Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hHIg6xnOCDPq89nYD1J_H-vASfA.roa
File: hHIg6xnOCDPq89nYD1J_H-vASfA.roa (raw, json)
Hash identifier: CCRLvYQ52ykZlrxpgWKxYYS40+2gMq2WWPsJVMc0XYI=
Subject key identifier: 84:72:20:EB:19:CE:08:33:EA:F3:D9:D8:0F:52:7F:1F:EB:C0:49:F0
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C19
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hHIg6xnOCDPq89nYD1J_H-vASfA.roa
Signing time: Wed 29 Sep 2021 02:39:02 +0000
ROA not before: Wed 29 Sep 2021 02:39:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.116.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3097 (0xc19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=847220EB19CE0833EAF3D9D80F527F1FEBC049F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:98:58:38:c2:ab:eb:c1:54:28:4a:74:2d:24:
e0:e0:7b:b5:4a:7d:69:71:97:fe:02:48:25:3b:38:
f3:32:8a:05:02:6b:c1:3a:29:0d:29:44:34:9c:95:
87:1a:ee:a5:23:7c:31:b9:43:34:87:8c:68:62:3e:
10:8a:60:49:35:3b:2f:56:91:43:ff:a3:dd:82:74:
b7:12:20:42:b1:6f:16:5f:9b:0c:bc:88:fd:21:b5:
ba:92:dc:f4:ee:d0:3d:08:09:ed:69:f8:cc:7a:73:
40:36:92:89:31:00:3f:73:72:51:9e:cc:49:2a:0f:
48:6e:35:31:e2:cd:8c:b0:46:53:d1:f5:ea:f5:b7:
1b:dc:24:25:a6:73:b1:d6:22:d6:43:7e:bc:93:d8:
0a:ad:55:ff:f1:dd:8d:f0:cd:59:3d:6e:87:e9:d9:
59:9e:3a:c9:63:20:1e:b9:34:2e:f3:4b:9c:a4:38:
57:88:6f:f1:56:12:63:cc:f1:96:99:ef:ad:7d:4b:
69:96:cb:05:a5:79:94:c5:37:6f:90:99:15:93:56:
c9:37:83:25:56:f3:d7:8e:4c:61:80:4b:f3:a2:cd:
d8:da:f6:96:cb:e0:ce:38:38:98:16:4e:44:c2:31:
f8:44:16:87:4e:8c:78:54:69:e2:4a:84:00:ef:f1:
a6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:72:20:EB:19:CE:08:33:EA:F3:D9:D8:0F:52:7F:1F:EB:C0:49:F0
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hHIg6xnOCDPq89nYD1J_H-vASfA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.140.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:c6:81:79:2a:68:19:20:e7:bd:5b:e6:68:d6:78:19:94:0b:
e2:50:10:00:61:c7:59:af:e2:6f:2d:20:ad:1d:be:cf:b1:9d:
dc:4e:8f:cf:55:2b:83:c2:ec:a2:f1:36:65:49:ff:85:d0:7c:
93:fe:58:d9:bc:cb:66:29:c6:86:b5:2a:f3:73:39:46:a6:d5:
48:a5:42:84:6e:7c:c3:38:50:58:f1:68:87:15:0d:91:ac:7a:
71:f1:51:68:e3:3c:a2:80:4d:dc:32:00:30:b7:2f:f2:5d:0b:
73:03:33:bb:c7:a6:cb:d3:39:04:a4:10:d0:be:eb:f6:eb:b1:
76:3a:b7:1d:60:a8:85:8f:21:fb:b4:d9:a4:d2:4c:2a:c5:05:
04:a5:8a:0b:b8:7e:29:40:be:1c:3b:45:3b:49:c7:95:ca:a8:
27:4c:21:65:e7:a3:29:e8:8d:a2:f8:17:1c:be:1a:e0:5c:93:
af:e6:c1:96:d2:d4:2b:70:5b:54:aa:eb:4a:92:e9:61:01:c6:
d3:ec:a6:83:72:ac:70:bb:bc:60:d1:23:f3:dd:28:62:ad:c7:
df:9a:8f:2d:88:4d:ff:0f:ee:b6:30:6d:27:41:a1:2b:c6:00:
8d:ba:d7:37:4e:5c:e2:25:30:a9:50:f6:f8:99:df:fe:a5:c8:
0f:59:52:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org