Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Y__R8OQJsaLZ2CKTHhSw_lbwQgY.roa
File: Y__R8OQJsaLZ2CKTHhSw_lbwQgY.roa (raw, json)
Hash identifier: zsOFnSzqmXOJtTBnwsUJQ4C0aUrJUEKArkek0xHNPdc=
Subject key identifier: 63:FF:D1:F0:E4:09:B1:A2:D9:D8:22:93:1E:14:B0:FE:56:F0:42:06
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Y__R8OQJsaLZ2CKTHhSw_lbwQgY.roa
Signing time: Thu 15 Sep 2022 02:39:24 +0000
ROA not before: Thu 15 Sep 2022 02:39:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10133
IP address blocks: 203.163.222.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=63FFD1F0E409B1A2D9D822931E14B0FE56F04206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:33:f9:64:7c:77:8a:a0:81:a8:56:7f:a6:b1:
39:6a:93:d5:1a:8d:d9:07:80:ce:f9:b6:30:f9:0a:
ae:a7:72:62:6b:6f:8c:9b:8a:09:2e:9c:76:cc:93:
af:59:fd:fb:96:d0:ef:ba:21:0b:69:81:14:eb:b9:
f2:2d:88:5f:4f:63:ad:15:a8:ac:5a:55:49:a5:20:
ce:23:3a:bb:ca:44:51:cc:50:ce:52:5e:37:f9:39:
84:6f:59:d5:42:ae:ca:fc:dc:77:78:1e:12:a8:13:
25:54:e9:db:67:f7:da:aa:0e:13:1e:b4:4f:82:0b:
40:66:c1:5f:c0:4c:ac:11:e7:63:76:a5:fd:15:4c:
62:5a:7c:81:ff:37:c4:d5:24:3c:9a:21:5e:7d:a9:
eb:f3:c5:2a:f9:cb:24:83:76:57:62:02:36:36:d4:
8f:78:ef:13:c0:9a:5e:ea:17:71:b9:70:8f:ee:f6:
29:8c:b4:85:f7:a9:c3:45:e9:71:d1:09:75:27:25:
57:6e:fa:ca:bf:b2:37:2a:2f:eb:c2:14:32:22:e9:
a7:71:22:11:54:b5:75:a0:30:63:07:83:ee:92:3b:
2b:fd:99:4f:aa:a6:b2:e0:f7:3c:9c:8f:9a:87:7e:
f2:fb:43:19:32:8e:ff:d6:93:a5:97:5f:6b:9d:3f:
85:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:FF:D1:F0:E4:09:B1:A2:D9:D8:22:93:1E:14:B0:FE:56:F0:42:06
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Y__R8OQJsaLZ2CKTHhSw_lbwQgY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.222.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:5f:db:cb:03:c3:fd:47:6d:bb:76:0e:3d:03:e3:e4:a8:46:
0c:e8:f1:60:e7:bf:d0:ef:be:1a:6b:96:b7:99:24:f9:d2:d9:
47:8a:74:b5:78:be:6e:23:41:56:3e:28:ee:81:92:93:92:fd:
d9:9d:83:d2:04:f8:c5:26:09:c5:45:f1:1c:fb:ba:3c:b0:4a:
fd:22:e5:82:14:08:59:96:90:83:e7:5a:be:38:f0:ed:ab:fd:
6c:77:0d:a1:23:79:45:4d:f1:a1:cc:56:85:de:ee:30:9c:97:
c7:72:f0:3b:86:ad:5b:78:84:5a:d5:a6:e1:39:a0:aa:8d:1d:
20:af:49:65:d1:c5:0e:96:5c:bf:a6:5c:5e:97:4a:4a:a9:50:
fa:f6:ac:e0:87:9f:c9:07:97:39:44:51:f8:9c:c1:d5:a7:b7:
c7:f8:83:b4:68:96:0e:44:fb:83:90:2e:2a:d3:f6:cf:39:84:
92:0a:38:d9:12:d0:5a:01:9e:2f:86:be:c6:3e:22:27:f4:62:
86:79:d0:60:08:67:11:1a:38:08:d0:e4:08:fa:b1:0c:72:53:
49:5e:2e:bb:1f:40:80:33:be:c2:9d:61:80:d0:4d:d0:07:96:
7c:41:2f:65:9c:29:8d:96:06:ef:d3:04:3d:40:43:ae:1f:21:
d6:5a:0c:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org