Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZkISbpkDG8BFRTqMn2cAra5D7UI.roa
File: ZkISbpkDG8BFRTqMn2cAra5D7UI.roa (raw, json)
Hash identifier: ATYEj4rh7HtqbSnRvgf2qHuxSEztpynHW40eoAefLZU=
Subject key identifier: 66:42:12:6E:99:03:1B:C0:45:45:3A:8C:9F:67:00:AD:AE:43:ED:42
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BDE
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZkISbpkDG8BFRTqMn2cAra5D7UI.roa
Signing time: Wed 29 Sep 2021 02:38:47 +0000
ROA not before: Wed 29 Sep 2021 02:38:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 63199
IP address blocks: 150.116.92.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3038 (0xbde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6642126E99031BC045453A8C9F6700ADAE43ED42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:94:69:11:41:de:32:08:5d:c6:2b:74:06:27:
d5:9b:15:5c:a9:8e:37:8f:01:1b:da:31:66:97:1b:
a5:a4:4c:89:b9:be:5f:df:28:8e:cf:c9:1c:6c:bf:
11:94:dc:1b:0d:52:23:c7:09:e2:57:64:12:d3:16:
ef:af:c5:4e:f4:0c:4c:e8:96:2f:6a:84:0c:ed:c7:
8d:0a:08:d5:af:d6:be:9f:4c:52:cb:0e:d4:bf:af:
7a:36:de:c3:18:9c:a2:35:7b:78:f1:ad:60:e3:38:
ff:2e:e0:f2:e7:c5:ff:a1:21:fe:83:38:27:03:ef:
a7:a8:85:0c:3c:9b:73:c4:ed:21:f3:55:c6:d1:f7:
cf:1b:0c:84:4f:35:56:fd:83:5a:9d:e8:43:43:bd:
f7:ed:95:53:38:6d:fd:bf:a4:23:65:f4:f7:b1:59:
c4:d4:b9:ab:12:ec:1f:76:03:11:64:2b:b2:2e:2a:
15:ee:4a:bf:4f:95:d0:4d:42:72:ed:a8:b8:e1:dc:
a1:50:e3:eb:62:70:6a:a4:f6:96:0c:ac:a7:c6:89:
aa:d8:25:82:8c:7f:84:22:7c:a3:0a:ae:8d:74:84:
03:fd:f8:7c:66:f6:c8:55:4e:b0:38:73:62:87:a5:
72:84:4e:92:e9:47:b7:97:2b:ee:8b:e3:08:06:89:
db:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:42:12:6E:99:03:1B:C0:45:45:3A:8C:9F:67:00:AD:AE:43:ED:42
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZkISbpkDG8BFRTqMn2cAra5D7UI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.92.0/22
Signature Algorithm: sha256WithRSAEncryption
27:0b:ac:83:62:6f:e3:2e:f1:2e:08:f9:e0:28:82:9d:dd:4d:
ee:a4:3b:c3:ed:44:38:b3:fb:8d:9c:76:dc:9e:35:51:ae:10:
df:58:ab:e1:50:63:d4:64:69:cc:80:06:d6:94:03:0d:17:c0:
e5:0f:0a:ab:d6:08:86:aa:df:c4:6c:b7:4b:5f:0a:ea:38:8e:
e7:da:8a:e9:b6:fa:ee:04:14:d4:05:04:1f:88:61:8a:bb:e5:
23:f4:85:49:af:11:21:49:ee:51:35:a2:f3:4f:9a:bd:a9:19:
c7:e9:b4:56:c8:65:ec:c4:36:ce:ff:88:a4:e1:bb:9b:b0:3f:
33:ee:58:b4:09:c3:fd:b6:6c:72:8e:64:97:89:ae:e2:b8:ff:
f0:80:6e:ad:a3:fd:de:d2:ac:6b:d2:f2:15:4f:f7:00:ca:92:
42:99:fa:fe:be:f6:97:4d:af:bd:0c:06:91:f1:64:4d:ca:31:
19:4d:91:19:8b:b8:ab:68:3b:09:6b:3d:8c:66:a2:52:7f:65:
38:a1:28:11:90:66:8e:f9:18:e9:d7:40:78:97:d7:b4:b3:6a:
5c:24:ae:31:45:d0:9c:3f:ec:0e:48:d2:b4:e3:b1:7e:9c:bb:
9a:2f:ca:80:ec:25:25:36:a0:b2:a6:0c:d6:d0:aa:58:b3:78:
b2:4d:03:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org