Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ebPmuW7NeogjM0ECJrJRW_g3uv0.roa
File: ebPmuW7NeogjM0ECJrJRW_g3uv0.roa (raw, json)
Hash identifier: JOhMFOI7NMQjI5wVY+7TWy9ubrFZFztr4TC2df5g830=
Subject key identifier: 79:B3:E6:B9:6E:CD:7A:88:23:33:41:02:26:B2:51:5B:F8:37:BA:FD
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 09BE
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ebPmuW7NeogjM0ECJrJRW_g3uv0.roa
Signing time: Wed 09 Dec 2020 02:27:22 +0000
ROA not before: Wed 09 Dec 2020 02:27:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131273
IP address blocks: 150.116.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2494 (0x9be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 9 02:27:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=79B3E6B96ECD7A882333410226B2515BF837BAFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:65:5c:94:0f:1c:88:93:fa:f8:0e:cd:3d:73:
9a:6d:80:82:7d:90:1e:4b:cc:56:88:0c:13:a5:3f:
b2:87:8c:da:dc:52:74:c0:63:fd:58:2e:fb:57:97:
ea:e9:fc:e8:da:25:01:92:a1:f2:2e:6d:91:87:d8:
2e:79:b3:de:e0:d8:db:47:e2:61:b1:a4:ca:5b:64:
7a:00:e2:84:10:87:0f:23:97:5e:53:87:4f:7c:6a:
5e:31:f1:3a:a6:5b:02:01:d4:5b:05:75:9c:bd:2c:
fc:49:8e:11:d9:54:d4:e6:57:15:d1:7a:15:5f:33:
72:d9:45:21:ec:23:f4:f0:ea:2d:59:40:93:30:cb:
d6:3b:51:62:15:7c:86:30:10:fb:ae:fc:39:e7:fd:
e7:d0:b6:47:35:7b:b1:fe:0a:02:bd:40:26:44:7e:
a5:e5:5f:78:be:23:50:0e:cf:9e:3b:e8:81:45:15:
1a:96:3b:e7:85:4a:77:d2:b4:86:7f:86:21:61:68:
16:ec:ec:e5:ba:37:d6:e1:e6:e4:0a:f2:7a:82:1a:
b1:be:e5:7c:08:62:65:63:02:88:43:36:28:e8:95:
f1:73:a1:9c:f7:b4:85:a0:02:c0:04:05:0c:80:f9:
a1:79:c5:a9:51:5e:a6:10:5d:a1:72:08:e3:d9:88:
0d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B3:E6:B9:6E:CD:7A:88:23:33:41:02:26:B2:51:5B:F8:37:BA:FD
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ebPmuW7NeogjM0ECJrJRW_g3uv0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.53.0/24
Signature Algorithm: sha256WithRSAEncryption
28:17:50:8a:69:ac:0d:14:59:ab:cf:fa:1e:b0:01:e7:34:8b:
86:01:a0:29:77:0e:8b:f2:30:20:a4:43:85:d5:dc:d7:8f:3e:
ee:aa:e4:6d:ac:bf:a3:cd:69:fe:91:96:cf:fc:39:b9:c6:a3:
a7:c7:da:72:0d:a9:18:86:b5:8c:e2:10:a4:90:db:5f:48:0d:
38:c6:ac:7e:12:7c:ac:62:54:31:33:35:a2:76:8c:f5:a2:de:
51:d8:64:54:bf:d2:e4:3e:49:88:7a:9f:6a:e2:10:9b:70:aa:
51:63:1c:65:57:b1:5d:2f:19:e2:24:bf:71:72:45:8e:e5:39:
00:49:dc:7a:14:d8:24:a9:9b:bf:39:31:d8:3b:22:62:bf:0e:
37:dd:f5:6d:78:34:05:57:d6:95:72:27:1e:6b:9b:84:09:b4:
3e:16:a1:26:26:e6:b1:fc:8a:c1:15:7c:71:ca:30:ed:29:15:
c8:d6:c7:a6:66:cb:30:89:41:63:ac:35:6e:f0:13:af:7d:c5:
28:f0:da:88:39:96:8f:09:35:8d:74:f6:fa:f5:9d:46:c8:28:
0f:5f:5e:a6:a4:48:0a:c6:3d:af:19:0c:f2:d6:6e:a9:3b:9d:
28:c5:b5:b2:b9:fb:ed:85:81:80:8b:aa:eb:90:8a:a2:29:c8:
92:97:30:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org