Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VScWCHQio0ZKaQTfqaFdvx-87Ag.roa
File: VScWCHQio0ZKaQTfqaFdvx-87Ag.roa (raw, json)
Hash identifier: gqvPpWHiNYgBvdWcrqtClPyvtgmyozvaXd61doZiSS4=
Subject key identifier: 55:27:16:08:74:22:A3:46:4A:69:04:DF:A9:A1:5D:BF:1F:BC:EC:08
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0892
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VScWCHQio0ZKaQTfqaFdvx-87Ag.roa
Signing time: Tue 29 Sep 2020 10:02:39 +0000
ROA not before: Tue 29 Sep 2020 10:02:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2194 (0x892)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=552716087422A3464A6904DFA9A15DBF1FBCEC08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:be:3d:ff:0f:e3:3d:aa:79:37:dd:26:66:e4:
04:f8:f1:c8:52:ee:5a:fd:ec:3f:b9:e6:54:c8:32:
df:32:a2:e0:56:f0:d9:07:64:95:5a:32:be:94:e2:
78:a5:8e:c5:de:2c:31:cb:1c:e8:08:c1:ff:53:be:
74:84:58:af:9b:8f:ab:20:bb:0c:fc:73:d7:38:7d:
ac:ec:1f:d1:33:18:ad:fa:b9:2f:f8:e2:12:81:3f:
74:a5:90:32:98:f3:c7:e5:08:57:63:a8:16:43:3e:
57:d4:4d:01:af:42:62:ef:a9:27:4a:b8:06:50:91:
c2:95:3f:d8:22:66:83:7e:b6:fe:04:db:3a:48:d6:
83:d1:d1:43:3e:6b:66:80:7e:00:7d:26:30:a2:87:
4d:42:89:0b:80:35:8a:1f:fa:14:68:94:00:3f:63:
f1:6c:b4:81:e7:ac:3a:2f:ab:15:27:40:0c:76:b7:
9d:c6:80:71:11:13:23:5a:99:00:d0:ba:ed:f6:46:
65:ea:18:1f:40:a9:30:46:ea:4c:5a:69:c8:6a:ef:
b3:e4:d8:dc:7c:08:d6:ed:7d:c1:5c:d9:3d:5b:74:
d7:1b:dc:1a:1a:0f:6d:31:3b:ae:46:17:d8:7f:97:
4e:e2:fb:55:a1:94:20:50:a9:17:fd:0d:91:cc:8a:
d6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:27:16:08:74:22:A3:46:4A:69:04:DF:A9:A1:5D:BF:1F:BC:EC:08
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VScWCHQio0ZKaQTfqaFdvx-87Ag.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.140.0/22
Signature Algorithm: sha256WithRSAEncryption
68:72:e0:e5:35:9a:f3:c5:25:20:18:37:25:e9:2a:47:d3:01:
20:60:6c:b0:2f:74:30:5f:b2:c3:94:d2:2c:58:f3:bb:60:f1:
85:9a:9b:c1:a7:1c:06:b3:42:b4:16:64:65:14:09:fb:d0:19:
a7:b9:91:ce:2b:14:15:ab:65:23:df:28:94:42:fe:0f:d2:f5:
c4:67:81:96:5d:40:b0:b4:65:d6:d9:6e:14:60:42:81:c3:a0:
ef:64:0f:e3:a1:21:50:fc:29:dd:21:7e:bc:ba:20:03:a2:5d:
ca:20:bd:19:9b:4e:e9:b0:75:05:d3:4a:9a:4c:12:b1:1f:24:
dc:93:bf:f1:fa:66:a0:60:04:a7:55:84:23:6b:d8:fe:86:40:
a5:4e:63:5a:14:78:da:0e:36:59:32:a0:cb:c9:5d:7b:88:1a:
82:8f:91:60:13:16:1e:51:57:42:50:2f:b4:97:d1:cf:9d:67:
70:58:42:58:47:ed:43:bd:a5:eb:05:48:68:8c:40:66:4c:c0:
64:9b:5a:9a:ea:67:8a:da:2a:e2:d2:3c:c8:b6:53:58:23:df:
ca:dd:b9:7b:db:69:34:e0:06:95:ac:56:7f:5d:bf:aa:a3:3f:
19:2d:6f:9b:eb:aa:cd:eb:f3:a8:e7:d6:bc:28:58:f0:d6:52:
12:97:93:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org