Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VVl38He-Ka0vHk2lIObh3L4ZeaA.roa
File: VVl38He-Ka0vHk2lIObh3L4ZeaA.roa (raw, json)
Hash identifier: 6Ro+IcewAi9jqnnKH2unoEQVwy/ls1OmUO6BAA7Ifmk=
Subject key identifier: 55:59:77:F0:77:BE:29:AD:2F:1E:4D:A5:20:E6:E1:DC:BE:19:79:A0
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DEC
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VVl38He-Ka0vHk2lIObh3L4ZeaA.roa
Signing time: Thu 29 Dec 2022 09:32:01 +0000
ROA not before: Thu 29 Dec 2022 09:32:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 150.117.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3564 (0xdec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=555977F077BE29AD2F1E4DA520E6E1DCBE1979A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:24:7f:34:e9:51:50:a9:ce:4e:d4:8a:6f:a2:
3a:c7:b9:4c:14:b7:7b:a4:28:94:a2:b0:85:b5:58:
d2:1d:47:4b:56:fc:75:37:09:f6:73:21:54:51:c4:
81:47:d4:06:81:5e:dc:81:2d:58:96:df:11:26:50:
73:42:4d:a6:85:bf:c3:7d:0b:91:ec:d2:d3:20:6e:
d1:6f:69:2b:52:1b:cc:80:98:05:12:e7:73:65:10:
ce:c7:9a:c5:2d:50:db:13:b3:98:ce:4b:82:81:a4:
4f:0f:4a:8a:6a:fe:b5:51:cb:79:b8:f8:6c:3b:91:
dc:77:4c:c6:f9:8c:95:b4:4f:23:80:22:9a:dd:b3:
da:f7:14:99:1f:20:96:e3:92:58:40:b4:43:86:03:
be:61:61:a7:bb:9c:52:cb:df:45:4c:b6:23:af:ab:
cc:8d:a2:f5:a7:d6:44:3f:50:c1:bd:b0:f0:47:4d:
97:c0:d0:a5:25:ea:09:48:3b:13:19:6f:f0:be:f5:
1b:b1:4d:bc:ec:cc:af:1a:a3:fb:2d:4d:48:15:15:
d8:40:b0:57:99:5f:a2:67:dc:d8:c4:41:17:ea:97:
ce:3c:d5:a4:bb:e4:63:49:28:ed:70:31:05:8b:1e:
b8:b0:80:0f:f2:5a:89:89:51:2c:a9:66:c4:cd:7a:
0c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:59:77:F0:77:BE:29:AD:2F:1E:4D:A5:20:E6:E1:DC:BE:19:79:A0
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VVl38He-Ka0vHk2lIObh3L4ZeaA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.208.0/20
Signature Algorithm: sha256WithRSAEncryption
01:3b:7f:9f:c3:a1:22:72:75:6f:8d:0a:4f:2d:9e:b9:df:40:
22:30:16:05:99:25:b5:e0:ce:04:8b:64:e8:37:82:47:25:e1:
09:62:c9:c1:ef:0f:99:4e:78:92:a8:29:18:c2:3e:7d:5a:4e:
9c:2b:72:ab:7b:ec:b4:17:7e:cf:4c:11:9b:12:4d:ae:8e:98:
93:7c:6f:d4:de:63:0f:95:ac:6f:9c:7a:5f:7a:f9:04:c1:74:
88:bf:87:52:f3:55:ed:a6:c0:26:e4:20:aa:f7:40:6f:4e:37:
50:c6:40:52:26:68:a6:83:ef:f5:bf:4f:86:a7:c2:e8:4c:70:
6d:e1:b2:8a:0b:8b:50:b8:bb:0c:a5:f9:ce:b5:f4:d8:c0:04:
a6:d6:2a:b5:35:db:09:43:06:78:f0:9b:dd:08:53:d6:6c:0b:
a5:ac:da:f3:ee:17:74:d4:11:6f:51:45:85:d8:21:dc:51:47:
44:3d:81:87:1c:a8:f5:9f:e1:61:3c:e4:08:45:28:a9:16:9f:
69:ae:eb:6e:0b:77:79:9c:29:05:6a:85:09:52:9d:bd:f7:d1:
4e:4f:81:65:16:46:95:4b:ee:58:8d:8c:66:bd:35:0b:99:3b:
0c:26:c0:22:ff:b3:a6:de:39:5f:10:d3:e3:ad:30:e8:00:2b:
ce:0f:6a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org