Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VAt8UIAyl014D3_sThIm-U9SFes.roa
File: VAt8UIAyl014D3_sThIm-U9SFes.roa (raw, json)
Hash identifier: 0Ov/foMvQoFoK+DJ5iWhfAhVyqdfmqpXqrRV/J5vpU0=
Subject key identifier: 54:0B:7C:50:80:32:97:4D:78:0F:7F:EC:4E:12:26:F9:4F:52:15:EB
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0ADA
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VAt8UIAyl014D3_sThIm-U9SFes.roa
Signing time: Sun 07 Feb 2021 12:43:05 +0000
ROA not before: Sun 07 Feb 2021 12:43:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2778 (0xada)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:43:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=540B7C508032974D780F7FEC4E1226F94F5215EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:76:b8:e0:27:64:b6:85:b0:b7:b3:ff:4b:f2:
db:87:2f:62:3d:77:90:3d:d8:fb:5a:88:f1:6b:97:
f6:52:bb:80:35:25:9c:32:8f:3c:e3:34:14:39:22:
50:2a:ae:fc:31:09:f7:f3:a3:c3:62:c0:df:2e:76:
ba:59:67:c8:4c:28:1c:0b:7a:a0:ff:ca:7c:4f:0f:
e3:2d:51:2a:ff:34:93:45:4e:03:32:6c:81:bc:69:
60:24:04:16:05:c8:1a:25:e4:8e:d8:75:9e:01:81:
a6:b8:b2:7f:60:a5:dd:ab:62:cd:24:4b:80:23:24:
d4:77:98:f0:ce:57:c8:b3:8f:74:bf:71:ad:34:d7:
97:99:d8:7a:60:71:76:49:fc:d4:84:a8:38:19:c5:
b6:14:15:89:0e:d3:56:65:15:f8:20:bf:7c:db:8f:
61:f5:5c:c1:50:24:d5:c3:30:c6:9b:fe:c8:fd:b0:
86:08:90:3b:f9:4e:59:5d:6d:df:2b:72:30:bc:f3:
16:39:5c:5a:8a:6f:b6:91:ef:3e:e3:0c:62:57:f8:
0b:e9:91:d9:64:93:c5:f8:74:f8:4a:9d:a2:0d:30:
88:44:7b:e2:ef:b3:32:3b:f3:cb:5c:93:df:1f:89:
de:1e:56:d5:12:c5:54:c4:b9:06:95:25:6a:46:1f:
09:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:0B:7C:50:80:32:97:4D:78:0F:7F:EC:4E:12:26:F9:4F:52:15:EB
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VAt8UIAyl014D3_sThIm-U9SFes.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.160.0/19
Signature Algorithm: sha256WithRSAEncryption
18:a4:38:b8:d2:ad:83:6e:bb:b9:76:2b:15:55:7e:a3:9b:36:
0a:c7:bf:36:f3:55:eb:4a:a2:90:c9:0e:d0:2b:a8:a0:ba:04:
2e:39:4f:aa:57:f5:82:81:01:eb:89:fc:c5:df:70:fc:9e:4d:
86:17:33:fb:da:ce:94:7b:f2:6f:4f:6e:fb:5c:5a:78:d3:51:
50:28:63:bf:a2:a4:1f:e1:3d:74:f9:74:e0:61:c9:a7:77:e0:
89:62:7a:d3:7a:f1:41:c9:5a:ff:10:05:c2:d4:c7:ce:a4:66:
0c:16:70:c3:02:94:36:2e:cc:22:c4:e5:84:ae:87:7a:b4:15:
0f:2e:a5:10:6e:24:8c:0a:08:b3:f5:f9:6d:74:22:41:07:de:
5b:fe:01:0a:88:8e:3d:40:e5:10:f4:d2:5e:f1:a5:8a:5c:c9:
78:37:7a:95:4c:d5:b5:ae:83:4f:56:3a:26:28:2a:aa:3d:00:
81:b4:b4:95:62:4e:b5:b8:21:85:e7:2a:17:99:56:84:ea:12:
f9:d2:a8:0e:58:3a:81:5c:c9:cf:31:1e:53:c0:ae:03:52:fe:
37:b4:54:5b:92:3d:9a:ef:08:27:25:5f:56:bc:32:af:f6:39:
0e:ad:7b:2f:74:d7:89:0c:a1:63:08:dc:b1:4a:de:29:c3:d6:
d4:17:30:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:48 2023 by rpki-client on console-ams.rpki-client.org