Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aAom5fdUcRs0svkkwqK5DooavDw.roa
File: aAom5fdUcRs0svkkwqK5DooavDw.roa (raw, json)
Hash identifier: c91JXuU3sVJlBwsHzO9f1GtgV7Z6MFFODEaOYzz3LnE=
Subject key identifier: 68:0A:26:E5:F7:54:71:1B:34:B2:F9:24:C2:A2:B9:0E:8A:1A:BC:3C
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C3C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aAom5fdUcRs0svkkwqK5DooavDw.roa
Signing time: Wed 29 Sep 2021 02:39:11 +0000
ROA not before: Wed 29 Sep 2021 02:39:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 21859
IP address blocks: 223.26.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3132 (0xc3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=680A26E5F754711B34B2F924C2A2B90E8A1ABC3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8e:66:21:73:7f:87:55:23:1d:f9:39:46:09:
50:02:e1:d0:52:af:00:4a:6a:f1:87:c9:6b:37:c0:
98:78:b6:63:72:76:56:10:fa:49:0e:89:1c:71:da:
ed:a7:25:89:05:51:43:36:58:4c:b6:fa:8a:ad:a6:
d2:31:15:25:5e:15:ab:13:97:98:cb:6c:43:b4:97:
90:2a:0c:c2:c7:77:1b:54:73:b7:c6:97:dc:cd:eb:
b6:46:b2:7b:21:86:5a:71:26:de:62:ee:75:8d:a4:
0e:92:01:f8:fc:4a:38:ad:38:68:a1:e7:41:2c:7f:
80:cd:a9:1d:aa:c8:90:55:78:21:e2:95:84:9d:54:
30:1c:9a:0c:12:e1:1f:e6:a0:c6:c4:ac:2e:3b:21:
33:ce:3c:3e:28:a6:c8:46:22:f4:bb:58:d0:d1:02:
db:83:8d:95:9a:48:7f:e3:f5:02:37:91:65:fd:7f:
05:f0:e2:c0:90:25:61:eb:9b:29:f6:c9:22:45:74:
fc:ba:b2:8a:f5:d2:48:5c:21:84:80:d8:da:d0:94:
09:cd:7e:a3:3c:2f:e4:14:e5:ff:72:6a:07:06:03:
83:00:49:ed:0e:a3:8a:06:61:f0:b6:b7:8f:20:93:
6a:97:0c:5d:71:71:d5:c9:99:42:0b:13:df:30:11:
b6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:0A:26:E5:F7:54:71:1B:34:B2:F9:24:C2:A2:B9:0E:8A:1A:BC:3C
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aAom5fdUcRs0svkkwqK5DooavDw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.72.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:49:51:2f:cc:14:cb:02:fe:39:38:65:94:fc:21:7e:10:ca:
bb:c6:68:dc:13:79:13:48:d9:ad:1d:15:8f:2a:fc:ba:ef:76:
23:33:83:e5:70:4b:77:10:a2:49:6d:8f:44:e7:e6:8e:5c:26:
c3:f4:c3:cc:cd:ad:a2:d9:24:fa:39:32:0a:45:47:d6:16:50:
b2:5e:ff:9e:54:3c:f8:81:e9:fa:b2:dc:00:12:70:cb:43:61:
8b:3a:f7:9c:c2:f4:74:1a:4d:74:ad:21:48:f2:8c:62:6b:10:
c0:d9:eb:de:0c:12:be:80:b2:b3:fb:e6:ad:06:4b:f5:e4:7f:
8a:2f:6e:22:47:15:7c:01:9f:67:4a:b5:93:35:57:76:6c:09:
8d:97:da:95:49:c4:57:10:fa:a8:d7:e0:4c:de:af:8a:76:0f:
ee:9e:f4:51:7f:68:3b:98:23:c9:f1:52:0b:8a:79:77:98:90:
de:aa:cc:68:6a:2d:cf:aa:e1:5a:d3:22:70:f8:4c:62:0a:d0:
a9:ba:b1:d8:fc:b7:4f:5a:cd:f5:a9:a7:df:3d:0d:96:31:36:
e1:88:c9:b6:0b:3a:2e:d5:06:85:a6:e0:db:d6:b2:de:f3:65:
0c:d9:c9:bc:e8:fa:12:f9:dc:4f:88:14:4f:1b:f9:13:43:95:
57:42:d7:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org