Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/U71sDjpZOH1nGr9_nnNzz9wTBCU.roa
File: U71sDjpZOH1nGr9_nnNzz9wTBCU.roa (raw, json)
Hash identifier: hpRRH702Kb1Gc5kOiEAXUoWaZylobuSLuYgH89/KukY=
Subject key identifier: 53:BD:6C:0E:3A:59:38:7D:67:1A:BF:7F:9E:73:73:CF:DC:13:04:25
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A5C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/U71sDjpZOH1nGr9_nnNzz9wTBCU.roa
Signing time: Sun 07 Feb 2021 11:49:11 +0000
ROA not before: Sun 07 Feb 2021 11:49:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 119.31.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2652 (0xa5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:49:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=53BD6C0E3A59387D671ABF7F9E7373CFDC130425
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:45:16:e7:46:82:d1:c0:b0:70:41:cc:bf:41:
2c:e9:8e:57:6a:3f:ba:dc:cd:da:6e:1c:3c:74:ff:
ba:f8:4f:47:09:b2:c4:23:46:57:90:bd:8d:d2:ae:
05:a8:60:1b:ce:e8:4d:69:4f:1d:49:d9:ef:19:bf:
11:8b:01:7b:e3:a8:65:06:c2:a0:21:7e:0c:c2:81:
40:3c:cc:17:88:d3:21:f4:5f:be:fd:34:43:26:ea:
79:23:dc:fc:51:eb:01:2a:c0:9b:c1:ce:de:be:b7:
fa:25:83:bc:09:43:9f:be:75:aa:81:e0:09:6f:d1:
a0:31:ed:55:a0:2b:f3:65:63:e4:d6:cd:f6:b3:2a:
30:97:2d:42:e6:f5:2a:21:21:9d:c7:99:20:b0:22:
c6:08:fb:98:46:bc:41:3c:0a:0e:3f:c9:d0:24:aa:
ef:86:69:9d:19:b7:4a:93:1d:84:f3:6a:77:b4:60:
6f:06:88:60:82:cb:71:03:6e:67:c5:c1:f6:12:d7:
e6:ef:6e:22:cf:99:f0:2b:47:3b:40:6c:47:36:ef:
e4:d7:b5:36:2d:7b:13:8f:53:37:42:71:bf:30:5b:
8f:0e:70:d4:81:c2:d2:3f:bd:1a:77:f2:ba:80:2d:
0f:b8:4d:ff:e3:cb:12:62:d3:9b:f6:88:03:f7:84:
d8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BD:6C:0E:3A:59:38:7D:67:1A:BF:7F:9E:73:73:CF:DC:13:04:25
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/U71sDjpZOH1nGr9_nnNzz9wTBCU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.31.176.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:22:78:b2:2a:07:dc:6d:4a:98:35:3c:cb:9b:30:58:f5:d4:
d9:f8:2a:b5:12:cc:71:fe:43:a8:82:20:1a:14:f5:02:94:96:
a1:8c:b0:09:07:15:64:50:87:33:f2:a6:7e:bc:bf:8d:3b:54:
99:03:8c:e7:ea:af:a7:5a:eb:65:00:4f:7a:3a:8c:81:2e:40:
d9:d8:97:36:05:85:24:47:11:26:ce:77:05:20:3b:79:5b:43:
de:13:ae:1e:3b:88:04:3d:aa:a3:f9:4a:1c:09:bc:e2:cc:fb:
0f:f9:11:2e:ee:c4:fe:aa:be:1f:79:e6:73:c4:91:01:dd:d6:
b4:2c:07:34:e6:e6:0a:70:7d:c0:8c:68:a2:b1:2b:70:99:ed:
bf:f4:cb:fc:ff:fa:fe:88:69:9b:43:68:07:26:67:41:b9:61:
6f:28:72:c4:4f:b2:94:dd:93:9f:9e:84:06:a1:c3:27:4b:91:
c9:43:b3:85:d3:c6:28:f7:9e:66:0e:81:83:c5:33:b4:5b:3d:
4c:ec:7e:19:29:ac:12:8a:cf:e4:f4:84:c2:d1:04:99:81:57:
7b:d9:e6:77:28:70:b0:f9:4e:62:e6:28:0b:e3:f3:41:79:66:
e8:32:11:7f:c3:b6:ff:bf:6a:2d:64:5c:cd:6a:c0:0d:1f:0a:
5d:d0:1e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org