Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Y5fXrw_thk2Xxhud7SV4IcAXY_k.roa
File: Y5fXrw_thk2Xxhud7SV4IcAXY_k.roa (raw, json)
Hash identifier: JjWkVK2IHO3+Doaec+UBWTGtCH8+dvzlU4QNbOhZdqU=
Subject key identifier: 63:97:D7:AF:0F:ED:86:4D:97:C6:1B:9D:ED:25:78:21:C0:17:63:F9
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C3E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Y5fXrw_thk2Xxhud7SV4IcAXY_k.roa
Signing time: Wed 29 Sep 2021 02:39:11 +0000
ROA not before: Wed 29 Sep 2021 02:39:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131273
IP address blocks: 150.116.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3134 (0xc3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6397D7AF0FED864D97C61B9DED257821C01763F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ab:0f:78:90:dd:71:0f:fe:d4:0a:b7:2e:f4:
7b:07:81:f7:11:ec:0c:1a:47:91:b6:c5:4c:db:28:
c7:29:79:92:a3:e0:1a:61:fc:3a:41:8a:9c:21:3c:
cb:eb:28:f6:86:6b:17:25:ed:69:40:b9:4a:6a:f4:
76:d9:51:05:e1:37:26:66:82:0b:30:7b:b9:7a:dd:
56:70:8a:25:9e:b5:91:b7:e8:67:f2:7f:e7:13:bb:
81:7e:b8:3a:62:7b:11:ad:eb:ae:13:80:0e:50:04:
83:33:78:a8:8a:01:7b:cc:5a:3c:7c:2f:2d:11:08:
48:45:2d:e7:e8:98:4a:5f:74:e5:81:59:62:d7:11:
e4:96:88:1b:46:c7:bd:ee:1b:59:af:03:9e:56:b3:
8e:64:7f:96:a3:45:22:eb:f4:c6:e7:40:16:5c:c5:
59:b8:1d:ea:e3:68:c8:80:e8:15:51:ad:be:34:9a:
23:db:4e:fe:6c:c2:34:41:13:db:a8:f3:c0:ee:c2:
15:ae:34:e4:17:fb:ac:4c:dc:ae:c6:48:7f:8b:52:
6f:a2:76:96:98:d4:02:cb:82:32:4d:1f:a1:e9:a9:
23:83:c6:9a:98:52:29:aa:d7:db:49:b0:d0:d1:04:
37:87:39:5a:ca:6c:99:6d:82:75:d2:13:67:81:20:
cb:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:97:D7:AF:0F:ED:86:4D:97:C6:1B:9D:ED:25:78:21:C0:17:63:F9
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Y5fXrw_thk2Xxhud7SV4IcAXY_k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.53.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:a8:5a:75:46:6e:72:3e:ca:56:03:d0:1a:d3:8f:8b:2b:58:
c9:9e:a4:cb:3e:a3:05:f7:21:ab:97:d6:ad:1a:45:46:b7:ce:
52:1e:fc:c6:cf:6a:60:ac:4c:e6:10:36:46:6a:d9:d8:be:49:
33:14:48:b2:07:85:2d:31:5e:52:d4:eb:ab:c6:05:e8:32:4b:
ef:d9:bb:df:17:19:18:ac:cc:3e:ce:d9:47:31:96:4d:e4:2d:
ca:9a:83:2e:7c:ed:5b:6c:40:64:db:aa:9c:f6:a9:04:14:6c:
b2:01:9f:e2:8f:8f:e1:4d:79:9c:8f:b3:68:dd:bf:75:37:cc:
8f:bf:a5:40:76:6a:04:be:ec:eb:4e:b0:da:21:3e:fe:22:8f:
73:16:d3:3d:17:f6:92:93:f0:ba:32:3f:8e:b3:1b:20:5c:5e:
41:58:5a:84:c7:2b:59:8f:c1:4b:a1:14:8a:63:de:4c:91:c8:
ba:ad:55:de:7d:fc:df:e6:cf:cb:49:ad:00:79:d4:ee:74:38:
0e:d2:76:a1:4b:04:93:e1:15:54:33:7b:d4:0f:e6:ce:6a:a1:
ea:73:db:be:4c:c0:82:f5:57:0a:e9:5d:9e:63:92:e9:fe:85:
7b:ca:90:ff:8b:83:88:df:55:5b:95:b3:e9:7c:a5:05:fb:51:
50:f2:e6:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org