Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/WIZOW5cubjkKgX11DaVDOxqzMf4.roa
File: WIZOW5cubjkKgX11DaVDOxqzMf4.roa (raw, json)
Hash identifier: mDIhOTQTU8XePQ+niJYiwrK+jWLraK4r8IovforfaAI=
Subject key identifier: 58:86:4E:5B:97:2E:6E:39:0A:81:7D:75:0D:A5:43:3B:1A:B3:31:FE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B1E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/WIZOW5cubjkKgX11DaVDOxqzMf4.roa
Signing time: Sun 07 Feb 2021 13:07:48 +0000
ROA not before: Sun 07 Feb 2021 13:07:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 21859
IP address blocks: 223.26.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2846 (0xb1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 13:07:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=58864E5B972E6E390A817D750DA5433B1AB331FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3f:f2:cb:a2:54:61:9e:21:48:8c:4c:b2:55:
fd:bd:ef:3d:fb:f5:fe:99:d5:c3:31:6b:1e:09:05:
1a:c2:d6:e1:ef:20:45:1c:0b:7c:64:bf:fe:50:37:
2e:1c:74:f0:fe:31:81:d8:41:db:f6:03:c0:c5:a1:
86:ad:f4:1c:34:0e:5e:07:a3:ee:1e:8f:a6:6b:b4:
24:11:8d:16:60:d1:59:24:7b:d0:5a:66:c2:5f:85:
b5:f8:bc:fd:16:3f:93:a4:1e:9a:62:5f:b8:4c:ba:
be:99:38:9f:15:6f:2d:67:23:6f:26:b6:0e:5a:1d:
97:fa:b6:60:fc:21:d5:fc:51:1c:e4:6c:c4:83:c4:
8b:9c:e0:0a:83:79:cc:dd:a8:8a:de:85:bb:46:0f:
6b:77:17:f7:d7:c1:29:ce:b6:c2:b5:4b:bf:bd:40:
4f:f8:5c:63:15:b8:81:45:8d:5e:f8:20:da:7f:03:
24:ae:32:c2:eb:26:1d:cf:f6:bf:3c:00:5b:13:ec:
98:b3:d6:63:16:3f:f3:1b:cf:94:f4:b7:e8:65:71:
dc:d3:4f:06:d4:ff:3a:32:6b:6a:62:44:d9:ea:fd:
83:fa:ea:ad:28:03:a3:6d:ca:ac:d8:5f:a0:ba:59:
ec:bd:42:a7:62:74:9f:e7:ef:88:2e:8a:1a:9b:23:
56:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:86:4E:5B:97:2E:6E:39:0A:81:7D:75:0D:A5:43:3B:1A:B3:31:FE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/WIZOW5cubjkKgX11DaVDOxqzMf4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.72.0/22
Signature Algorithm: sha256WithRSAEncryption
46:51:9f:c3:72:77:31:06:d5:7a:1d:05:3e:73:45:b3:4f:74:
61:78:68:7d:fc:d9:6f:7c:7c:fc:b1:68:bc:e4:68:2d:0b:7c:
30:b7:2e:50:ad:65:9d:a5:8a:79:19:e6:1b:41:20:6e:36:65:
35:e1:ba:08:b9:03:e8:74:df:17:7e:c8:f3:10:58:49:97:50:
0c:f1:30:6d:73:cb:37:25:e0:aa:00:96:d9:ff:91:78:83:17:
6c:39:df:a7:40:f4:12:87:ae:4a:59:2e:dc:ef:b5:d8:8f:4d:
53:12:28:c1:9f:3c:5d:c2:50:2a:4c:94:64:8a:26:90:5e:0a:
5f:65:a1:79:7f:81:cc:85:28:87:90:02:fe:a5:86:2b:63:da:
ba:ce:cb:ee:07:90:b6:52:2b:d6:30:01:b6:d1:bf:68:f4:ce:
b8:93:15:73:a1:70:48:32:3b:b1:25:e1:43:f0:07:e3:86:ad:
5e:67:dc:c4:b5:55:58:af:09:60:3c:f0:53:7f:e0:7d:dc:9a:
fd:78:d7:e4:ae:5a:31:44:80:30:02:bb:8e:8e:09:21:82:02:
90:a6:64:f5:c6:bd:fb:54:d3:5b:3e:f2:7d:d1:01:36:75:4b:
cf:1a:74:bf:8e:73:f8:29:f2:57:0b:44:0e:13:45:a2:1b:46:
e2:08:85:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org