Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_TfIJszB5Fitk0pKSQmfGusTqik.roa
File: _TfIJszB5Fitk0pKSQmfGusTqik.roa (raw, json)
Hash identifier: VghZ7CjAiwr8E4pVH9JjpCMy3zFx3IPOrbGFvWRiYYk=
Subject key identifier: FD:37:C8:26:CC:C1:E4:58:AD:93:4A:4A:49:09:9F:1A:EB:13:AA:29
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0FC7
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_TfIJszB5Fitk0pKSQmfGusTqik.roa
Signing time: Fri 01 Sep 2023 08:29:32 +0000
ROA not before: Fri 01 Sep 2023 08:29:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131600
IP address blocks: 223.26.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4039 (0xfc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FD37C826CCC1E458AD934A4A49099F1AEB13AA29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:71:ec:b0:3f:96:6c:a1:6a:a8:7d:72:e7:52:
53:b6:80:fe:c9:df:c2:45:61:f0:7d:11:0d:df:d8:
b3:0b:6b:39:d6:46:25:a1:eb:c6:93:c0:0b:62:b9:
7b:8b:29:4e:6c:c1:de:47:9b:f4:8a:16:1e:22:67:
af:85:47:d9:eb:40:01:f3:4f:44:f6:16:c5:ae:db:
83:9d:48:de:db:12:84:1b:1b:6a:b1:ad:a9:dc:87:
b6:c0:6e:46:e5:d7:11:58:5c:ff:72:6f:f2:4b:78:
b0:ed:83:06:78:df:c6:69:1e:2f:bf:9b:73:06:da:
e6:ec:67:5f:de:cb:7a:b7:1c:2c:23:10:9c:b6:19:
b6:de:8e:87:a1:dd:a1:fb:fd:0e:89:c1:6b:30:e0:
6b:a7:21:20:6f:5c:7a:9d:e9:61:08:6f:fc:f4:9f:
cf:21:43:44:dd:70:f4:a1:7a:72:bc:2d:9b:c7:42:
72:3a:aa:bb:ab:81:4b:05:16:75:9d:22:85:92:71:
a8:76:b3:dc:a2:97:93:3f:43:4e:3f:b4:bb:02:c0:
ed:e7:b6:74:fc:a3:a7:de:c8:ca:81:a8:51:d5:56:
bb:30:0c:22:36:ab:72:af:68:10:63:59:a7:fe:e4:
19:58:b4:5f:75:49:42:76:02:71:e8:d5:91:53:39:
de:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:37:C8:26:CC:C1:E4:58:AD:93:4A:4A:49:09:9F:1A:EB:13:AA:29
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_TfIJszB5Fitk0pKSQmfGusTqik.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.68.0/24
Signature Algorithm: sha256WithRSAEncryption
44:20:0e:74:94:34:94:f1:92:e0:50:75:33:c2:d0:5e:7b:47:
b3:88:ce:61:be:7b:88:7a:2b:13:90:5b:ae:ff:54:7f:c8:44:
31:b8:e0:9b:de:5c:11:74:30:8f:bf:21:20:e5:08:2c:55:ce:
f9:c0:57:71:5f:d9:87:1b:28:f5:4c:fa:20:43:af:c2:c3:9b:
df:27:62:83:09:1d:e6:91:c3:d1:f5:1b:37:6f:23:16:b5:fd:
8d:0b:dd:fe:80:7a:c7:c3:6b:a3:41:1a:df:cb:8e:a8:e5:70:
55:f5:fc:b5:8a:1e:3a:f4:4c:75:fb:de:bd:83:26:ec:99:55:
81:83:80:3b:4c:7f:43:8a:68:c1:40:30:c2:8c:04:ba:7a:a6:
10:f3:62:45:bb:ad:ef:e3:56:8f:42:5f:ca:37:e8:a3:e4:75:
5a:d9:55:2b:de:97:08:92:0e:71:d9:c6:03:f2:14:4b:9c:48:
3c:b8:b4:7b:59:e5:9f:82:47:e6:f0:15:ab:0f:67:ef:92:63:
77:0b:3f:5f:69:4f:0b:c0:eb:8c:8f:f2:91:7c:a3:10:3f:4c:
96:45:fb:5e:5d:a8:43:db:46:d7:bd:75:67:95:f8:af:0c:d1:
b2:3a:fb:6a:95:1b:9d:4c:48:86:5e:74:05:4a:a0:2d:fb:a8:
55:0b:ab:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:57 2025 by rpki-client