Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hhXy5QiqR0VSP2qo5Dk0L_p5xlA.roa
File: hhXy5QiqR0VSP2qo5Dk0L_p5xlA.roa (raw, json)
Hash identifier: q5taVTYxoPWLHoD2XHzUFf0ibbhMiVdtM4FQPAsJZig=
Subject key identifier: 86:15:F2:E5:08:AA:47:45:52:3F:6A:A8:E4:39:34:2F:FA:79:C6:50
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 088F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hhXy5QiqR0VSP2qo5Dk0L_p5xlA.roa
Signing time: Tue 29 Sep 2020 10:02:38 +0000
ROA not before: Tue 29 Sep 2020 10:02:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.117.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2191 (0x88f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8615F2E508AA4745523F6AA8E439342FFA79C650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:de:ff:ac:13:3e:49:4a:af:a1:40:5d:8e:d4:
b9:63:89:4b:82:68:d5:ce:6f:36:2b:6d:83:eb:7f:
32:76:6b:3d:9c:27:89:b7:37:8a:8e:d3:1f:1a:1a:
95:49:8e:21:3d:95:58:20:cb:be:20:ea:07:dd:33:
a7:81:f8:79:ad:d7:3a:7a:49:3d:6a:cd:ad:2c:3f:
21:58:fc:b3:57:55:48:84:b1:79:27:e3:43:c2:a7:
b8:80:c5:1d:60:cb:b5:b3:b1:8d:91:de:00:45:ea:
62:7e:4a:1a:e0:87:be:44:de:b0:a4:09:53:01:d0:
fc:bd:6b:0a:63:45:31:c3:3b:90:1b:7b:bb:d4:1e:
ff:e2:25:2a:3b:33:4f:9c:e4:86:bd:ea:87:c6:f9:
a0:b4:ad:03:5b:51:05:ed:84:3a:ab:8d:7a:ce:4d:
c4:5c:29:ea:c2:5d:7c:fa:be:0b:81:cd:b3:7f:ea:
c2:30:73:05:84:e9:80:95:d4:1a:d4:b3:96:9a:a6:
eb:99:f1:5f:13:90:ab:a7:21:fc:6e:4c:0c:66:d7:
1f:e3:9c:32:a8:6d:09:8d:87:db:65:5f:1f:b1:63:
29:60:66:b7:88:8f:a0:c8:0b:a1:33:a3:88:80:a7:
ec:47:16:19:d0:05:d2:b4:4a:87:de:d8:da:c9:22:
3f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:15:F2:E5:08:AA:47:45:52:3F:6A:A8:E4:39:34:2F:FA:79:C6:50
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hhXy5QiqR0VSP2qo5Dk0L_p5xlA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.240.0/20
Signature Algorithm: sha256WithRSAEncryption
52:e1:61:4d:97:cb:f2:bb:08:cd:8d:65:4a:85:d1:2e:a9:74:
4b:ea:19:d6:ce:ac:12:3f:c3:ff:c8:48:52:34:08:bb:aa:39:
c4:e2:2d:9d:bb:58:00:8a:21:a5:96:a2:80:ad:55:62:09:ad:
db:91:08:dc:e0:91:b4:ff:08:11:7d:63:41:82:fc:58:67:15:
1b:18:e4:1b:76:f1:c3:e7:84:c6:ed:69:20:0a:33:97:74:4e:
50:0a:4c:33:00:36:36:40:f6:c7:7d:6f:b6:4c:30:c7:60:af:
6c:eb:0a:b7:87:d8:1b:cf:83:14:30:31:3e:a9:ef:51:75:2f:
76:ee:14:9c:43:ac:60:c9:8d:b4:11:48:39:af:c9:2d:a7:d9:
13:98:0f:bb:18:2b:40:1c:b8:59:11:f4:6a:fa:18:88:4f:c4:
4e:a0:70:d2:60:bc:68:e7:86:c9:5d:a2:a7:4b:9b:a5:fa:23:
dd:61:18:15:88:ab:ee:3f:85:8e:86:21:38:40:bc:93:f9:a7:
57:57:af:13:72:58:75:69:36:92:0f:a4:71:83:9a:05:d5:cd:
61:49:5a:49:9f:32:ab:e9:94:d9:9d:af:09:f0:da:88:c0:bb:
a5:34:4e:5a:0d:25:99:0f:b8:9d:bd:22:0b:bb:9b:5a:b9:1a:
59:30:24:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org