Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZEJCWWyfeHOjWNvoBmUM6SQmKNI.roa
File: ZEJCWWyfeHOjWNvoBmUM6SQmKNI.roa (raw, json)
Hash identifier: fFruA+rFsRshWtFcfOPafhecG56CWahOgxlXXdBmr24=
Subject key identifier: 64:42:42:59:6C:9F:78:73:A3:58:DB:E8:06:65:0C:E9:24:26:28:D2
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E01
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZEJCWWyfeHOjWNvoBmUM6SQmKNI.roa
Signing time: Thu 29 Dec 2022 09:32:07 +0000
ROA not before: Thu 29 Dec 2022 09:32:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131273
IP address blocks: 150.116.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3585 (0xe01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=644242596C9F7873A358DBE806650CE9242628D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7d:3f:2c:d3:c5:30:90:5b:e3:90:03:ac:06:
23:c5:55:30:fe:06:f9:86:0a:9b:eb:08:3d:52:64:
96:61:07:36:30:4f:58:92:6a:20:b1:59:d3:0a:da:
1f:a2:ef:3f:73:02:ca:2d:17:46:3c:92:8d:7c:dd:
54:5e:22:a8:ec:38:39:02:9e:45:59:1f:54:49:1a:
39:07:b5:d0:68:31:a4:a8:3c:3b:b8:80:70:d8:70:
c2:b7:7b:68:27:93:72:a1:73:f5:88:86:b2:96:b6:
98:8f:87:08:37:f2:10:8c:65:5b:34:56:b9:84:24:
51:df:a9:83:06:c0:d3:29:ef:83:56:c4:7c:a7:31:
d6:42:ac:31:9a:0e:db:21:a0:91:91:11:47:27:b6:
24:0a:04:99:eb:ea:e7:58:60:0b:12:5d:32:48:b9:
c5:11:91:ec:63:72:57:69:4d:2a:ca:bd:78:34:f6:
10:04:9d:3e:90:55:b0:a3:57:2d:c0:3f:e3:8b:46:
bc:f8:51:b9:15:99:92:5e:69:f3:72:36:19:9f:95:
64:e4:b2:14:c4:75:74:24:7b:5b:a5:ba:cb:2b:d3:
e4:01:57:04:cd:fa:24:16:93:58:18:0b:36:01:88:
7b:8b:6b:8d:be:f4:4f:d8:3e:74:59:7c:49:92:c0:
e0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:42:42:59:6C:9F:78:73:A3:58:DB:E8:06:65:0C:E9:24:26:28:D2
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZEJCWWyfeHOjWNvoBmUM6SQmKNI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.81.0/24
Signature Algorithm: sha256WithRSAEncryption
95:4a:d5:da:6c:93:48:35:43:b4:8f:e2:11:af:48:50:a6:60:
fa:30:c2:37:84:b2:30:ee:a2:0f:ca:73:58:5d:8a:90:bf:ed:
73:fe:10:44:9c:50:56:0b:06:7f:a8:3f:90:a8:d9:aa:3c:5c:
14:2e:ea:a2:ea:af:19:d3:db:3d:43:41:38:56:d1:93:59:6f:
a8:b6:62:d9:8a:b4:af:ff:ac:42:b0:ba:a2:73:94:07:d9:4a:
53:69:cb:f0:32:ce:28:5a:8e:c0:b0:fa:ce:1a:32:74:87:a7:
c6:7e:47:cb:1c:d1:00:ca:36:82:79:46:ef:88:f0:3b:a5:aa:
cb:d0:6d:e0:35:db:d1:87:27:0c:f2:7d:35:20:e6:60:7b:09:
e9:68:cf:5c:13:94:7f:f2:36:ac:d0:0c:1e:aa:cf:83:00:66:
f0:8a:f6:86:e0:aa:4a:f6:1a:a6:3e:1e:c4:f1:b0:ac:cc:20:
03:6b:18:f6:05:00:29:6c:1f:43:a4:5a:55:ea:02:d6:14:1f:
89:03:b2:35:3f:00:c2:e0:da:0c:9c:25:85:0a:56:71:a3:4e:
46:35:0f:ca:a3:9d:7a:bf:be:ab:9e:36:22:e9:08:75:33:e8:
a1:b8:d2:c5:7c:28:96:11:3b:da:8e:4e:14:09:b8:ef:e6:a7:
59:a4:ba:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org