Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/i-VvA9Mo6Ls0lFajHvpKvS2OHL4.roa
File: i-VvA9Mo6Ls0lFajHvpKvS2OHL4.roa (raw, json)
Hash identifier: bAiOeBxF/qrSnSCNNBp+X82rH6/MECTA3F83zRnUXh4=
Subject key identifier: 8B:E5:6F:03:D3:28:E8:BB:34:94:56:A3:1E:FA:4A:BD:2D:8E:1C:BE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C0C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/i-VvA9Mo6Ls0lFajHvpKvS2OHL4.roa
Signing time: Wed 29 Sep 2021 02:38:59 +0000
ROA not before: Wed 29 Sep 2021 02:38:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.116.168.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3084 (0xc0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8BE56F03D328E8BB349456A31EFA4ABD2D8E1CBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:f0:88:d8:61:66:e4:e1:05:7e:ff:41:ee:73:
24:dd:1e:3c:9a:5f:dd:6b:f0:63:dd:f6:28:0f:81:
be:54:19:3c:84:06:f1:4e:5b:c6:f8:3a:44:3a:d7:
0b:3a:fd:87:62:8a:eb:1c:00:f7:3d:c3:5b:e5:f6:
36:20:e8:c5:40:90:01:cd:63:94:ba:f9:6c:1c:02:
ba:21:6c:c7:a5:6d:e1:41:28:0f:8c:7b:b1:6d:81:
32:72:9b:af:54:1a:f5:10:6b:7c:64:66:5b:60:bd:
f7:11:1f:da:3a:35:51:62:e2:5d:ec:57:9f:41:a2:
23:3b:62:5d:3f:bd:40:03:e1:53:9e:5e:87:da:4c:
55:cf:b7:27:32:aa:11:91:19:05:db:6e:d9:7b:dd:
e0:d9:48:04:48:50:ae:bc:38:8a:70:9d:1c:e2:5e:
ae:46:df:50:da:f2:ca:92:36:58:1f:72:f1:28:f2:
ec:34:72:a9:c8:7e:17:c1:62:7d:91:fd:92:8a:4e:
a3:a8:d4:7c:bc:16:39:6a:75:dc:38:24:54:47:28:
0a:0a:71:3a:a7:37:1e:a6:05:6f:67:2c:68:c4:d6:
a7:49:23:91:f3:3a:6f:60:74:3c:c2:0a:07:f7:b9:
62:c0:c8:7d:0d:b9:88:dc:80:3d:ff:2a:ac:a0:36:
95:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E5:6F:03:D3:28:E8:BB:34:94:56:A3:1E:FA:4A:BD:2D:8E:1C:BE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/i-VvA9Mo6Ls0lFajHvpKvS2OHL4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.168.0/23
Signature Algorithm: sha256WithRSAEncryption
90:ff:08:58:0b:71:1f:57:52:30:0e:20:81:65:9b:0f:0e:a7:
b7:3a:d1:47:b8:fc:af:99:cf:dc:84:6e:d1:ca:28:75:f4:59:
72:d7:ae:c5:96:42:a0:92:65:2e:62:e6:13:aa:b9:79:c3:d7:
d0:9f:48:55:1f:f3:67:ce:fa:0f:b1:5b:ab:a8:e7:79:33:07:
29:ad:f2:aa:a5:d6:29:ad:8a:9f:6e:7c:64:10:88:d1:72:ab:
f9:24:0b:f6:c3:db:b3:4c:55:fa:77:8d:1e:2f:75:85:24:4a:
00:f3:da:f5:24:39:0f:32:16:b7:1c:eb:c4:d2:0f:b2:08:c5:
88:9f:93:cd:32:83:8a:02:c0:1e:6d:06:f6:3c:eb:bc:ef:6a:
14:5c:ba:d7:00:8f:36:0f:45:a5:c3:79:a2:dd:73:01:ce:4d:
56:28:82:e6:12:98:50:88:50:20:3f:31:54:e9:14:ed:a0:60:
91:1d:7b:a3:b0:ab:87:e8:0c:18:b3:50:16:9e:f9:65:7d:2e:
6f:04:c8:5f:a5:e9:37:bf:a1:15:58:70:a3:15:8d:15:2d:45:
07:b7:01:65:90:29:4a:fe:30:93:18:f0:88:ff:cb:dd:5e:47:
01:7b:fd:05:8f:9e:d6:48:33:e2:8b:85:0f:05:2e:1c:04:ab:
61:c5:a3:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org