Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_ab2FmHjo_gfmGFEeqsKnh-ygnY.roa
File: _ab2FmHjo_gfmGFEeqsKnh-ygnY.roa (raw, json)
Hash identifier: nagzo/ZDb4BBObK5tp3IRBDGjQshh+32EI9DjE7RT+o=
Subject key identifier: FD:A6:F6:16:61:E3:A3:F8:1F:98:61:44:7A:AB:0A:9E:1F:B2:82:76
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C36
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_ab2FmHjo_gfmGFEeqsKnh-ygnY.roa
Signing time: Wed 29 Sep 2021 02:39:10 +0000
ROA not before: Wed 29 Sep 2021 02:39:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.116.96.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3126 (0xc36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FDA6F61661E3A3F81F9861447AAB0A9E1FB28276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f9:41:b7:2a:b4:5c:91:94:31:cd:05:91:50:
9e:73:43:02:e2:de:e6:a7:94:88:fe:21:0e:8a:8e:
5b:20:c3:23:81:6c:3b:10:29:c3:7c:4a:d2:8d:9c:
8b:80:7f:c8:27:f1:bc:c5:a0:58:63:51:99:19:c2:
ab:0b:9b:18:e3:bb:4f:88:b4:c4:fb:ee:7b:23:c8:
a0:29:57:3d:10:7b:ea:7a:e1:ac:10:d2:51:20:98:
2d:f6:83:6f:5a:1a:ea:55:5e:f2:56:13:d1:e0:ab:
7d:05:bf:f2:89:19:00:84:18:c6:22:e9:df:9a:4a:
6c:81:bd:bb:dc:da:0f:9d:16:ae:8e:f9:9d:d8:46:
dd:33:7e:5f:99:0b:6b:dd:71:79:72:4b:5d:04:f8:
cc:b1:b3:0f:f5:fc:62:11:74:39:b7:74:45:d4:45:
e9:81:b7:99:2e:2e:a4:fa:dd:aa:1b:28:66:d2:a7:
2b:ec:d7:7d:b5:99:a9:e2:85:47:b0:7a:dd:f8:1a:
c8:3a:9a:65:8a:69:11:81:38:1f:32:f8:a2:da:e7:
3e:fa:5c:1e:c8:ee:77:f0:9f:43:b2:ee:99:d5:08:
52:66:c0:12:78:de:f6:3d:59:12:d8:a9:9d:fe:bd:
b1:90:15:fd:59:e9:f4:57:b7:e1:28:0e:80:1d:70:
65:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A6:F6:16:61:E3:A3:F8:1F:98:61:44:7A:AB:0A:9E:1F:B2:82:76
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_ab2FmHjo_gfmGFEeqsKnh-ygnY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.96.0/21
Signature Algorithm: sha256WithRSAEncryption
8a:01:76:c1:20:a1:53:21:56:fb:6c:a2:20:1d:df:eb:56:7e:
d5:64:f6:96:86:d6:80:d4:3e:ba:7a:d7:88:ca:ac:fe:42:4c:
21:8a:2d:7d:e3:f4:b4:c8:28:ef:3a:30:30:58:31:ec:17:00:
21:41:dc:49:aa:9a:91:3c:fc:72:aa:e7:c4:84:3e:56:38:fa:
d0:e7:8b:57:39:0d:2f:97:d6:25:2b:2d:fe:35:ab:58:5a:13:
c9:91:b7:e3:fb:82:3d:3e:80:57:da:8c:b6:c7:54:8d:90:5c:
91:02:e5:79:f0:c6:30:a4:e2:69:48:e4:2b:41:95:2a:2f:4e:
57:a8:da:4d:a8:40:07:14:c5:84:2f:ea:ab:72:cd:c3:9a:80:
74:68:08:a6:f4:86:dd:51:f9:13:98:04:fc:cc:bb:85:a1:d4:
56:0e:fe:7c:de:a2:9b:c0:59:c0:07:d5:5e:89:83:e7:0f:60:
d5:28:b9:35:53:55:20:5f:98:1d:05:dd:8e:1a:ba:ef:08:b3:
3d:df:45:cd:a6:5f:73:10:cc:9f:9e:d3:0c:8a:ef:d3:ba:75:
f8:b6:2c:9b:a5:17:66:d3:fe:76:35:96:af:0e:b0:d7:5d:15:
c8:23:23:82:4a:28:94:1b:79:88:42:24:68:8e:6a:54:58:c2:
af:a8:f7:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org