Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aOUz2txk1JUaNottaIUmmMoB9sc.roa
File: aOUz2txk1JUaNottaIUmmMoB9sc.roa (raw, json)
Hash identifier: qGujTGSfSdhUBSuxoVb7WAK5QRhGrgPtBWtYW9pa5kY=
Subject key identifier: 68:E5:33:DA:DC:64:D4:95:1A:36:8B:6D:68:85:26:98:CA:01:F6:C7
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aOUz2txk1JUaNottaIUmmMoB9sc.roa
Signing time: Thu 15 Sep 2022 02:39:17 +0000
ROA not before: Thu 15 Sep 2022 02:39:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 223.26.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=68E533DADC64D4951A368B6D68852698CA01F6C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8b:41:58:6f:2e:8c:f4:c6:1b:87:c5:ae:ea:
58:e2:3a:26:aa:2a:e1:09:b2:e7:e0:42:08:5f:eb:
72:1e:a6:0b:38:0b:46:7a:ca:24:8b:a4:e1:80:23:
0c:20:80:29:10:e6:58:bc:01:65:ed:8b:84:25:39:
99:58:7e:8d:38:ed:da:a8:6d:9e:63:72:c2:b7:bc:
3d:3e:a5:10:c2:57:ee:34:b3:37:a8:f7:6f:a6:cf:
87:15:c8:9a:44:10:4a:8e:71:5f:18:fb:b3:96:66:
88:b9:8f:ed:79:cd:7c:b6:09:b3:a3:d5:96:73:07:
5c:27:0d:cf:53:4b:00:b3:6c:80:65:84:cc:ac:16:
2d:fe:db:2c:1a:7d:60:59:5d:56:c3:90:b2:ea:f8:
b8:ec:e2:b8:96:30:c7:06:e2:73:32:ae:dd:bc:b7:
3c:25:4c:95:b3:1e:a1:64:1c:f4:e3:f0:9d:04:51:
bc:3f:9d:f9:20:e4:83:26:9d:12:d0:3c:ba:3c:ab:
7c:5d:69:41:c9:ef:f3:77:6c:46:3f:af:24:0c:c8:
42:03:e0:74:09:c0:de:92:74:3d:b7:a1:c2:0e:60:
57:23:0b:87:0f:d3:b6:28:46:5e:12:db:c0:0f:96:
13:3f:55:33:a5:ea:0c:2b:06:82:57:f6:de:3c:f5:
de:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E5:33:DA:DC:64:D4:95:1A:36:8B:6D:68:85:26:98:CA:01:F6:C7
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aOUz2txk1JUaNottaIUmmMoB9sc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.70.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:84:27:7a:a3:db:09:9f:d2:64:06:ee:0d:47:e5:55:d8:bc:
79:ec:1a:81:4a:86:77:b8:75:94:d1:ed:49:8c:8f:77:63:69:
e7:d6:f9:15:30:f3:ec:95:0f:1e:00:93:7f:a4:0f:8b:b0:37:
74:68:78:59:7c:47:c4:17:f6:d4:b9:23:cd:dd:9b:7e:e2:84:
b1:02:f0:62:2d:06:31:f4:3a:7f:aa:99:4b:51:c2:6e:62:7a:
9d:50:b8:56:75:71:54:44:d3:58:80:01:46:11:e0:74:6c:61:
aa:af:23:9d:81:5e:d8:7b:85:67:15:3f:4e:d5:e9:e4:ca:91:
8f:0b:30:02:d1:ac:b1:47:aa:62:98:5e:6a:d2:c0:ea:b0:7e:
0c:b0:af:0f:c1:45:7a:f1:e3:af:a8:f1:b9:2c:dd:9f:ae:b1:
b2:77:db:6a:d7:73:a1:b6:cb:4d:6f:c6:72:5c:23:93:e4:71:
17:1f:75:d7:eb:eb:b0:2c:27:6d:a0:17:2e:fe:bc:ea:63:4f:
68:6f:26:4d:4a:c4:c8:08:1c:dc:a1:77:8e:e4:04:7f:07:5e:
e2:be:d5:c5:93:da:d2:c6:2a:cb:eb:b3:ce:15:56:99:0c:9c:
07:5a:8f:74:eb:74:94:72:02:29:58:cf:fe:ed:05:de:17:87:
92:0c:ce:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org