Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/WncMFyQx0EGNF8iqZR6pNTYJSNY.roa
File: WncMFyQx0EGNF8iqZR6pNTYJSNY.roa (raw, json)
Hash identifier: WEar0RLHWnfxBIleStWciNEDOq99BKPNtSp8fVbtmas=
Subject key identifier: 5A:77:0C:17:24:31:D0:41:8D:17:C8:AA:65:1E:A9:35:36:09:48:D6
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 084A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/WncMFyQx0EGNF8iqZR6pNTYJSNY.roa
Signing time: Tue 29 Sep 2020 10:02:17 +0000
ROA not before: Tue 29 Sep 2020 10:02:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2122 (0x84a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5A770C172431D0418D17C8AA651EA935360948D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b7:38:b1:b8:e1:28:a1:4b:92:34:9a:8b:1b:
21:8e:bb:a0:df:7f:d3:aa:98:08:90:21:c0:0e:b1:
6b:b5:e3:85:31:24:7e:e9:fa:15:14:3c:78:c7:2d:
3c:b2:68:f3:90:fc:2a:c7:b8:3f:f9:71:de:e8:75:
45:47:a8:40:6d:90:79:33:b4:4e:08:46:c8:5d:0a:
f1:ee:8a:62:05:c9:75:dc:9a:a9:e6:48:ca:6f:05:
a4:c8:f3:4b:ca:eb:98:b5:d8:97:f1:d7:39:60:8c:
37:1b:ff:85:d7:af:92:1e:99:a5:e8:11:6b:e9:40:
26:fa:21:32:47:55:a7:2a:5e:10:31:87:2f:39:cd:
ea:58:e4:de:0a:a6:71:77:29:71:d4:ae:d2:e1:37:
0c:62:2f:0b:34:99:ea:eb:73:3b:63:4e:c1:23:48:
86:62:5d:7e:42:31:65:79:e6:ae:a0:74:51:f1:6f:
04:4b:04:07:55:6c:8b:ec:f3:8c:ab:35:12:ab:d5:
08:fd:60:71:9f:b0:c5:77:c5:24:60:d0:b3:b9:4b:
ba:3b:c6:99:3e:88:21:2b:f7:2b:c2:ef:16:41:17:
4c:c5:8b:82:af:fe:f0:26:13:25:55:3f:40:2f:9d:
c9:22:0d:0d:9a:c2:21:21:0f:28:36:cd:87:0b:ce:
82:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:77:0C:17:24:31:D0:41:8D:17:C8:AA:65:1E:A9:35:36:09:48:D6
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/WncMFyQx0EGNF8iqZR6pNTYJSNY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.84.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:37:53:2c:a9:fe:d2:ad:7a:cd:6c:c6:9e:6d:ab:0d:2f:ca:
c3:68:ce:ff:eb:b8:03:76:90:d7:ce:20:9a:c2:1a:bb:5b:50:
8e:b6:55:ff:84:4f:e5:2e:a8:14:29:f0:e8:0e:fc:e8:20:b6:
02:91:09:67:60:98:20:07:3a:de:6d:64:59:55:e6:45:c6:c8:
ec:86:92:7a:01:6a:4e:5c:af:d1:3f:91:0c:7b:69:c9:87:28:
5d:b2:e5:bf:c9:03:c6:d8:fb:a9:1c:a2:18:fc:f2:5b:4e:60:
d8:79:78:56:2f:42:d3:29:39:ef:2f:2c:3d:71:a3:f0:c1:f7:
d4:ea:01:f8:05:0b:6d:d5:52:60:65:21:09:01:4c:ac:c2:ed:
5e:c0:ba:ad:c6:e4:b6:6e:74:6b:20:4a:3d:71:d6:38:2e:3f:
f5:7a:f4:1a:67:d0:51:19:3e:15:bd:77:64:70:e0:19:33:95:
57:58:0a:8a:5d:24:5a:5b:3b:41:4d:0e:fb:e1:87:f1:f3:b7:
83:31:7f:bc:2c:30:67:a0:42:a9:51:b1:7a:9b:18:59:32:7b:
7c:4e:b5:d8:1f:e6:aa:90:74:41:f1:f9:21:4d:38:ca:f6:d3:
64:f6:cb:eb:2d:8b:c7:8d:bf:aa:b8:04:fb:7e:61:9a:24:10:
3d:95:a3:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org