Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gBfMnPiiaOIEQvlX4Vl7hLT2Qqg.roa
File: gBfMnPiiaOIEQvlX4Vl7hLT2Qqg.roa (raw, json)
Hash identifier: gJzzRVJPVBBVoqNL2FappeMgZrZt2/pk3YorxH5oZmQ=
Subject key identifier: 80:17:CC:9C:F8:A2:68:E2:04:42:F9:57:E1:59:7B:84:B4:F6:42:A8
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B18
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gBfMnPiiaOIEQvlX4Vl7hLT2Qqg.roa
Signing time: Sun 07 Feb 2021 13:04:50 +0000
ROA not before: Sun 07 Feb 2021 13:04:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7532
IP address blocks: 150.116.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2840 (0xb18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 13:04:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8017CC9CF8A268E20442F957E1597B84B4F642A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:91:46:1c:3b:eb:05:89:4d:32:4c:aa:6d:1b:
e6:45:30:72:fa:20:90:5d:0c:50:ac:ee:4d:ee:6a:
f1:e0:c4:b8:ff:dc:66:a0:bd:2c:08:46:7a:5d:c9:
0a:e7:a6:b9:c2:bc:da:02:4f:19:cf:55:ba:15:c0:
f4:04:a9:3f:76:34:70:94:e5:ba:f7:8a:45:6d:ab:
51:d4:fe:70:63:26:ae:0f:36:fa:a2:8d:c0:8c:a5:
55:7e:5a:c3:a5:e2:c0:82:87:96:7b:73:9e:57:a0:
45:38:e7:8e:b7:cd:47:d0:e2:7c:69:43:d4:3f:4d:
45:fe:f0:b5:23:6f:c8:ed:08:1a:0c:eb:95:a6:90:
46:10:9f:f6:9b:04:49:5e:ac:94:80:55:18:c5:c3:
77:81:39:fe:d4:bf:a4:f2:1b:00:f7:3a:85:07:21:
da:34:6c:90:a1:ee:68:d2:5a:6b:30:60:b6:c0:38:
66:3c:ed:b2:ec:c4:7b:7d:f6:57:d6:48:eb:7d:09:
59:0e:4c:b2:56:ae:0f:2d:3b:37:31:4b:0f:19:c2:
22:18:76:a4:c0:4a:39:4e:ac:ee:29:6a:54:9c:27:
2a:d7:9c:13:bf:b3:88:e1:af:bd:57:db:9f:94:68:
9f:f2:7c:01:11:64:84:04:34:61:47:00:ab:05:93:
74:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:17:CC:9C:F8:A2:68:E2:04:42:F9:57:E1:59:7B:84:B4:F6:42:A8
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gBfMnPiiaOIEQvlX4Vl7hLT2Qqg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.54.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:3d:03:de:80:3f:42:71:8f:29:82:b8:1e:d0:c4:62:47:1a:
f3:7b:01:d0:56:5e:6d:6b:77:71:a1:6b:b2:2a:ee:a3:c8:f8:
39:2a:54:0d:fb:6b:dc:ee:62:da:55:c3:79:14:f8:ec:c5:19:
f6:36:e7:e2:c3:a2:36:0a:9d:58:4a:3b:b0:f3:82:83:59:6d:
8c:b1:02:80:3a:b1:9b:5b:b8:e1:61:71:de:f2:29:98:cd:f6:
41:ab:76:6d:75:65:a4:2c:cd:1e:fc:42:48:4d:d4:45:20:6b:
44:06:8d:15:83:b2:71:31:25:a5:de:dc:47:aa:66:83:a6:66:
10:2f:17:4f:c7:01:39:59:4b:dc:22:79:60:8c:b9:51:ba:7f:
a0:86:8d:0f:0c:e3:6f:8c:33:66:19:d7:1e:07:8a:24:78:fa:
44:01:0d:ad:c8:34:8a:72:2e:f9:2f:81:32:14:f9:f1:1a:08:
17:35:8f:e4:fe:8e:ac:35:d4:c1:23:ea:3c:d3:f8:c4:a4:57:
0f:a3:f4:f4:f8:b0:56:01:0c:e8:5c:f1:66:f6:b3:bf:ae:ae:
82:5c:12:d1:5e:7c:bc:77:8e:c2:d4:79:ba:e0:04:15:f1:a9:
77:3c:6c:27:18:90:63:6a:74:9b:68:1c:e4:e6:1e:42:09:87:
d7:0a:87:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org