Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZLpcgdRVY58KVxpDOX6vNB1QP08.roa
File: ZLpcgdRVY58KVxpDOX6vNB1QP08.roa (raw, json)
Hash identifier: IrHMkdgo5pSJokyZxtzDsB+EKicnlFalglGVwrcbdd0=
Subject key identifier: 64:BA:5C:81:D4:55:63:9F:0A:57:1A:43:39:7E:AF:34:1D:50:3F:4F
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 086F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZLpcgdRVY58KVxpDOX6vNB1QP08.roa
Signing time: Tue 29 Sep 2020 10:02:28 +0000
ROA not before: Tue 29 Sep 2020 10:02:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2159 (0x86f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=64BA5C81D455639F0A571A43397EAF341D503F4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:85:07:34:de:1c:19:5b:1f:e9:9f:ec:89:a6:
45:71:57:b7:10:84:39:b5:b1:22:c0:2b:ec:07:a8:
56:38:a0:4c:23:b4:4c:30:f8:d2:c0:f8:b8:47:e7:
66:cf:b1:6b:1c:2b:ce:f1:10:a2:31:f1:1e:fe:7e:
36:0f:13:db:fe:af:0c:d0:d1:b8:4b:63:c7:fc:97:
97:87:17:e7:7e:e9:bd:10:74:e8:bc:7b:a8:0e:03:
62:3c:43:af:04:f4:93:82:87:e8:b5:a5:ae:b1:b1:
35:5a:0f:ac:fe:dc:46:b8:25:61:1e:4a:c1:8f:d5:
97:76:18:a6:b6:ec:6b:a2:6a:5c:e5:4e:4e:e0:45:
9d:fd:a5:c2:c6:f3:24:e9:cc:16:36:7c:5f:2d:a9:
2d:ed:c4:2e:1c:0b:78:01:02:cb:f6:df:bf:c2:90:
73:c2:f5:c9:18:74:6d:cd:9c:5e:65:8b:7e:66:4a:
76:7d:af:0e:cc:6a:c2:d6:c0:6c:0f:d3:01:d2:6f:
3a:9a:2a:21:9f:f1:97:22:9a:a4:ca:66:42:9a:29:
06:b7:57:05:f0:44:e8:05:bb:c8:66:dd:8b:3b:0e:
f8:3e:06:1b:b2:bc:b3:d4:73:61:10:d7:65:aa:19:
e5:d4:32:c5:3e:1b:03:6e:23:1d:9b:75:06:c6:60:
66:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:BA:5C:81:D4:55:63:9F:0A:57:1A:43:39:7E:AF:34:1D:50:3F:4F
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZLpcgdRVY58KVxpDOX6vNB1QP08.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.160.0/21
Signature Algorithm: sha256WithRSAEncryption
06:84:2d:2f:97:54:de:34:19:41:16:8a:28:73:5e:0a:71:d6:
40:84:96:1a:1c:1e:a5:c1:73:c5:58:11:85:af:11:07:4a:e2:
62:12:85:5e:74:dc:da:3f:1f:4d:e4:63:bc:86:1e:f3:d7:7c:
6b:f5:cb:0c:8d:5b:b8:56:8f:d2:d8:67:e2:e2:7b:28:38:a3:
cf:b8:3b:5b:8d:8e:d1:0b:11:23:6b:b6:ca:b1:e3:4f:e5:a0:
79:68:02:28:a7:30:bf:34:4a:70:f0:06:e0:37:09:d0:c9:1e:
52:0b:f5:0b:ba:b0:81:67:93:4c:b8:7b:da:2a:1e:f8:e4:c3:
98:89:18:75:cb:58:6c:74:f3:98:0c:35:d7:08:70:3e:3f:77:
2d:1a:14:c0:99:4e:7d:47:4e:a1:a4:c9:8d:97:4c:52:73:2b:
76:78:7a:b1:0c:e7:a7:ba:72:f5:a5:9e:1f:3c:50:ea:52:f5:
a0:76:f3:af:96:b0:69:63:5f:95:a7:d1:43:d2:a3:1f:41:e0:
ee:59:44:27:06:79:cf:20:bd:f5:3a:d5:ba:52:46:71:9c:38:
28:93:ae:62:8e:52:a2:78:db:e8:27:8e:3f:c9:2b:be:b0:16:
c5:6c:90:a3:d3:5b:4b:50:9a:ab:84:db:3f:df:32:97:12:3e:
0a:97:59:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org