Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VnJbNzoJ_5Oikn06MjUWDyatzsg.roa
File: VnJbNzoJ_5Oikn06MjUWDyatzsg.roa (raw, json)
Hash identifier: 3vf+wYu1rmv6CqPiwgciddjwo2fX0QRhhur7qPC/IPc=
Subject key identifier: 56:72:5B:37:3A:09:FF:93:A2:92:7D:3A:32:35:16:0F:26:AD:CE:C8
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BFC
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VnJbNzoJ_5Oikn06MjUWDyatzsg.roa
Signing time: Wed 29 Sep 2021 02:38:55 +0000
ROA not before: Wed 29 Sep 2021 02:38:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 113.21.80.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=56725B373A09FF93A2927D3A3235160F26ADCEC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ef:8d:4c:a1:d6:cd:7c:62:a1:54:fc:0c:27:
8f:55:0e:c0:2e:f1:0f:a6:cf:9f:51:df:49:b2:5c:
1e:98:99:63:69:f1:12:36:3d:f2:30:e7:46:bc:e9:
7f:1b:9a:c8:9b:1c:54:16:82:17:c1:2d:ca:ed:7d:
f4:71:ff:91:14:a2:42:05:73:95:95:6f:4d:1c:18:
64:58:d3:5b:32:5b:01:43:40:ef:c2:38:62:93:48:
e7:41:ed:57:da:5f:98:2c:c4:3e:02:f7:5c:f2:bf:
26:ff:36:85:a7:00:78:53:9b:ce:71:ea:6e:5b:57:
a1:1d:7c:01:48:43:17:1d:32:1c:62:4e:6a:30:8e:
52:a7:5a:15:92:2a:6b:75:2a:79:83:01:60:c6:6b:
be:cc:8c:03:5d:c1:df:f4:7c:2a:d5:f1:fb:42:e1:
bf:3c:56:e1:d8:07:69:00:84:0e:92:85:83:85:af:
0d:dd:46:d6:32:f0:bc:54:d8:5b:88:50:56:9b:fb:
3f:ff:2f:91:33:59:67:34:8d:40:a6:b8:2c:f7:27:
73:03:df:f8:af:2a:be:e9:51:92:3d:16:48:2f:53:
8b:1d:ca:8a:ff:e8:35:04:eb:dd:44:ea:25:2e:c3:
2a:82:fa:33:05:b5:3d:6d:8b:07:b5:4c:3b:48:68:
0b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:72:5B:37:3A:09:FF:93:A2:92:7D:3A:32:35:16:0F:26:AD:CE:C8
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VnJbNzoJ_5Oikn06MjUWDyatzsg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.80.0/21
Signature Algorithm: sha256WithRSAEncryption
01:26:13:6b:11:07:c9:b4:59:dd:95:4a:12:37:2f:70:1d:2d:
5d:9b:99:92:79:e1:13:13:a3:4d:39:36:43:4a:c4:37:79:9b:
5d:79:e1:65:0c:d4:46:1a:20:9d:8b:40:42:d2:d2:5c:de:0a:
3b:9a:05:d1:4a:f1:21:35:3e:0f:6f:70:ad:f3:ca:9b:59:cc:
a4:d9:c4:4a:45:9c:5b:2a:44:30:08:a5:42:40:ac:3a:ec:10:
30:ad:92:d2:8d:34:3d:01:f5:e6:2a:80:d2:06:6c:41:04:33:
0b:72:55:bc:51:9c:4f:d2:97:9c:1c:f1:5a:03:ec:0f:ee:02:
77:99:40:f5:52:a1:47:9d:7e:b8:ee:ad:09:32:25:bd:f6:7d:
a6:1c:3b:74:c5:2b:bc:4b:e8:45:82:6c:c1:d1:0e:ed:c9:32:
1b:18:0d:63:d0:29:c2:e6:67:11:64:f0:e2:5d:e6:a7:a6:bf:
e6:6a:84:2a:93:1f:4b:a8:a9:9d:28:02:73:20:27:34:6a:cd:
70:01:d7:ab:fd:2a:ee:62:6c:a4:99:82:39:54:5d:8c:86:91:
42:87:e1:4b:09:0f:fe:14:a8:5b:71:71:d3:78:ba:49:0f:88:
79:97:73:7d:23:72:b5:da:dd:37:81:e6:14:bb:85:d6:8f:a4:
93:af:70:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org