Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ct6NZQ_QYQn-8OGCtMYqBy-BsHk.roa
File: ct6NZQ_QYQn-8OGCtMYqBy-BsHk.roa (raw, json)
Hash identifier: U/fEwAQXvZJCqubS+hBTMeGxZYGpTqJKXyF0AD0Nv5c=
Subject key identifier: 72:DE:8D:65:0F:D0:61:09:FE:F0:E1:82:B4:C6:2A:07:2F:81:B0:79
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B2A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ct6NZQ_QYQn-8OGCtMYqBy-BsHk.roa
Signing time: Sun 07 Feb 2021 13:16:04 +0000
ROA not before: Sun 07 Feb 2021 13:16:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 150.116.112.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2858 (0xb2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 13:16:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=72DE8D650FD06109FEF0E182B4C62A072F81B079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3c:b0:91:28:df:d0:79:70:4f:51:9d:1f:a6:
25:f9:ff:e9:4f:10:2a:ee:76:12:da:9c:76:cd:38:
8c:2c:15:c8:39:b9:33:29:e4:38:70:1a:e4:75:8c:
43:b3:c8:4e:43:c0:86:11:0a:98:69:e0:ca:1f:d4:
ff:b7:c8:0e:a8:a0:57:00:61:49:17:10:38:04:c7:
ae:f2:20:68:bd:f5:d2:99:12:00:33:f6:51:3d:b9:
3f:90:69:a1:a2:91:42:0e:07:cd:06:0e:a8:1b:6e:
b8:0e:a9:0c:17:b2:be:4e:7a:15:a1:13:18:9f:ed:
7d:10:76:66:52:8b:27:cd:fc:95:9b:60:ea:66:18:
6c:8b:5a:05:91:22:e4:07:ee:dd:a1:2d:92:59:4a:
14:fd:c6:b5:24:e2:05:1c:4d:f3:97:69:a5:d9:b8:
0b:9c:a7:ae:87:38:f9:87:98:2b:c4:5a:da:73:3c:
2a:77:b0:2a:a0:4f:75:0a:c9:b5:37:47:c3:f1:1a:
89:d7:0c:15:40:67:ba:8d:f3:99:69:a5:c0:1b:ab:
e2:47:a4:a8:b9:c6:63:52:8e:e8:dd:42:09:8b:a6:
8c:2f:7e:41:2f:77:2c:18:63:9c:c6:ad:77:43:51:
0c:69:44:95:2c:16:a0:ae:e6:90:73:b9:fc:e4:1a:
50:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:DE:8D:65:0F:D0:61:09:FE:F0:E1:82:B4:C6:2A:07:2F:81:B0:79
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ct6NZQ_QYQn-8OGCtMYqBy-BsHk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.112.0/21
Signature Algorithm: sha256WithRSAEncryption
80:d4:64:94:2c:d3:c6:05:25:8b:2e:2c:20:1e:59:8e:09:a1:
69:36:dd:00:98:e5:22:22:41:0c:88:ad:a4:08:80:dd:cb:4b:
15:a6:8d:2d:b1:a7:0a:d7:42:25:e0:a9:a0:90:05:be:78:c0:
c8:11:77:51:df:d3:1a:34:0b:de:e1:cd:7a:33:2d:31:b4:43:
27:76:bd:5b:18:2e:17:34:53:88:0b:eb:08:5c:1a:91:11:33:
c9:8c:45:70:08:93:0d:0a:18:7c:93:a9:f3:17:a4:bf:1b:be:
3a:48:8e:2d:17:a2:2b:6d:00:cb:7f:51:b0:ae:e1:f8:97:cc:
f5:71:7c:b3:98:e0:07:1c:ff:f8:ac:97:3e:a9:41:2f:d8:de:
00:f6:b2:75:6e:ff:cc:3d:00:e5:81:02:f9:e5:40:36:8b:02:
b8:03:4a:5b:d6:50:aa:74:a7:3c:5d:a7:11:61:a1:21:35:a9:
39:8d:e4:29:5e:14:e5:47:70:a5:88:46:18:96:c4:f6:ca:89:
a7:d4:10:83:b3:a1:4c:4f:7e:90:f4:e7:d6:72:7d:97:59:76:
b8:c4:ac:16:76:a2:dc:42:1a:35:ff:62:53:51:cc:97:6b:5b:
a4:d8:e2:26:c5:1d:7c:af:09:1b:7c:51:fc:a4:b2:9b:d6:87:
a3:97:64:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org