Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Z9O7PeRq-FmofAJDcELxeA9gkwI.roa
File: Z9O7PeRq-FmofAJDcELxeA9gkwI.roa (raw, json)
Hash identifier: 6Am69ZiPoRDihqcmEFKhWPFUEBTxYhHhJjG5/sZf5Ms=
Subject key identifier: 67:D3:BB:3D:E4:6A:F8:59:A8:7C:02:43:70:42:F1:78:0F:60:93:02
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E24
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Z9O7PeRq-FmofAJDcELxeA9gkwI.roa
Signing time: Thu 29 Dec 2022 09:32:17 +0000
ROA not before: Thu 29 Dec 2022 09:32:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10085
IP address blocks: 203.163.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3620 (0xe24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=67D3BB3DE46AF859A87C02437042F1780F609302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:8a:d0:e4:f2:7f:f5:59:6f:be:af:2d:9d:97:
eb:04:27:b6:b3:c8:d3:b1:25:21:ba:3e:56:61:49:
e9:5c:e8:29:13:aa:2e:29:67:ae:71:1f:a6:35:97:
59:32:05:f5:8f:e3:91:2c:7a:33:a5:80:d9:c9:84:
4d:01:76:32:47:09:6f:20:7e:65:22:ec:8d:be:5d:
9f:9c:75:ad:f1:37:90:06:8f:36:07:3c:59:ed:3d:
72:61:a4:5f:eb:a5:c1:0f:7b:5a:37:4f:e9:c0:f7:
b9:9a:56:3b:fe:68:13:da:e5:6b:d1:b0:23:68:17:
c5:82:e6:af:89:f5:ec:94:5e:48:81:24:ee:a9:63:
84:00:ca:6c:c3:cd:2a:b3:71:97:b5:65:5e:47:79:
d3:f8:2d:24:67:63:90:97:b4:fc:02:a1:33:ee:c4:
3f:8f:f0:6d:be:d0:57:97:84:a1:6d:65:f7:a5:84:
5a:e1:2b:81:7f:eb:eb:ee:f6:8b:6c:0c:c5:36:c8:
6a:b5:ce:b6:77:5a:69:2f:7d:5d:19:41:09:53:d1:
1b:1f:c1:b3:5a:5e:da:75:40:8f:5f:c3:8c:eb:a4:
a3:17:11:32:96:df:68:70:d7:40:02:91:af:58:0e:
60:a0:2b:25:29:cd:8a:78:41:96:9b:8d:04:93:5d:
aa:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D3:BB:3D:E4:6A:F8:59:A8:7C:02:43:70:42:F1:78:0F:60:93:02
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Z9O7PeRq-FmofAJDcELxeA9gkwI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.196.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:1c:4d:d0:f2:e9:fa:47:54:4b:bb:9c:ca:76:8e:dd:38:0c:
dc:ff:d3:0e:7e:bb:ea:af:27:13:20:55:f3:fe:60:3a:a5:9c:
32:85:67:44:b1:79:13:9e:7f:74:30:a5:a8:74:53:3f:69:8f:
6b:9c:be:e6:85:a7:00:44:63:c8:1b:95:af:98:d2:c2:74:33:
ae:37:40:40:af:44:82:46:22:f4:61:b4:85:de:92:83:78:5c:
c6:8d:0e:cc:cb:cb:73:f8:51:bc:e2:eb:fd:06:7b:68:e7:1b:
b8:fb:d7:77:53:e7:70:44:8b:20:92:3c:21:7f:57:82:a3:74:
7a:c4:d1:d2:d9:8a:5e:32:91:f3:79:8e:93:76:5a:0a:4f:f0:
4a:5e:74:3c:f4:f4:92:56:e0:39:42:c7:8a:94:1d:d1:f6:d7:
6a:a0:01:75:c9:8b:ac:d7:1b:f7:4f:77:50:94:a8:8c:59:b4:
32:cb:f4:bd:99:e9:36:c5:d4:96:fc:e1:54:1c:eb:7f:7d:ab:
18:f9:65:c4:a2:08:f9:08:a1:12:22:e0:ee:0e:09:c2:72:32:
e4:25:c5:a7:64:4f:ff:a9:39:0e:ac:84:d5:3b:77:6f:7d:20:
5f:ce:66:68:74:53:f5:81:ed:9f:ee:53:5e:7b:4a:ee:1e:1d:
ca:9a:ef:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org