Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gptPyjOUw3P_Y6ff7uDbLjD2QfI.roa
File: gptPyjOUw3P_Y6ff7uDbLjD2QfI.roa (raw, json)
Hash identifier: 3E50R+HMnU6EXrSi85k4AlB3FQdfCZQsoj4csQFihMI=
Subject key identifier: 82:9B:4F:CA:33:94:C3:73:FF:63:A7:DF:EE:E0:DB:2E:30:F6:41:F2
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DB6
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gptPyjOUw3P_Y6ff7uDbLjD2QfI.roa
Signing time: Thu 29 Dec 2022 09:31:46 +0000
ROA not before: Thu 29 Dec 2022 09:31:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131273
IP address blocks: 150.116.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3510 (0xdb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=829B4FCA3394C373FF63A7DFEEE0DB2E30F641F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3b:4a:32:10:fe:ab:63:dc:b1:63:ff:ef:9d:
38:2f:50:d5:28:e5:d0:b7:39:4f:40:62:6e:25:77:
9e:da:5a:e0:ae:37:5c:b6:18:69:6e:5b:40:16:5e:
5d:b4:8e:ff:85:00:5f:14:5b:1f:5e:c1:93:72:53:
c3:07:5e:42:57:a3:df:31:96:4f:93:1f:1f:e6:9c:
c9:f0:49:02:85:e7:b5:d3:84:34:fc:a1:b1:80:17:
cf:22:bf:97:e0:d4:8c:06:0a:df:f0:53:4e:3c:d8:
60:76:fa:07:f0:97:24:36:0b:d0:ec:24:b4:88:45:
9e:b0:81:a6:25:ec:9e:c9:fc:05:ab:ed:38:70:00:
a7:58:54:d5:33:5e:a2:2c:75:bd:33:25:11:64:2a:
51:90:9a:ff:0e:df:35:1e:58:69:6e:e7:db:8e:67:
7d:0d:3c:2e:aa:f5:21:72:04:98:3a:b9:f4:aa:da:
22:8d:0d:c2:fa:5f:c0:2d:9f:bd:e8:2f:56:74:db:
98:5b:82:f9:08:20:c9:6d:5b:e6:83:07:c0:9b:97:
be:da:42:81:f0:53:ca:f5:ed:05:65:8a:98:eb:2c:
78:76:31:b4:90:87:b9:fa:2d:64:f1:3a:21:c9:b1:
39:97:e7:04:8c:b9:6b:34:f4:8e:0a:4a:77:a2:ac:
ea:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:9B:4F:CA:33:94:C3:73:FF:63:A7:DF:EE:E0:DB:2E:30:F6:41:F2
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gptPyjOUw3P_Y6ff7uDbLjD2QfI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.53.0/24
Signature Algorithm: sha256WithRSAEncryption
31:3f:5a:79:16:f1:9a:b2:cd:7b:2d:57:e2:57:38:82:43:99:
a2:38:8b:e6:88:a6:e0:46:58:ec:c9:e0:df:c1:20:c8:43:b9:
dc:88:d7:a6:1d:02:27:fd:b4:ba:05:1c:55:ca:cb:9e:72:e1:
50:75:71:35:34:52:80:b0:a2:58:dc:7a:61:95:a6:ac:f9:2f:
44:ed:aa:75:c0:d4:1c:1d:14:94:41:c2:51:95:4b:d9:99:40:
57:22:69:ee:d6:86:6d:2d:93:8b:2d:51:37:28:1d:b3:01:a1:
8b:5c:db:2c:a4:fe:66:85:51:5c:73:2d:28:ef:29:34:46:92:
75:a6:25:4b:47:7a:c3:cd:46:b0:2d:3d:a0:6a:fd:05:df:23:
21:27:81:be:0a:95:d1:73:2d:c5:e7:19:d3:63:6c:43:ba:2e:
74:3a:2e:90:23:37:14:78:28:82:bb:4f:0e:77:ed:13:70:39:
43:41:5e:17:8b:12:b3:28:63:74:fe:f9:b7:eb:01:55:88:7a:
4a:4d:5c:a4:cd:75:6f:8e:14:67:c2:01:e7:3d:22:c8:fc:94:
ac:7b:64:10:4a:21:0f:74:fb:e0:14:21:03:f6:a5:16:d4:25:
7e:99:23:ab:1b:f9:d6:5b:9f:21:fe:cf:3c:35:9a:28:99:f7:
c6:27:7c:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org