Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dyIolJI2ihb7GBbAFQshrHr1UDs.roa
File: dyIolJI2ihb7GBbAFQshrHr1UDs.roa (raw, json)
Hash identifier: 9IyGZzYfYBao5ApkeCHkn6sXcSDqjHercZxFOXYfOTI=
Subject key identifier: 77:22:28:94:92:36:8A:16:FB:18:16:C0:15:0B:21:AC:7A:F5:50:3B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dyIolJI2ihb7GBbAFQshrHr1UDs.roa
Signing time: Thu 15 Sep 2022 02:38:58 +0000
ROA not before: Thu 15 Sep 2022 02:38:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.117.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:38:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7722289492368A16FB1816C0150B21AC7AF5503B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f3:08:82:b1:cd:8c:26:fc:ce:b5:5c:45:3a:
d8:70:ad:a0:9e:2c:9b:6f:21:56:d9:91:c8:0a:a5:
d9:c4:41:d5:06:6c:7c:ef:36:91:11:67:0a:62:b2:
19:0c:4b:87:ea:a2:0a:34:80:c1:64:60:ea:b4:22:
2c:20:8a:f5:7c:2d:85:9f:5f:c7:85:da:0a:52:01:
82:1e:74:37:3a:f7:61:0b:97:71:7e:47:c8:91:51:
aa:45:c7:40:08:b2:48:0e:21:49:6f:a0:97:87:d6:
19:d7:69:0d:cc:84:4b:1c:35:c0:9e:d0:fb:44:21:
5a:b4:bd:14:b7:ad:3b:6f:b0:dd:c4:cb:d8:51:fc:
9c:9b:df:10:8d:a0:27:c8:92:56:4a:15:84:d8:27:
db:c4:16:93:ca:c8:e2:9a:01:bb:5b:03:aa:6a:87:
f2:23:73:03:22:22:1f:03:c3:6e:7e:0f:81:55:74:
18:13:98:cc:ab:d7:a1:51:13:28:70:16:13:96:21:
f3:33:7b:42:f9:f0:97:57:b6:63:cc:fc:5f:4b:46:
b4:9d:9f:ce:16:b9:83:b8:09:e1:68:09:1d:fa:13:
eb:df:86:e9:d6:69:48:20:50:b3:94:a1:9f:0a:9b:
ae:90:cf:14:41:2c:12:3d:1e:ae:e0:26:0a:62:c6:
7d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:22:28:94:92:36:8A:16:FB:18:16:C0:15:0B:21:AC:7A:F5:50:3B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dyIolJI2ihb7GBbAFQshrHr1UDs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.240.0/20
Signature Algorithm: sha256WithRSAEncryption
b5:fc:4a:78:7a:bc:ec:3a:56:c4:eb:58:4e:46:14:f2:62:db:
bd:a1:a5:5d:98:10:97:12:f5:68:92:c6:09:3a:cf:99:3b:d6:
0f:76:f1:ef:48:8d:04:99:ba:9c:9d:54:92:dc:47:65:77:41:
dd:05:85:2a:97:57:1a:b5:ed:2e:f5:c3:06:6d:84:76:83:24:
61:b7:4f:a9:4c:6f:e1:47:88:38:5b:5b:96:64:86:8b:ae:eb:
c5:62:c5:8a:f5:50:7e:eb:25:ee:63:42:2b:8a:6c:8c:6a:dd:
55:dc:5b:ca:5e:bf:07:6e:82:a6:05:10:31:de:b9:67:e7:3f:
1c:a8:47:81:36:5c:b8:b7:29:d9:89:36:a0:c8:d7:d6:7f:ec:
a9:13:a5:2a:9a:fc:13:93:50:38:36:07:57:76:36:df:ff:15:
83:05:3a:1e:10:85:26:4e:40:39:c1:bf:49:83:41:17:ce:44:
cf:06:5c:28:07:fd:00:2a:f3:8f:23:49:2b:56:86:5b:02:6b:
16:9e:39:87:c8:17:89:ff:42:c3:75:e8:cf:b8:0c:17:8c:c9:
83:87:59:fd:af:40:54:95:e6:12:0c:44:21:ea:ec:8d:3f:82:
9e:f9:dd:10:35:08:1f:51:dc:3f:cc:25:a4:ea:9d:7f:22:74:
ba:30:82:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org