Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/d9rph9qkj9p3oMyxRVc9jUowCrE.roa
File: d9rph9qkj9p3oMyxRVc9jUowCrE.roa (raw, json)
Hash identifier: HpQoRQnxV0vXZz9U5PlF9qbxPXyHKlapssH8g0CHQeo=
Subject key identifier: 77:DA:E9:87:DA:A4:8F:DA:77:A0:CC:B1:45:57:3D:8D:4A:30:0A:B1
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DFF
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/d9rph9qkj9p3oMyxRVc9jUowCrE.roa
Signing time: Thu 29 Dec 2022 09:32:07 +0000
ROA not before: Thu 29 Dec 2022 09:32:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 203.163.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3583 (0xdff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=77DAE987DAA48FDA77A0CCB145573D8D4A300AB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:72:c7:b4:e0:92:14:54:24:ea:d5:2e:1a:59:
b2:3d:a3:1b:b9:64:95:36:c9:ac:f5:b6:11:75:73:
98:68:d3:da:d5:de:73:cf:f4:af:0f:ac:28:80:b8:
ab:df:20:bb:52:c0:68:af:10:99:f3:d6:9c:79:82:
17:34:1e:3b:1b:a0:05:27:01:4d:1a:f0:ec:45:76:
cc:eb:7b:83:92:99:fa:43:39:0f:57:01:49:77:b3:
53:70:9c:4e:d5:33:83:85:f2:e6:5a:68:52:8f:77:
cb:7f:3f:10:2c:7a:4f:42:86:6b:62:ab:c2:96:bd:
39:32:10:83:05:8f:8b:3f:e6:b3:d3:86:41:89:3f:
03:dc:f2:74:a8:e6:e8:73:46:a7:d4:f5:f9:f5:c7:
59:8d:5e:97:29:5d:33:b9:0c:be:80:5a:3d:f1:88:
45:9e:98:a6:eb:06:43:d3:63:6a:5f:2f:e5:c5:57:
f0:78:93:9e:00:f0:d8:2f:b6:46:4b:50:11:3b:8d:
6a:6c:b5:ea:33:71:71:aa:71:85:c5:d4:79:66:da:
b1:32:ae:a4:83:d8:e9:da:3d:89:cb:a1:9e:13:00:
5c:70:54:06:e9:7e:90:f7:77:81:e3:cf:7c:dc:e0:
bd:a4:40:80:c6:d2:f5:90:06:6a:c4:59:98:53:07:
8e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DA:E9:87:DA:A4:8F:DA:77:A0:CC:B1:45:57:3D:8D:4A:30:0A:B1
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/d9rph9qkj9p3oMyxRVc9jUowCrE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.193.0/24
Signature Algorithm: sha256WithRSAEncryption
35:8e:76:82:c1:00:c8:f0:1e:12:65:e0:64:d3:6a:d0:a5:6e:
b4:2f:4b:3a:2a:0e:28:59:5d:e6:7b:36:49:b4:8c:9a:a6:e3:
0e:b7:03:49:34:4e:11:34:80:cb:31:2f:8b:e4:b9:5b:b3:71:
85:86:b0:db:31:3a:23:42:fb:2e:3b:8c:0f:15:2b:63:1b:4a:
45:3c:02:ab:9a:ba:a4:45:e6:5c:62:d1:a7:00:d2:78:b5:38:
f9:45:1f:6a:00:91:72:c8:d9:0f:a2:69:a0:c8:0e:40:4c:66:
d5:9d:80:78:3e:9f:79:bf:8b:06:27:c0:13:0c:ac:bc:23:0f:
b4:19:ff:e2:3b:13:0c:b6:68:80:87:41:00:ae:17:44:d0:50:
02:4f:14:61:06:87:18:d7:5a:5d:dc:ce:da:23:76:98:47:0c:
d4:9a:75:b0:c6:13:73:1b:d9:41:f0:fd:9a:b2:b0:56:1f:fe:
a5:28:c6:3a:9b:c8:bf:aa:29:73:9e:95:eb:2b:75:6e:2c:6a:
bf:b5:c0:1a:b5:cf:43:ba:e6:44:8e:49:84:1d:7c:81:48:94:
1f:3c:28:d3:a7:da:11:cb:f4:88:06:8c:69:30:af:ca:11:52:
79:1a:f1:07:af:3c:bb:69:4a:fd:ab:30:e9:c6:2f:0d:24:6b:
19:f6:04:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org