Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/WxnY58EO_oJTsTKaVnr2eNFN2s4.roa
File: WxnY58EO_oJTsTKaVnr2eNFN2s4.roa (raw, json)
Hash identifier: jJmjjB8KVQUWJKcvxOKJaAjH5h/eBQ/ZuGN3BsUQVCE=
Subject key identifier: 5B:19:D8:E7:C1:0E:FE:82:53:B1:32:9A:56:7A:F6:78:D1:4D:DA:CE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AEA
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/WxnY58EO_oJTsTKaVnr2eNFN2s4.roa
Signing time: Sun 07 Feb 2021 12:58:26 +0000
ROA not before: Sun 07 Feb 2021 12:58:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 43.240.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2794 (0xaea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:58:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5B19D8E7C10EFE8253B1329A567AF678D14DDACE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:16:d4:07:82:3c:a5:fb:bd:3f:b9:0b:e5:4d:
79:b5:f7:28:f2:5a:5f:57:1f:10:69:1b:b6:3d:e4:
8d:e5:75:d1:2b:3d:18:a5:89:40:b8:5d:68:fb:34:
53:bd:ad:8d:78:83:c2:f0:81:dd:e4:12:50:ef:65:
18:55:6d:98:6c:7c:b1:be:cf:10:64:ed:94:c3:e5:
dd:05:11:80:34:ce:cb:63:56:92:65:b7:74:46:d7:
ea:8e:d3:3b:11:f5:26:6f:66:fa:f8:a2:55:26:c4:
21:2a:d7:9f:cc:88:f3:d8:e8:f9:7c:93:9b:51:16:
f1:d5:aa:2c:f1:83:da:6c:7d:a0:73:58:cf:fa:4d:
74:cb:b2:22:bb:ad:83:2b:96:cc:17:6c:9d:6a:cd:
9c:06:f1:b9:a4:81:31:44:05:d1:a0:c1:9c:fd:10:
ed:1f:2e:f0:9b:c5:67:7e:65:60:92:93:15:25:9c:
08:36:70:44:7c:fe:10:09:43:fb:4b:03:ea:f9:d8:
76:c4:1e:d1:a1:03:1e:1a:26:36:e9:5e:83:67:97:
fb:38:7a:d4:01:17:c4:0b:5e:3a:da:d3:59:ae:1d:
b7:a5:3c:50:b8:d7:2e:e9:be:b8:10:0d:0f:ab:e3:
a2:91:3c:72:19:25:0a:85:4c:6a:d1:9d:7c:ca:33:
ac:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:19:D8:E7:C1:0E:FE:82:53:B1:32:9A:56:7A:F6:78:D1:4D:DA:CE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/WxnY58EO_oJTsTKaVnr2eNFN2s4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.240.152.0/22
Signature Algorithm: sha256WithRSAEncryption
69:ad:0a:3f:f5:4c:d6:8c:ad:c0:83:bd:de:79:da:b7:9a:7c:
22:ed:80:39:c6:1a:4f:90:bb:67:dd:b9:c7:5b:75:cf:af:e3:
ac:18:45:d8:a7:82:ef:f6:6e:54:d9:e3:a4:c6:fb:35:3a:9f:
3b:d8:7b:07:d5:e8:0c:d4:55:87:6d:b3:ac:ae:9d:80:61:69:
13:93:9d:3e:0a:5e:32:25:f5:be:0a:a2:51:66:28:1e:b0:5c:
b4:04:73:46:39:32:fa:9b:49:7e:0a:a7:6e:81:8e:ee:62:91:
68:52:07:67:4b:36:63:eb:2f:28:d4:b9:e0:3e:7a:c3:f6:7f:
15:2f:26:03:fb:1b:1b:67:7e:2c:64:45:92:4e:a8:70:05:e8:
8b:05:13:50:ec:47:14:2f:79:45:d7:85:ca:23:b1:f5:98:3d:
20:8d:83:be:89:e0:29:92:65:a1:b0:7c:54:74:a0:db:37:02:
a5:9a:15:55:57:3d:d3:8f:65:c3:8c:af:11:7f:61:8d:5f:2e:
a6:90:c8:09:d4:08:3e:8b:71:55:36:a5:cf:55:59:5e:82:35:
1d:c2:6b:65:5c:27:73:ff:23:61:92:2a:69:c8:40:6a:64:ca:
54:21:29:84:b4:da:b6:10:1d:7f:92:80:12:1f:ea:65:f4:d9:
b3:35:7b:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org