Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_cuRCSZK26_VEPVoyuBqUw2IGE0.roa
File: _cuRCSZK26_VEPVoyuBqUw2IGE0.roa (raw, json)
Hash identifier: QEvJnrN8zHU3nTU8kjC/dHUEU9tHj5QOeKBTpqclppo=
Subject key identifier: FD:CB:91:09:26:4A:DB:AF:D5:10:F5:68:CA:E0:6A:53:0D:88:18:4D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0868
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_cuRCSZK26_VEPVoyuBqUw2IGE0.roa
Signing time: Tue 29 Sep 2020 10:02:25 +0000
ROA not before: Tue 29 Sep 2020 10:02:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 203.163.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2152 (0x868)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FDCB9109264ADBAFD510F568CAE06A530D88184D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:82:01:64:9a:84:98:17:77:2a:6a:8f:98:11:
be:87:79:52:c6:ab:d7:8a:58:89:1c:4f:63:b9:b9:
56:77:5f:26:95:6e:d4:25:15:58:ff:82:d7:78:47:
5c:12:3d:1b:c0:69:64:92:bd:a7:ba:c3:2b:40:7a:
27:29:3d:be:bb:83:5e:c1:b9:3a:1b:81:ad:5a:25:
64:5a:97:5a:c9:44:e4:91:e3:81:76:13:c4:31:41:
68:e2:87:78:2d:fa:d6:7c:8e:09:01:dc:cb:86:31:
b2:48:09:ff:8b:0f:1a:d1:fe:a9:f1:4f:a6:b9:d8:
5e:5f:a4:92:ee:02:5d:2b:57:d8:c2:f2:1a:dd:7e:
94:7d:34:9c:4b:3e:97:9f:34:e7:7f:33:19:d3:3a:
19:79:db:ff:32:f4:a0:af:af:0b:85:87:48:bc:6e:
7f:50:4c:bd:e9:14:8f:89:97:c4:a9:79:fe:3c:68:
13:be:31:bf:39:ec:0a:eb:f6:26:12:40:e5:4c:0d:
01:39:d5:f4:a4:31:2c:53:4d:09:3c:5f:7b:3e:57:
9c:13:48:ae:5e:f2:d1:50:28:94:02:6d:b3:47:47:
86:f5:39:c3:c1:39:fa:f1:f3:35:52:45:62:c5:cc:
d2:e0:5f:1f:23:0e:de:af:06:9a:d2:63:da:38:47:
b5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:CB:91:09:26:4A:DB:AF:D5:10:F5:68:CA:E0:6A:53:0D:88:18:4D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_cuRCSZK26_VEPVoyuBqUw2IGE0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.220.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:b9:e1:82:ce:88:64:ad:bd:f2:a6:cc:e5:76:2a:7f:34:0e:
48:b6:37:fe:af:58:81:f6:9d:af:a6:2d:ea:b6:56:5d:81:9c:
bb:18:50:99:8b:12:b4:9f:b7:3b:81:b9:77:27:e0:25:3f:ea:
98:43:b8:98:c7:44:1e:0a:93:77:4d:11:4a:92:b4:a8:3a:18:
67:01:31:88:5c:c9:c1:dc:7a:88:21:26:25:df:02:2e:23:fa:
21:03:03:99:cc:3d:8e:f2:ca:5a:15:89:1d:42:f8:19:b8:c3:
f8:cc:4a:2a:84:ba:43:77:c4:67:64:e8:23:e4:1b:46:67:28:
a1:f5:bc:7a:8a:4c:99:3b:9c:66:cb:ae:70:af:de:e2:58:21:
50:8d:b9:2e:32:ec:c9:f1:2a:cd:db:13:38:fe:28:22:0a:53:
d7:34:eb:50:7b:7c:16:fb:c7:64:4d:4b:cc:1f:79:3e:3d:97:
1d:ee:c2:c7:b2:ea:9b:01:50:f1:68:67:85:33:11:8a:da:8d:
fd:83:6d:54:6c:cd:30:c1:e3:05:19:43:d4:b7:30:f0:5c:21:
9b:de:4a:f3:c0:ec:74:46:eb:51:68:a6:8a:b3:80:aa:a9:a0:
b0:40:0b:cb:df:a0:5d:da:8c:3c:87:44:50:bd:a4:08:f1:4a:
e5:1b:21:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org