Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bYnEnPqGJlN6qBg2UVqGMSIvhFo.roa
File: bYnEnPqGJlN6qBg2UVqGMSIvhFo.roa (raw, json)
Hash identifier: ddv6DRe8EFQ8MQr8JHB0aK0+m5kgw8piVHKlV0aStwg=
Subject key identifier: 6D:89:C4:9C:FA:86:26:53:7A:A8:18:36:51:5A:86:31:22:2F:84:5A
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bYnEnPqGJlN6qBg2UVqGMSIvhFo.roa
Signing time: Thu 15 Sep 2022 02:39:18 +0000
ROA not before: Thu 15 Sep 2022 02:39:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 203.163.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6D89C49CFA8626537AA81836515A8631222F845A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a6:66:d3:c6:dd:98:f7:62:a3:fa:1a:fa:19:
b5:dd:2d:69:10:de:f8:c3:0c:51:aa:d3:79:a1:c3:
01:8a:8f:8b:ff:cd:a4:a1:d8:ef:c9:8d:44:78:00:
4d:3d:e9:21:35:6e:67:6c:bc:0a:1e:78:55:c6:7a:
c8:b2:20:d6:ff:fe:ec:3c:6b:93:d7:c2:07:08:d8:
3c:25:b7:1c:75:d0:49:99:02:93:2c:98:20:91:f6:
85:b2:aa:2b:83:2f:62:0a:11:3c:51:f0:31:db:18:
83:b1:c8:0f:00:23:f1:e8:bb:df:38:c4:61:51:e0:
9a:db:7d:75:ba:1b:ab:8a:96:7e:5a:9a:db:4e:ea:
0d:fa:65:d5:1a:f5:30:ed:64:b0:58:96:c7:09:4c:
7e:04:3b:65:68:c9:8a:f7:d1:9b:b3:3a:e3:a5:fa:
64:dd:08:5f:f3:a5:ee:76:91:94:f7:b8:40:f9:f6:
3d:84:8a:65:6a:98:bf:b8:bf:a6:05:e3:10:14:40:
da:c9:71:0b:3d:ed:63:fe:bc:cd:d1:02:f9:35:82:
cf:0f:96:35:e5:0a:62:59:fb:d0:0c:a3:4b:f4:8c:
80:70:4a:fb:1f:e5:a6:b8:51:4b:f6:ff:d0:c8:92:
96:b4:5d:68:68:57:95:1b:87:8c:53:03:da:0b:3f:
41:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:89:C4:9C:FA:86:26:53:7A:A8:18:36:51:5A:86:31:22:2F:84:5A
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bYnEnPqGJlN6qBg2UVqGMSIvhFo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.193.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:28:a1:91:11:d8:f5:82:6b:5f:25:a5:a2:f0:cf:7c:07:90:
de:d8:ff:59:d9:dc:b4:2e:93:1a:df:b6:2d:40:a5:4b:2c:88:
b0:53:32:34:51:bd:8b:d8:15:bc:39:e7:c1:f0:40:15:11:16:
af:8b:a6:72:c8:90:ec:51:93:6a:95:30:8f:7c:41:77:04:88:
f4:bc:f8:0d:10:90:74:ae:03:e5:27:c8:e8:d4:b4:e8:34:f3:
4b:b2:48:04:1a:33:ab:78:9b:22:6b:cc:cd:b7:a0:e1:e7:75:
dc:20:f2:46:ef:e2:f0:6c:d8:21:96:02:2f:40:4a:e7:de:ba:
97:70:78:58:2c:6d:02:2e:4f:88:c5:2e:5e:36:a8:0b:26:96:
41:2d:57:29:b0:b4:cc:26:0b:76:cf:a5:31:cc:93:48:64:5d:
a4:3b:3e:61:a3:2d:af:d4:e0:9a:41:15:3d:51:2e:43:a5:9c:
3c:c8:2d:b4:32:e3:61:b2:dc:f0:1e:5b:7a:e6:58:13:f6:86:
10:63:a8:c1:4c:a1:eb:63:cc:b1:92:8f:97:7f:92:d0:a8:4b:
3c:73:41:b6:6d:03:4b:8a:36:f2:e4:2a:fa:7d:0c:5b:e3:41:
47:24:b6:fe:00:5a:95:7f:f6:e7:f6:40:e2:e4:c9:36:68:54:
c7:18:69:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org