Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aOftkDxGVycYe1i6qIfjJKzhvZI.roa
File: aOftkDxGVycYe1i6qIfjJKzhvZI.roa (raw, json)
Hash identifier: N/Bju2npAzJ/vdm4xDhpFd7993l6c0ChQXR+uCyKh8E=
Subject key identifier: 68:E7:ED:90:3C:46:57:27:18:7B:58:BA:A8:87:E3:24:AC:E1:BD:92
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 09D7
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aOftkDxGVycYe1i6qIfjJKzhvZI.roa
Signing time: Thu 07 Jan 2021 01:39:39 +0000
ROA not before: Thu 07 Jan 2021 01:39:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 150.116.8.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2519 (0x9d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Jan 7 01:39:39 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=68E7ED903C465727187B58BAA887E324ACE1BD92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:51:a5:f6:85:74:09:2b:b4:89:53:ec:f0:ce:
71:da:a0:8a:58:2b:b9:08:2b:78:a4:da:0e:56:2d:
74:50:b3:1e:c4:df:76:db:5b:2c:31:b0:99:07:b8:
ff:c7:0a:2f:a5:0d:67:64:1f:b2:67:00:b3:50:d9:
50:9c:a3:16:53:69:99:9b:bd:b3:c0:f3:8b:fe:31:
11:6e:61:0f:4c:ff:72:64:7a:d8:c1:ce:b1:1e:65:
a8:45:81:23:30:3e:df:fd:46:c8:89:ad:08:92:1a:
89:7f:77:fa:01:e9:5c:44:84:d4:41:44:77:40:3d:
1f:d7:e5:d8:07:60:2e:1b:3e:2e:bf:12:e5:46:dc:
09:ef:55:6a:1d:7d:de:3e:e1:01:75:b5:93:5b:63:
8c:d9:22:34:aa:a6:17:9d:0a:f6:cd:19:10:53:03:
48:a7:40:7f:ee:7c:c9:e7:f6:67:f2:f7:87:b5:42:
f0:6f:09:17:e4:28:b0:02:d7:28:bc:57:cc:47:0f:
54:48:dd:cb:4c:5f:b3:a3:b3:f9:90:aa:ef:c4:3a:
0e:ef:4e:70:5e:71:cb:e7:d7:72:f9:e4:99:90:f3:
0f:2e:d8:ab:e7:35:49:2b:07:33:a9:2d:9a:01:c3:
a1:75:bc:f1:ee:1c:7f:06:31:14:f0:f3:5e:85:60:
7f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E7:ED:90:3C:46:57:27:18:7B:58:BA:A8:87:E3:24:AC:E1:BD:92
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aOftkDxGVycYe1i6qIfjJKzhvZI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.8.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:8c:e7:7a:be:9c:3f:ce:06:7e:fa:69:92:ac:29:9e:fc:ae:
6f:5a:f4:ad:89:d7:b6:2f:67:d7:ed:0c:47:1b:e2:e9:c4:14:
5f:56:44:00:c8:d5:94:67:24:28:4b:4d:5b:20:5b:79:e1:4a:
be:3b:bf:da:89:84:8e:d7:60:3f:0a:c5:64:be:18:f6:5e:3d:
e2:06:b5:1d:f7:33:00:2d:2d:c6:e0:e2:dd:6a:9a:8b:e8:8c:
8a:80:bb:e1:ab:c3:5c:52:4a:cd:0d:9e:95:11:53:88:e2:fb:
0e:08:c0:c3:a1:f8:c4:15:da:d4:de:92:c1:40:9b:47:9e:c7:
16:2f:29:bf:a3:9a:4c:99:5f:ff:15:86:20:1e:49:ba:4d:5f:
1d:3d:c5:bb:f1:6d:11:36:f3:6e:9c:46:62:e8:03:3e:54:26:
6b:19:23:e4:fd:05:57:5c:71:88:24:3c:c8:fd:d5:a1:21:ff:
38:02:f0:24:cd:6e:ad:87:f6:89:57:21:a5:20:7f:7e:6e:b5:
6c:68:67:3c:a8:44:b9:b4:da:43:31:ad:04:7d:55:b7:c6:15:
26:b6:48:7c:28:10:55:8f:a5:1a:7a:fd:1b:72:27:ed:60:ee:
c0:fb:3b:50:75:21:08:87:d2:71:01:a8:03:b3:bb:83:ff:f7:
46:4e:ea:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org