Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZHNqcpguXh1eU11X_lypgpgbPA0.roa
File: ZHNqcpguXh1eU11X_lypgpgbPA0.roa (raw, json)
Hash identifier: SKCw+ousq1p1taW/yd3wO4+z9mQzErgZL9qPF5oWIlo=
Subject key identifier: 64:73:6A:72:98:2E:5E:1D:5E:53:5D:57:FE:5C:A9:82:98:1B:3C:0D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DBB
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZHNqcpguXh1eU11X_lypgpgbPA0.roa
Signing time: Thu 29 Dec 2022 09:31:47 +0000
ROA not before: Thu 29 Dec 2022 09:31:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.117.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3515 (0xdbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=64736A72982E5E1D5E535D57FE5CA982981B3C0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9d:64:64:ad:4a:2b:98:e1:3c:48:d8:17:f6:
14:cc:66:d0:45:92:14:07:c9:be:1a:13:18:ae:e9:
f2:fe:77:90:0b:3a:15:0e:7d:5a:22:79:62:d8:de:
86:5e:27:3e:06:5d:35:0c:ee:94:2d:be:d3:9e:32:
fe:35:25:36:1a:d6:10:54:93:84:fa:6a:96:c2:54:
f9:04:cb:30:88:fc:bd:fa:3c:8c:2b:91:a1:88:0f:
be:fe:fc:2e:d8:dc:da:d7:d4:23:e2:77:d8:7e:77:
57:cd:5f:4e:cb:80:f0:fa:36:79:ef:b6:e2:55:4d:
da:81:e6:f0:72:b7:73:34:02:cf:f6:d6:a8:67:bc:
37:6e:7b:7d:1b:54:5d:83:44:8f:f0:16:96:b0:63:
e9:e0:72:f9:94:5b:bd:e6:9b:1d:67:84:72:1f:b6:
db:ff:63:83:d7:71:4b:ff:61:7b:13:91:2d:2e:43:
51:14:68:0d:5a:b6:47:82:81:2a:76:60:fc:45:03:
02:0d:c1:0c:4b:25:69:ba:db:36:c1:a1:23:b2:50:
c4:21:88:ce:84:4a:72:ca:01:35:33:16:d9:eb:c3:
3a:49:05:5f:66:fd:3c:1f:9b:87:04:ae:ff:a6:ad:
36:29:8e:09:2b:76:78:c8:5f:55:29:96:57:3b:85:
e6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:73:6A:72:98:2E:5E:1D:5E:53:5D:57:FE:5C:A9:82:98:1B:3C:0D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZHNqcpguXh1eU11X_lypgpgbPA0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.240.0/20
Signature Algorithm: sha256WithRSAEncryption
60:3a:32:f4:96:8f:0f:ef:22:3c:2b:9a:23:bc:d5:78:f1:25:
3d:be:5b:97:d3:d9:ba:74:4c:03:68:5f:b6:15:07:25:f7:0c:
a8:09:af:cb:23:78:9e:f7:b1:fb:06:3e:d3:04:f4:f3:93:7b:
19:76:10:8d:8a:d7:41:f6:88:3c:0f:e7:1a:7d:08:e1:55:db:
d7:e9:36:80:aa:0d:b4:1b:90:f7:87:ad:1c:41:ea:a9:46:58:
ea:8a:ea:43:7d:2e:0b:6c:7c:77:5d:12:1b:b2:5e:10:ec:49:
2a:45:71:d4:cc:4c:7b:5f:19:ca:d9:7a:b8:f6:6f:ab:41:94:
e3:19:dc:63:fb:d2:7f:a1:46:1e:27:b9:6d:11:4d:ff:00:c4:
54:d3:00:1e:c7:d0:0a:ed:98:48:15:6e:e0:93:c9:f7:6a:8c:
31:11:26:cb:a7:32:ae:71:64:bd:df:63:ca:61:04:55:45:a4:
49:90:1b:e7:4b:75:d2:a7:23:a6:fc:1c:7b:29:05:a0:65:3f:
c3:69:b0:26:5d:ca:4c:b8:f4:83:80:cb:09:55:61:a1:1d:ed:
4b:23:3e:92:23:91:ab:41:d8:37:4e:27:dd:3a:e5:89:0c:83:
d3:6d:8e:5c:c4:aa:f9:65:1f:5d:b8:6d:77:c4:5e:a0:e3:4d:
11:79:00:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org