Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dEAEYd7fUdK1dnEM9voWxw8o40M.roa
File: dEAEYd7fUdK1dnEM9voWxw8o40M.roa (raw, json)
Hash identifier: MqBeROQpEVhpHXqZMXtT5h7vSi1httfgMCtzV4847uk=
Subject key identifier: 74:40:04:61:DE:DF:51:D2:B5:76:71:0C:F6:FA:16:C7:0F:28:E3:43
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E1D
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dEAEYd7fUdK1dnEM9voWxw8o40M.roa
Signing time: Thu 29 Dec 2022 09:32:15 +0000
ROA not before: Thu 29 Dec 2022 09:32:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3613 (0xe1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=74400461DEDF51D2B576710CF6FA16C70F28E343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:da:d2:1e:08:51:71:27:62:2c:2e:a5:a6:8a:
b2:23:50:b9:0e:4d:34:8b:f9:11:3b:1a:eb:f6:ec:
d5:e3:8d:2e:90:13:0e:79:43:52:14:ae:16:e6:3d:
d1:b7:c8:5a:ac:e1:77:a9:87:62:3c:18:92:cb:cf:
b9:f6:66:44:87:da:01:f7:19:6f:97:9b:9d:c1:8c:
ce:eb:2b:42:46:c5:b7:46:4d:6d:1e:41:47:60:f8:
b5:f3:6f:b6:11:0f:b0:8e:55:5e:54:bd:5a:63:48:
d5:6b:cf:bd:4e:92:53:26:f4:84:36:d6:db:a7:6c:
5f:1b:88:86:14:58:3b:60:9a:7f:65:70:30:16:66:
11:6d:03:e3:78:aa:b5:c7:f3:96:12:e0:60:31:ee:
82:61:e7:9d:22:3f:df:51:86:a5:d0:ca:0a:42:bc:
97:38:84:11:a0:0b:a5:a3:3c:84:66:57:c3:e5:c7:
bb:08:c5:79:2e:cb:7c:4d:5b:99:db:25:12:ee:15:
69:21:09:67:77:15:cf:2a:88:79:48:c0:45:d7:ea:
37:a3:06:07:e1:83:f5:5f:e5:6d:1f:09:df:2c:7a:
e5:9e:bb:44:91:98:aa:04:19:ff:32:a8:79:99:ee:
7b:f3:67:f2:ed:70:dc:85:4b:48:d5:84:26:c9:f8:
b2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:40:04:61:DE:DF:51:D2:B5:76:71:0C:F6:FA:16:C7:0F:28:E3:43
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dEAEYd7fUdK1dnEM9voWxw8o40M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.140.0/22
Signature Algorithm: sha256WithRSAEncryption
23:c5:dd:ae:0d:c2:dd:dc:34:23:f2:13:8c:a9:65:ae:bb:de:
78:b5:f4:e1:ad:8f:05:ea:e8:37:fe:11:8c:4a:a5:d0:ec:51:
9a:53:c6:50:f4:94:f1:f2:7b:ed:30:d1:64:e5:bf:06:8a:a7:
6c:62:b5:c1:82:72:d7:64:42:d7:1d:90:47:0f:27:7b:92:b7:
7c:f3:12:9c:92:3e:79:7e:bf:cb:5e:3e:e8:dd:d2:70:73:da:
aa:72:7b:b5:7d:a5:2f:00:c3:e7:05:c1:15:49:39:fc:85:41:
f4:a2:8c:ed:ac:a8:2b:f7:d9:19:24:2d:85:68:8f:c6:c2:ed:
c1:08:a5:38:7b:96:b2:07:87:fd:7a:7a:64:d9:8d:a1:f2:ab:
bf:61:86:8f:0b:c2:46:30:a0:a8:51:b4:68:10:79:e2:9d:13:
ab:50:da:c0:e3:d8:e5:54:c3:67:c8:d1:3f:2b:69:2f:b3:ee:
25:de:a1:d6:29:f7:ce:7b:4c:39:be:44:f3:5f:26:bd:bd:8c:
1f:9f:2d:ec:4a:b4:02:6d:f2:76:8d:59:f0:8d:ee:cc:34:de:
b8:40:6f:9c:c1:96:33:ae:af:79:c1:fc:41:63:75:fe:85:1b:
6d:5d:cd:c2:5b:73:2f:de:79:a6:49:a9:d7:26:e9:bf:26:cd:
90:03:e7:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org