Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VZttiorF6nh-oyfgn_SgrzTmKP4.roa
File: VZttiorF6nh-oyfgn_SgrzTmKP4.roa (raw, json)
Hash identifier: 3JM2YhKzIlS/x+/hERRUcNEw/DNUWzkyevCWCduQyBI=
Subject key identifier: 55:9B:6D:8A:8A:C5:EA:78:7E:A3:27:E0:9F:F4:A0:AF:34:E6:28:FE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BFA
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VZttiorF6nh-oyfgn_SgrzTmKP4.roa
Signing time: Wed 29 Sep 2021 02:38:54 +0000
ROA not before: Wed 29 Sep 2021 02:38:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.117.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3066 (0xbfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:54 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=559B6D8A8AC5EA787EA327E09FF4A0AF34E628FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:45:b5:78:32:c8:70:ca:a2:90:5c:ad:eb:20:
28:31:a7:83:d2:71:68:61:2c:5b:50:ed:8d:7b:a5:
c3:0a:fb:96:05:d4:9a:d9:9f:ea:7a:9f:d5:dd:e6:
2d:b0:36:00:f3:6c:87:0b:e3:c7:2a:6e:04:c2:a5:
dd:c3:2c:60:05:4c:a8:3e:cc:28:44:f2:99:ca:b4:
30:2d:e4:72:7e:f3:af:0b:37:ff:cd:b8:1d:62:66:
a9:ce:df:67:ca:23:a2:63:c1:cf:c7:85:86:d5:55:
56:af:67:b5:ac:d6:c6:22:85:b8:12:d1:c8:49:03:
95:7c:f5:a4:66:a7:71:37:75:1e:f5:9c:d7:ca:3a:
3e:9f:fe:e9:b8:b6:53:a2:59:a4:2d:9f:d3:ff:0d:
11:ee:83:28:03:de:dd:7a:0f:d9:9c:81:9e:11:1f:
27:eb:65:af:93:9f:b4:fe:4f:c4:ae:66:21:a6:a3:
ee:14:53:69:0e:9e:88:bf:10:1d:bc:71:be:7c:3c:
88:38:04:26:87:5d:55:1c:4c:d2:ad:55:a4:fe:99:
c7:d9:92:f9:c8:01:90:5a:64:5c:fa:fd:10:19:ec:
b5:cf:fa:29:c1:60:88:ed:3e:b9:52:80:a4:a6:78:
23:b4:4e:8b:4e:1f:71:8f:a8:6f:0f:cd:12:6c:1a:
cd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:9B:6D:8A:8A:C5:EA:78:7E:A3:27:E0:9F:F4:A0:AF:34:E6:28:FE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VZttiorF6nh-oyfgn_SgrzTmKP4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.232.0/21
Signature Algorithm: sha256WithRSAEncryption
37:62:d1:68:08:fe:8a:ac:6f:8c:08:b9:fb:97:03:96:db:7d:
8c:5f:7a:8d:97:46:f6:c2:2c:60:77:0f:47:f2:12:80:d3:a3:
d2:aa:ae:2c:18:33:df:d1:59:fa:66:e2:4a:80:5c:35:c9:fa:
5e:3d:b5:79:c3:79:25:1d:e3:36:a6:20:62:2a:1a:6c:32:21:
a6:f0:90:17:e4:2b:80:90:03:fd:98:78:af:8d:02:f9:a1:ed:
a0:a5:c7:a5:cf:42:26:30:a9:3b:d1:4b:89:d2:53:04:32:0c:
d4:96:c5:09:e2:cc:8c:8a:53:07:bd:c5:87:e0:5c:86:85:c3:
a4:4b:96:aa:e1:2f:f5:9f:92:f6:51:99:0d:b2:3c:fe:ed:56:
1c:b4:dd:45:5f:92:41:ec:aa:0c:d3:74:6d:37:81:5d:a6:ab:
8b:ca:6c:6f:1f:e9:56:a7:b2:e3:5b:ee:1b:91:7a:e0:79:f7:
87:ea:fb:0e:4c:db:83:40:9e:8d:a0:ba:ff:82:ce:67:a1:76:
73:4a:aa:46:b8:f9:6e:b6:29:a0:ad:37:a7:3a:29:d2:11:5c:
0b:bb:aa:72:5f:e4:35:ec:4c:32:88:31:5b:19:50:f0:73:d2:
4a:91:ae:f7:45:9b:59:ad:12:50:05:fd:03:14:0b:00:fb:62:
b4:5d:1f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org