Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bOC3Yz1fbrUXHi3qCUpQWJuV-6A.roa
File: bOC3Yz1fbrUXHi3qCUpQWJuV-6A.roa (raw, json)
Hash identifier: gLVrbJQBqxyDLZ03NtwzBUMPIXkP/LocwEIBfkq+DqA=
Subject key identifier: 6C:E0:B7:63:3D:5F:6E:B5:17:1E:2D:EA:09:4A:50:58:9B:95:FB:A0
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 086E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bOC3Yz1fbrUXHi3qCUpQWJuV-6A.roa
Signing time: Tue 29 Sep 2020 10:02:27 +0000
ROA not before: Tue 29 Sep 2020 10:02:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131600
IP address blocks: 113.21.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2158 (0x86e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6CE0B7633D5F6EB5171E2DEA094A50589B95FBA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:21:89:77:da:58:ce:73:58:cf:e7:8b:df:6f:
ab:b4:2c:78:bf:03:f9:42:88:4f:23:0f:4d:47:00:
cd:a9:4f:3c:ef:85:92:40:f8:7d:cf:34:7c:00:ae:
88:0c:83:d2:79:95:5b:3d:dd:9e:d3:c7:47:60:8d:
fa:68:a1:73:d1:cc:27:2b:cc:3f:7c:6e:e7:b1:76:
79:96:3a:28:1b:bf:71:6c:55:4c:8e:aa:7a:73:76:
5e:b8:68:82:7b:de:70:66:78:cf:c8:70:bc:cb:4e:
85:cc:ca:44:87:ca:a1:4d:13:04:76:96:80:27:6c:
09:87:b7:25:db:d8:3e:7d:3e:94:85:a7:c1:e2:2f:
19:41:a6:75:ed:3b:2d:ef:b9:30:23:dc:3d:43:fa:
89:86:da:2c:ec:8a:ce:bc:be:20:d9:a3:24:4a:fe:
16:25:44:c1:a1:3a:b6:4a:e6:3b:f8:96:77:84:60:
cf:81:df:5b:60:6d:64:47:f1:1b:a3:ee:30:d6:00:
5d:eb:c3:af:3f:a8:32:f5:b3:37:09:0a:c7:77:69:
47:ae:89:3f:ac:6e:62:c0:66:53:da:74:63:37:47:
11:9a:70:ec:f7:0a:52:a8:18:73:ff:28:fe:ad:45:
77:cd:fc:80:e8:21:c0:46:ec:3f:fc:5d:46:55:da:
a4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E0:B7:63:3D:5F:6E:B5:17:1E:2D:EA:09:4A:50:58:9B:95:FB:A0
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bOC3Yz1fbrUXHi3qCUpQWJuV-6A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.94.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:fa:c8:1e:b5:d3:78:49:42:4f:1d:78:9e:f4:08:4a:36:57:
da:43:71:57:b9:b8:6f:9c:14:a5:28:7b:e8:02:7e:a8:c2:de:
48:50:c2:bf:f8:13:0b:60:b0:be:52:67:0d:5e:ba:3d:64:ad:
e6:49:60:03:53:28:c5:49:55:9b:c5:a7:ee:9a:17:45:cd:f7:
ab:44:02:d9:c4:1b:aa:bd:0f:5f:1d:bc:8d:92:f4:52:70:30:
e9:9c:a5:27:fb:6f:d3:3d:3a:46:15:43:4c:a1:f3:c2:b5:7d:
b8:9a:ca:53:b1:1e:51:98:00:f6:8e:07:7a:95:4c:3c:fb:4c:
3d:0a:7e:cf:5d:f9:ea:0b:ec:18:04:be:c6:a9:1f:e5:79:50:
c3:0d:d9:85:8a:f6:bc:7b:2f:5d:06:d3:49:04:38:ed:eb:16:
64:a4:99:bf:ba:a7:e3:3d:e5:fa:ef:d2:a5:fa:b9:d2:53:80:
21:68:ca:42:6f:4e:b2:43:01:32:24:04:ad:d0:36:d9:03:ec:
83:ef:cd:93:f4:ff:05:b3:2c:ff:76:ed:73:06:d3:85:08:e4:
09:50:d4:9c:6c:03:e0:ae:a9:5a:2d:44:dc:d0:fd:04:e3:6c:
ca:dc:fa:62:39:fa:67:43:91:61:e3:db:2d:a8:3e:a9:c8:0e:
4d:15:0e:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org