Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fCRTm6vnq6F8NQSeNUPspxDucnw.roa
File: fCRTm6vnq6F8NQSeNUPspxDucnw.roa (raw, json)
Hash identifier: KOxPGzzAvilP7k9eNEEBXwB+Xo4dml5yJ2Pel1Mv888=
Subject key identifier: 7C:24:53:9B:AB:E7:AB:A1:7C:35:04:9E:35:43:EC:A7:10:EE:72:7C
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AE4
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fCRTm6vnq6F8NQSeNUPspxDucnw.roa
Signing time: Sun 07 Feb 2021 12:47:52 +0000
ROA not before: Sun 07 Feb 2021 12:47:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 63199
IP address blocks: 150.116.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2788 (0xae4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 12:47:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7C24539BABE7ABA17C35049E3543ECA710EE727C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:65:10:43:94:83:fa:0f:f3:74:73:be:46:80:
6f:53:89:53:d0:c8:c3:04:96:bb:11:41:44:38:24:
5c:d3:ef:0a:d1:d3:fb:5f:04:d9:ee:2c:72:0c:07:
a5:01:21:2b:f3:1a:b3:f1:1f:68:96:ad:5f:5b:7f:
45:b1:f3:95:0f:2c:ca:3b:6c:ee:ec:8c:24:18:97:
65:7d:53:17:06:74:50:2e:e0:7d:36:aa:7d:01:e2:
fd:21:98:3b:a6:b0:85:e1:40:49:a5:d1:09:de:4c:
c7:e2:a4:4c:f1:92:20:08:1a:14:2c:84:c9:2b:1d:
c9:a3:52:2f:f9:12:4e:21:88:7b:c2:81:55:04:e7:
83:d9:f5:48:a6:55:dc:5c:f3:47:80:ce:9e:23:2e:
e0:26:db:69:c9:ac:99:37:ba:61:aa:f8:42:41:e1:
a6:94:36:1c:7a:01:f7:f9:ef:f0:a1:ae:e7:cf:7e:
06:dd:d3:d2:88:83:54:73:41:3d:85:77:d7:10:e9:
cf:4d:ad:dc:a5:5a:d2:38:7a:8d:2a:80:06:f9:d6:
d1:3e:00:f6:2b:ca:06:d4:9d:0f:a7:3d:1a:69:b9:
c4:31:86:20:ab:ed:7a:68:ce:1b:ae:73:66:37:a0:
85:42:30:f6:bf:02:93:07:d2:f5:53:af:6c:ed:b9:
16:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:24:53:9B:AB:E7:AB:A1:7C:35:04:9E:35:43:EC:A7:10:EE:72:7C
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fCRTm6vnq6F8NQSeNUPspxDucnw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.82.0/24
Signature Algorithm: sha256WithRSAEncryption
39:18:30:70:4a:65:0f:b6:cb:e4:db:b0:86:8e:98:0c:c9:e3:
72:7a:5a:e6:da:a5:62:4c:cd:45:6b:64:c7:93:17:db:57:c9:
19:22:ae:87:35:c2:c8:6d:8c:1c:82:cd:62:73:7a:f9:02:1d:
aa:6a:5b:e1:33:42:b4:a0:e1:f6:81:63:71:bc:bb:27:86:09:
ab:89:81:dc:04:67:7e:36:85:c7:86:91:95:13:b0:6f:0e:81:
34:f4:0d:02:40:0b:49:4e:c6:18:9a:a9:6b:e0:11:7a:b0:61:
e0:b9:2b:a4:f4:53:8d:a6:ab:37:04:81:af:93:ee:2a:54:3f:
01:6d:8a:b7:9a:45:b5:c3:06:02:1c:16:d6:01:94:f4:8f:4c:
06:d7:f2:cf:ca:0b:d9:55:da:7e:72:d8:45:d3:85:22:27:4b:
36:1d:4f:ef:30:96:cb:98:34:0a:c9:56:b5:7a:71:74:44:ce:
6e:bc:44:ac:02:92:69:da:89:0e:30:15:6c:9c:46:3b:10:1b:
a6:37:69:e0:67:1d:bf:74:36:cf:7a:05:6e:f8:ec:e0:a2:1c:
57:40:90:15:f3:bc:f1:62:50:c2:3b:b2:9b:14:71:36:50:9c:
b7:b2:87:8c:be:b9:67:ba:05:21:a0:9b:33:25:ba:9f:31:2c:
07:39:65:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org