Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gZPcxaXgY_BjfGjU2wzwOYOcohM.roa
File: gZPcxaXgY_BjfGjU2wzwOYOcohM.roa (raw, json)
Hash identifier: pxbeNX4JfNI0RmEFrei5vr4pVGYTovd8N+z6OXUIny4=
Subject key identifier: 81:93:DC:C5:A5:E0:63:F0:63:7C:68:D4:DB:0C:F0:39:83:9C:A2:13
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DD6
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gZPcxaXgY_BjfGjU2wzwOYOcohM.roa
Signing time: Thu 29 Dec 2022 09:31:54 +0000
ROA not before: Thu 29 Dec 2022 09:31:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10085
IP address blocks: 223.26.92.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3542 (0xdd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8193DCC5A5E063F0637C68D4DB0CF039839CA213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8d:c5:02:df:7e:6f:86:b4:5f:08:46:71:c5:
b4:8b:e7:c2:f9:d9:98:dc:4c:77:d5:86:4a:7f:6f:
bd:56:a8:68:34:92:f7:04:37:1a:23:c0:68:29:2e:
60:7c:46:2f:25:cc:23:1e:1f:8f:2b:b5:47:f2:f2:
e3:0c:df:6f:31:f5:e1:53:4b:c9:e0:b7:cc:ca:f4:
18:d6:d2:4f:84:8e:f8:79:9c:52:6e:24:76:e6:8f:
ab:5e:41:68:79:3b:50:f5:24:8e:f0:1a:d5:df:a1:
bf:eb:d9:de:f8:be:48:10:b2:34:ea:e8:22:8b:bf:
e2:eb:25:69:2c:8a:f7:ac:ea:b8:c1:27:69:eb:26:
89:7d:6e:d1:cc:1d:1d:89:aa:57:9a:2f:c5:8e:90:
3f:4a:0d:13:bf:6a:44:69:f0:42:f4:45:01:c5:0e:
b9:9a:a4:28:02:55:a9:31:b4:45:ea:8e:00:8b:38:
0c:1d:35:aa:cd:ec:3b:ed:66:c2:6a:ea:4e:bd:56:
7c:7c:70:6f:88:7d:4b:ff:5e:c8:b2:47:8d:4c:7d:
d4:dd:b6:52:fa:b2:72:98:0d:52:59:10:07:54:00:
a0:d3:6f:1c:97:2a:95:3b:26:93:23:ba:53:82:dc:
13:b0:3e:45:ae:55:27:56:d5:85:16:14:0b:2d:b7:
06:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:93:DC:C5:A5:E0:63:F0:63:7C:68:D4:DB:0C:F0:39:83:9C:A2:13
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gZPcxaXgY_BjfGjU2wzwOYOcohM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.92.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:20:9a:84:d0:2c:19:c6:9e:ec:15:cb:7a:9d:1d:78:02:ef:
8e:ca:9e:e1:47:28:ec:da:00:4d:41:bb:c5:af:98:58:46:99:
c2:1e:30:b6:b7:6a:ad:6f:8d:fb:7e:ee:95:fe:0f:f9:6c:34:
74:35:26:46:b3:f1:a7:4e:d9:ed:e2:a5:b1:a4:78:6f:81:4f:
d5:ad:bc:7e:ed:49:37:96:21:d4:b2:2e:dc:4f:fd:8f:b6:85:
dc:de:b4:14:88:9c:71:88:55:76:fb:ab:58:3b:c3:41:b5:91:
f4:20:0b:7a:ed:91:e4:79:8a:fb:09:e6:bf:73:e9:b3:67:11:
fe:dd:06:b4:92:57:e5:79:dd:ad:b6:7b:1e:73:63:2f:4c:e5:
13:5c:db:dd:b4:a2:bf:5f:ae:6e:84:3d:f7:55:35:c4:e5:a2:
59:01:06:db:23:71:87:47:7b:3b:45:a9:8c:f1:fc:50:87:ee:
dc:93:f5:87:43:d1:cc:61:19:4b:65:1c:d6:27:cc:1f:51:ba:
84:02:cd:64:73:2c:5f:a3:32:03:b4:40:51:85:3f:5b:61:79:
ea:bf:a5:c8:1d:42:93:95:99:8c:12:f5:1e:68:85:f8:07:66:
0b:0d:b0:c1:75:d5:d6:94:dc:8e:5f:f9:eb:54:6d:46:1a:18:
71:9a:b5:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org