Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dsHDBNMehE-BB5hfhnXa2ErH4_k.roa
File: dsHDBNMehE-BB5hfhnXa2ErH4_k.roa (raw, json)
Hash identifier: 8l1mZQ3dN/w44veVE7n/I1C5aYZc53cGJ6WJWkHlhdg=
Subject key identifier: 76:C1:C3:04:D3:1E:84:4F:81:07:98:5F:86:75:DA:D8:4A:C7:E3:F9
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B1A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dsHDBNMehE-BB5hfhnXa2ErH4_k.roa
Signing time: Sun 07 Feb 2021 13:04:52 +0000
ROA not before: Sun 07 Feb 2021 13:04:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131636
IP address blocks: 150.116.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2842 (0xb1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 13:04:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=76C1C304D31E844F8107985F8675DAD84AC7E3F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:04:af:17:25:75:90:b2:35:71:f0:f1:4b:a0:
92:93:02:0f:3b:06:fc:2d:56:dc:2b:30:58:fd:6c:
70:06:f0:27:20:51:b1:c6:6d:a0:47:7c:b3:17:cb:
02:be:8a:a0:c8:6f:f3:5c:47:8b:51:d9:b7:c8:cf:
3c:11:3a:b5:4f:e0:66:db:48:20:e0:57:0c:85:58:
c0:ad:da:61:68:f1:6e:e7:5a:01:ee:e3:aa:f3:51:
53:85:5f:8f:28:83:11:94:92:48:e0:27:d5:89:ba:
e1:25:5c:2c:a7:7b:73:1d:85:a0:70:b8:32:b0:2b:
d0:3b:49:85:86:39:29:8a:d2:59:5f:ba:c9:30:b7:
69:67:51:d9:01:85:86:56:f1:cd:60:d8:1c:dd:73:
2e:bf:89:41:00:38:24:b5:ec:4d:81:c1:18:5d:0d:
14:91:51:86:3e:89:a7:0c:f8:fa:5e:08:c5:14:47:
84:aa:06:5f:53:57:04:c5:a3:b8:69:e2:9f:8a:c9:
27:1e:8d:99:b7:2d:16:06:b1:77:8d:4b:d5:ab:67:
40:14:80:ac:03:07:83:fe:cb:11:f5:4f:80:83:57:
04:d3:1e:05:6e:85:b3:1c:93:71:aa:1c:90:a3:e2:
2e:e7:1a:b8:92:53:83:5b:fb:01:fe:74:fe:28:0f:
5b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C1:C3:04:D3:1E:84:4F:81:07:98:5F:86:75:DA:D8:4A:C7:E3:F9
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dsHDBNMehE-BB5hfhnXa2ErH4_k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.55.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:d1:aa:37:d2:d5:2d:8d:5e:96:0b:83:f9:0f:2e:fb:9d:0e:
67:c7:16:7c:a6:96:bd:36:65:0d:1f:bc:6a:f9:86:e7:d0:f3:
0a:f9:61:ca:ff:b9:93:70:60:e6:4e:47:41:9e:70:61:72:4b:
a9:3a:cd:c0:95:29:5c:1d:80:ff:4d:39:b6:4f:c8:17:5c:53:
6d:1f:40:57:e8:8b:2f:6a:15:55:82:18:a6:96:c5:be:8d:a5:
1e:aa:59:85:3b:22:db:7f:2e:03:8c:5e:90:0e:87:12:bd:ad:
9b:57:0a:78:01:f5:69:51:4d:80:76:f6:bd:fd:86:84:4f:21:
27:5d:5e:4a:35:e0:38:dd:da:50:59:0f:fc:28:25:dc:a6:db:
3b:85:e0:73:f1:32:74:00:ae:24:6c:ce:1c:fd:89:a1:53:6a:
c7:73:29:9c:35:b7:db:9c:a7:f6:9a:2e:d3:99:90:34:69:d7:
0d:38:1b:05:6d:a6:d1:fc:64:cd:c8:65:34:e8:42:1b:09:15:
a7:d8:e9:59:a4:aa:f5:34:1e:be:bc:d2:12:7f:13:0f:6c:fd:
e9:99:eb:47:cc:90:31:16:45:64:49:95:54:78:a8:1b:6b:7c:
0a:80:7c:39:f2:20:8b:43:d0:45:95:d7:71:df:eb:8d:54:d9:
82:47:c4:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org