Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_GhUTJI4J0TgUlfhh2e-2sm7kLU.roa
File: _GhUTJI4J0TgUlfhh2e-2sm7kLU.roa (raw, json)
Hash identifier: 1hy6ETvo47+sLcUacSAGhsds4O3qcVUD8jlA8yJofMk=
Subject key identifier: FC:68:54:4C:92:38:27:44:E0:52:57:E1:87:67:BE:DA:C9:BB:90:B5
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_GhUTJI4J0TgUlfhh2e-2sm7kLU.roa
Signing time: Thu 15 Sep 2022 02:39:12 +0000
ROA not before: Thu 15 Sep 2022 02:39:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 137263
IP address blocks: 150.116.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FC68544C92382744E05257E18767BEDAC9BB90B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:3d:49:7f:c6:20:8a:b4:db:a3:f8:24:d4:6a:
e1:1c:5d:a0:92:09:20:9f:9e:32:03:aa:84:e2:33:
09:06:ca:9c:92:cc:de:b6:8f:0f:ca:55:99:69:75:
5a:1f:07:af:3d:18:dc:12:b6:72:d3:90:0f:17:a1:
8d:88:ae:62:8c:a1:af:d7:36:59:8c:cd:2a:c8:03:
43:a6:79:78:47:52:c5:4d:b6:20:d4:81:98:bc:bf:
b0:ae:a1:9a:bf:35:07:d2:3e:a7:6a:02:49:8b:2e:
14:3e:c0:d8:b3:be:5b:ba:e4:f7:ca:e4:75:29:b7:
a3:61:01:f7:a5:bd:f0:8d:23:38:3b:34:39:8b:d7:
75:6d:e7:03:5d:f9:01:5b:98:67:25:29:91:ca:56:
1b:ae:3b:ae:4e:4a:5d:ee:01:d2:e2:06:22:ba:67:
27:6d:4d:9c:b5:49:23:f8:46:ec:3c:9c:9f:11:fc:
d8:5f:7f:9c:89:ad:8f:ca:ac:5b:06:c9:3e:ed:3c:
6a:f0:5f:dd:d0:33:54:a4:9c:da:d8:59:3d:f0:64:
70:9a:2a:bf:ff:ab:22:8d:5d:a8:f9:56:b9:29:e5:
ca:f2:9d:c0:a3:70:d7:df:84:c5:28:51:69:9e:17:
bd:18:2c:56:79:f8:7c:9d:32:ab:19:50:e7:be:5a:
a9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:68:54:4C:92:38:27:44:E0:52:57:E1:87:67:BE:DA:C9:BB:90:B5
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_GhUTJI4J0TgUlfhh2e-2sm7kLU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.81.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:29:49:d9:bb:17:15:a7:83:ac:7d:46:50:95:dd:b6:d4:03:
73:00:83:4a:fe:0a:ac:09:96:db:20:f7:fc:31:7b:a5:8f:af:
36:6c:fb:da:73:db:47:dd:60:8f:f2:19:aa:69:e3:5b:1c:24:
ea:c6:c9:06:20:5c:0b:30:ff:14:91:50:66:22:e5:d9:b8:53:
15:54:74:47:7a:c9:27:9c:27:7e:71:76:43:5f:8f:35:7d:12:
60:18:bb:9a:a0:bd:c6:1a:5f:47:b8:5c:c2:c5:5a:94:ff:ae:
6d:8e:04:c1:da:86:15:16:ca:b6:9e:be:5e:ba:2b:c6:63:1d:
7b:21:78:7a:1a:85:04:b0:cc:e2:dd:fb:06:dd:85:4e:a4:b5:
d9:43:c7:9f:f2:d1:07:b7:29:22:00:b4:f0:c1:59:cf:4b:9e:
3f:67:e9:58:8e:4f:aa:da:58:f4:d0:80:69:0d:16:c4:cc:06:
07:c5:4f:98:9c:43:44:44:d4:60:d6:9f:3a:c9:d7:5d:54:6f:
67:bb:fa:6d:d4:c7:c2:6d:60:df:8d:b6:f8:8e:b2:e6:bf:ed:
d3:98:59:da:11:4d:83:98:f0:b6:37:a8:e1:1b:6d:04:97:d5:
27:73:31:b4:36:29:31:36:8b:c9:c9:32:d0:c5:ca:c7:3e:1b:
40:70:00:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org