:
f1:d5:48:66:4b:d2:eb:78:9c:b4:3a:d7:dd:4b:2d:65:a3:cd:
ae:95:40:94:62:3c:1d:14:bd:41:e2:a0:d2:0a:91:4a:9e:9e:
46:98:59:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org