Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/WHX1ZarQJmqJAescBreNK08qpz8.roa
File: WHX1ZarQJmqJAescBreNK08qpz8.roa (raw, json)
Hash identifier: OwjDwcBeQB5fhjVael+76hMcg4Ox4FHDhbkY2sB/EMU=
Subject key identifier: 58:75:F5:65:AA:D0:26:6A:89:01:EB:1C:06:B7:8D:2B:4F:2A:A7:3F
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C0B
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/WHX1ZarQJmqJAescBreNK08qpz8.roa
Signing time: Wed 29 Sep 2021 02:38:58 +0000
ROA not before: Wed 29 Sep 2021 02:38:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.116.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3083 (0xc0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5875F565AAD0266A8901EB1C06B78D2B4F2AA73F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4a:b0:a4:c5:d8:9a:2e:ce:6d:a1:5d:15:65:
6e:20:18:9c:5c:6e:42:f2:2f:bf:cf:a6:91:fa:6b:
f0:21:50:ee:5f:b2:dd:26:dc:85:60:4a:15:25:82:
f1:fa:32:0e:b4:a1:56:81:1a:c4:00:ea:7d:2a:7c:
85:34:91:37:9f:56:a7:b0:7c:e5:2b:45:bf:c8:b7:
0e:66:c8:12:53:b1:d2:c7:67:c9:f4:38:e4:6f:90:
93:9c:c9:4d:1c:7b:67:02:30:e3:ae:02:67:cd:6e:
ac:17:f4:7f:0f:24:bf:e4:d1:dd:7c:0c:b1:b3:ca:
05:bf:c4:36:77:01:db:51:5f:23:a9:76:5c:41:89:
f1:2c:3f:74:a9:47:60:6b:ad:57:40:cb:ca:3a:d3:
de:8c:13:96:fe:e6:86:d9:c9:90:f7:88:91:c6:64:
32:9d:03:a4:2c:e5:26:a0:06:db:de:fa:2a:59:e6:
2c:d7:53:c7:69:da:02:9e:71:e7:1d:7a:9e:f4:3f:
d0:95:4d:7f:43:28:f6:4f:2c:ef:bd:b8:a7:8a:89:
c3:c4:9f:89:16:28:b1:95:ec:50:b1:b5:b8:e1:ac:
f3:42:d8:89:61:b4:7f:d2:6d:4b:bc:b0:1f:e3:6d:
24:03:64:a1:1a:f7:69:b3:1d:a7:3c:de:df:fc:5f:
82:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:75:F5:65:AA:D0:26:6A:89:01:EB:1C:06:B7:8D:2B:4F:2A:A7:3F
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/WHX1ZarQJmqJAescBreNK08qpz8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.83.0/24
Signature Algorithm: sha256WithRSAEncryption
81:04:b8:8c:b4:06:02:34:ed:87:2b:43:51:52:dd:77:92:aa:
f3:8d:50:7f:6f:90:ae:cb:8b:91:c5:b9:35:64:d9:a3:c3:e0:
86:fb:7c:d2:45:8c:79:37:32:15:b2:e4:05:c0:f6:82:d6:c4:
73:5f:77:5a:bb:3d:0e:b4:3f:80:46:63:16:95:0a:90:f0:22:
e2:fc:a9:1a:e4:cb:16:31:99:47:4c:b0:81:ea:6c:38:bd:34:
5e:48:18:82:4a:7f:8d:d4:28:a0:14:51:70:43:e6:a7:14:e4:
22:9b:d7:85:46:e2:3f:1a:86:17:95:92:0a:92:03:3b:4c:8f:
3f:cd:2d:07:14:f4:f0:6b:91:de:30:89:83:45:d2:b1:b0:ae:
66:03:2f:97:c2:b2:93:2e:14:ab:bd:00:9a:33:8b:52:75:81:
70:77:79:89:7b:14:80:e3:3b:32:f3:b5:1b:d9:ca:18:ff:85:
cf:d1:32:cf:0d:76:04:1c:b5:57:30:d9:03:1c:5a:c2:52:bf:
90:ff:71:42:68:cd:62:68:28:5c:bd:6b:08:08:19:bd:22:89:
c3:6f:86:b2:6f:e4:50:f2:51:77:57:96:d6:ab:46:89:cd:e8:
46:6c:eb:c0:65:c0:a8:05:ed:bf:cb:be:27:87:4b:35:fa:0f:
71:a9:69:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org