Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Y-h3iK_8AUKCUhvMCWbTC7vBk-A.roa
File: Y-h3iK_8AUKCUhvMCWbTC7vBk-A.roa (raw, json)
Hash identifier: RXDvY6D2IcPI46gnX7EPQtnN8Ra2H9XzLz+2E8JGIZo=
Subject key identifier: 63:E8:77:88:AF:FC:01:42:82:52:1B:CC:09:66:D3:0B:BB:C1:93:E0
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Y-h3iK_8AUKCUhvMCWbTC7vBk-A.roa
Signing time: Thu 15 Sep 2022 02:39:02 +0000
ROA not before: Thu 15 Sep 2022 02:39:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 118.150.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=63E87788AFFC014282521BCC0966D30BBBC193E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ed:03:cb:66:0f:6c:c8:84:51:d7:39:27:5b:
37:67:4a:b2:09:f0:c8:b6:e6:98:77:70:47:f8:a3:
a6:93:47:14:18:ac:49:f9:2a:be:27:34:d9:a1:7c:
f1:0e:9e:81:b2:40:0e:5d:e7:66:01:6a:5d:9f:e0:
06:47:15:fc:05:07:18:a9:3b:5b:93:da:6f:d5:a1:
96:05:a3:c7:c0:c1:30:88:75:65:82:62:fc:d2:44:
36:8f:39:57:6c:94:b3:fa:e5:e4:f2:49:ac:ca:dc:
5f:4a:59:56:0d:03:1a:66:0e:2a:cf:4f:5d:ea:aa:
33:69:be:43:19:4f:75:db:51:45:60:5d:03:a6:c3:
5c:3b:03:9e:14:09:10:4c:d8:8b:2a:3f:c8:a6:69:
c3:96:7c:11:79:84:68:54:6d:3f:62:1a:13:45:16:
b3:95:83:28:ca:3e:32:7f:d8:22:f8:dd:52:61:c2:
5f:12:e1:82:52:9f:ac:8a:29:6d:18:80:44:0a:c0:
cd:ef:18:2f:3f:12:a9:00:e1:9e:35:df:a5:8c:f1:
21:e3:cc:e3:1a:10:62:0b:02:ee:0c:a1:05:15:a5:
ff:1d:02:5a:5c:00:26:c3:54:50:c5:dc:cf:43:56:
3b:7a:c3:70:90:ea:12:d4:96:41:e5:51:89:f4:15:
98:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E8:77:88:AF:FC:01:42:82:52:1B:CC:09:66:D3:0B:BB:C1:93:E0
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Y-h3iK_8AUKCUhvMCWbTC7vBk-A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.224.0/21
Signature Algorithm: sha256WithRSAEncryption
16:7a:3c:e1:9d:c3:4f:44:e9:9b:1d:f7:4d:d8:b3:f8:57:67:
e0:3d:e3:81:4f:47:66:cd:df:6a:ec:d9:10:91:79:e1:6f:cc:
ff:6d:ea:72:5d:64:d4:61:f5:9a:72:1d:2f:6c:46:f6:d6:87:
a1:32:a6:6a:36:98:3d:59:b5:5f:5f:2f:16:6c:a4:7f:c4:88:
a0:0b:50:da:9c:c5:e8:c0:f4:db:f6:06:4a:83:7f:2a:f8:5a:
77:5d:7e:78:bd:39:7e:4c:73:af:fb:f0:56:f0:0c:a4:8c:dd:
84:5e:ab:95:33:69:8f:7e:52:82:ee:0c:35:54:a1:ed:ee:f1:
ab:61:7c:00:fd:85:d2:c2:69:e4:4b:c5:97:1f:e5:78:61:7f:
8b:5e:7f:59:0f:8b:49:4f:a9:45:d8:24:fd:92:70:a5:59:49:
32:f9:b0:95:b1:64:42:2a:49:97:23:46:5c:49:ae:90:90:f7:
7e:c3:77:8f:20:05:9a:23:82:98:7b:4e:3b:c0:a9:8b:b9:02:
95:01:2c:dc:7d:e3:3e:f9:51:e4:1b:d0:84:07:2b:cc:1d:67:
c1:d9:a0:dc:a4:9a:ba:73:aa:e1:2e:82:91:d5:8e:b0:5f:b7:
c4:f1:22:17:f0:41:9e:f0:01:cb:c3:25:fa:6f:af:e1:58:26:
65:35:9c:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org