Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/UHYE7buwoHJHbkFDINER8NK2UoE.roa
File: UHYE7buwoHJHbkFDINER8NK2UoE.roa (raw, json)
Hash identifier: Z948+D2J114LI8j2ReeAX9Sqx8X74k87UzyfzqXuxrE=
Subject key identifier: 50:76:04:ED:BB:B0:A0:72:47:6E:41:43:20:D1:11:F0:D2:B6:52:81
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BEB
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/UHYE7buwoHJHbkFDINER8NK2UoE.roa
Signing time: Wed 29 Sep 2021 02:38:50 +0000
ROA not before: Wed 29 Sep 2021 02:38:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 150.117.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3051 (0xbeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=507604EDBBB0A072476E414320D111F0D2B65281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:33:0d:97:27:fc:9c:35:3a:7d:bf:fd:d8:d4:
51:e4:81:67:e8:ba:fd:ae:65:3d:01:4a:4d:8f:8d:
24:b1:0e:b3:83:98:3a:c6:94:06:4b:f0:4f:25:20:
5f:8b:e5:80:08:3c:9f:6f:4b:c5:66:6e:d3:2e:97:
f6:36:3d:64:07:b7:8e:47:3f:8e:7f:bd:41:8d:27:
7a:90:07:c0:6d:1d:b1:7c:6f:63:13:ed:b5:b4:d6:
7e:90:23:6b:7e:16:91:33:83:e1:5d:61:b2:92:53:
b6:76:81:95:a7:95:8d:50:ce:df:a4:13:f5:54:ee:
c4:3f:90:13:9c:a4:fe:b4:5d:27:33:5e:69:6a:84:
78:81:d1:49:c9:62:56:01:96:99:2b:63:6c:d4:a9:
88:5f:56:ba:6d:cc:8b:bb:86:80:44:d5:35:db:71:
f6:94:66:39:b1:3b:5b:5e:9d:84:15:a8:f7:32:6e:
0e:f3:8b:bc:84:a1:33:bd:41:98:85:1b:c2:33:40:
c6:03:e1:9e:4a:13:fb:c3:ea:10:b9:ac:6a:02:ea:
32:ef:62:89:c1:06:bb:a1:af:a2:7a:02:cd:7b:14:
cf:9e:b5:da:04:62:6f:83:4c:d6:dd:4c:3a:30:32:
98:aa:6a:31:df:58:d8:7d:73:43:cd:b8:24:30:0b:
19:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:76:04:ED:BB:B0:A0:72:47:6E:41:43:20:D1:11:F0:D2:B6:52:81
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/UHYE7buwoHJHbkFDINER8NK2UoE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.16.0/20
Signature Algorithm: sha256WithRSAEncryption
b8:a1:9f:f0:c4:a7:32:97:03:b6:f6:3b:7a:cd:4c:fd:f1:5d:
83:3c:17:30:67:e5:18:31:a7:1b:30:ff:94:1b:84:eb:f4:47:
33:bc:c7:f7:9d:ad:29:ba:67:ea:7a:45:56:d8:f6:e7:62:a8:
b6:6e:16:53:74:53:90:d9:f3:56:85:92:0e:4a:7a:6b:a0:3e:
5e:b4:40:d2:cb:0c:41:53:44:d0:60:8f:e4:b3:34:8b:d9:d0:
58:d3:1f:2b:82:df:d3:73:4f:2e:84:52:81:f4:14:83:94:2f:
c2:17:d6:11:cd:84:10:d9:ac:0c:45:5e:87:29:b6:a6:e2:cf:
a4:b1:82:54:4a:24:e1:a5:fd:16:51:23:7f:03:72:a6:75:95:
dd:a1:d8:72:04:c7:d3:80:0c:83:eb:95:28:54:94:c3:a3:8d:
94:2c:06:76:3d:5c:66:92:86:e4:c1:18:b9:0c:59:d6:6b:1b:
c2:e1:17:c1:3f:95:11:d0:37:e9:7d:4a:ca:40:33:03:10:66:
f5:37:dc:61:6e:52:30:d0:f9:be:50:ba:6f:91:ea:ef:e7:0c:
f4:57:b7:06:be:82:ed:79:6e:f3:cb:e5:78:cd:28:4d:2e:6b:
a3:34:84:5a:19:c1:87:86:0e:e4:46:b7:16:9e:cb:fb:b4:1d:
22:52:55:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org