Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/afBg-ydqd8STDRL8oFqrEf2M6JY.roa
File: afBg-ydqd8STDRL8oFqrEf2M6JY.roa (raw, json)
Hash identifier: OoPm8UZUN7+5+U1APLBIWKg3EYb9snkTk2fT5KrBscU=
Subject key identifier: 69:F0:60:FB:27:6A:77:C4:93:0D:12:FC:A0:5A:AB:11:FD:8C:E8:96
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B00
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/afBg-ydqd8STDRL8oFqrEf2M6JY.roa
Signing time: Sun 07 Feb 2021 12:59:34 +0000
ROA not before: Sun 07 Feb 2021 12:59:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 223.26.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2816 (0xb00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:59:34 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=69F060FB276A77C4930D12FCA05AAB11FD8CE896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:25:33:f2:68:2c:72:14:4d:e5:f4:44:ac:ed:
54:81:77:aa:89:b4:79:33:31:20:52:84:4a:d6:fe:
01:a5:73:d0:d3:40:1d:08:1c:61:d0:e0:76:18:fe:
02:69:00:82:34:7f:d9:16:d8:cc:dd:25:f9:f0:e6:
71:68:b4:8b:3b:8d:17:45:b4:73:74:e4:a0:b8:3e:
b3:08:90:98:75:9f:89:a6:ca:44:c3:8a:90:24:20:
d6:7c:1a:e1:40:f5:56:fe:5a:d5:7b:5a:51:f9:dc:
43:07:dd:eb:ac:04:ec:8c:25:43:81:02:74:f4:a9:
f9:f0:13:ee:eb:01:31:18:cd:65:ed:6b:d8:89:e0:
4a:60:e9:38:9a:f3:d8:2d:5f:fc:ee:e3:9d:32:ce:
db:f0:ba:77:dd:75:1c:29:a2:6b:04:a5:6e:da:9a:
0d:cd:67:30:bc:d8:23:ad:13:c3:38:90:a2:d9:a9:
ab:5a:49:a4:1c:9d:36:b7:99:8b:b2:88:20:23:43:
0d:6c:5d:48:0f:a0:5c:25:04:70:65:b8:80:24:37:
67:a1:72:0d:75:fc:e8:af:37:b2:6a:76:58:8a:4d:
82:f2:51:64:70:4e:5f:db:e5:af:e0:de:43:af:bf:
e0:ec:bc:d1:d8:c1:08:c2:87:c6:ad:6c:11:a1:63:
a0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F0:60:FB:27:6A:77:C4:93:0D:12:FC:A0:5A:AB:11:FD:8C:E8:96
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/afBg-ydqd8STDRL8oFqrEf2M6JY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.88.0/22
Signature Algorithm: sha256WithRSAEncryption
31:58:c5:91:94:83:d9:7d:1c:41:e4:27:70:c5:4f:4f:f0:17:
d4:d5:96:61:b2:41:6f:17:c8:4e:83:38:ad:1c:0c:a2:6f:ad:
09:27:df:d4:c4:c1:20:04:c3:39:af:fe:23:4a:c7:91:ef:c3:
1a:8b:d8:57:c1:d7:2b:63:61:29:bb:6a:52:b1:7a:fd:94:85:
9f:b8:01:0b:fb:b0:0a:2a:be:3f:8b:d7:df:7f:f5:58:dc:0d:
4f:36:e0:16:6b:fc:16:46:63:36:c3:11:bc:36:39:96:ea:34:
4c:ca:6a:4c:35:1a:18:9f:01:98:2b:10:33:1d:b8:f1:30:d2:
b6:df:ca:72:8e:b6:f2:92:16:39:0f:5b:9e:2a:03:b0:91:9a:
07:73:fb:60:c5:a5:15:28:c4:bb:f2:5f:fb:19:a8:34:71:a8:
e7:33:fa:18:c1:f6:7d:91:49:1f:c5:f2:5f:7e:34:fa:c1:3d:
2e:20:fd:18:a4:b4:9a:14:a1:43:2b:9c:92:c2:bc:e3:bd:f2:
df:3e:13:b9:63:14:9e:06:d7:e8:a0:40:46:17:ad:47:81:92:
3a:b2:97:0b:5e:ad:ef:e1:fa:ed:20:97:0a:83:9c:18:22:7b:
6a:d9:9f:36:b0:80:79:9a:f5:81:b0:fe:8e:1e:a9:b0:65:a9:
c1:4f:20:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:10:16 2025 by rpki-client