Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/iFplDmYBKpy8z4uaGe8B3cru8jY.roa
File: iFplDmYBKpy8z4uaGe8B3cru8jY.roa (raw, json)
Hash identifier: 0E1nNvDdQXdxA8DkPBc67TL5Tts04buCNWPo34TUcGY=
Subject key identifier: 88:5A:65:0E:66:01:2A:9C:BC:CF:8B:9A:19:EF:01:DD:CA:EE:F2:36
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0A82
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/iFplDmYBKpy8z4uaGe8B3cru8jY.roa
Signing time: Sun 07 Feb 2021 11:49:58 +0000
ROA not before: Sun 07 Feb 2021 11:49:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2690 (0xa82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:49:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=885A650E66012A9CBCCF8B9A19EF01DDCAEEF236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:67:12:d7:c2:6a:86:4b:8a:59:f3:85:f3:40:
85:d9:86:50:63:38:97:b2:9c:7d:e0:83:55:1e:23:
1b:fa:e5:0a:1d:48:f4:7b:4a:f2:ec:4f:82:55:ca:
24:74:a1:c6:3f:92:26:4b:ae:20:34:d7:28:58:10:
e9:86:5e:a4:ec:d8:77:84:91:f1:b8:3e:a6:10:5c:
06:61:ab:20:11:ec:82:a3:84:58:55:7c:1c:d3:19:
9b:ec:cc:5e:a2:f9:ef:30:39:e2:3d:04:f9:0b:ca:
28:26:f3:bb:22:d0:84:ef:3a:8e:57:3f:e2:c4:f7:
c8:65:15:07:22:a0:e0:86:ac:f4:4b:17:73:7c:c7:
c0:4a:2d:4c:0d:c5:a1:ed:26:5c:3f:17:5a:4b:20:
6d:8a:38:35:ab:52:d4:72:84:49:7c:50:ce:96:fd:
1e:b5:cc:3a:df:43:1d:c3:3b:40:d9:a1:a2:ef:bd:
e2:a7:0b:13:f4:24:97:cd:6b:f5:24:3d:0c:9a:0e:
0a:c5:de:8a:a6:d6:54:4f:15:52:8c:42:e7:82:a8:
f9:b9:a9:47:19:31:62:2f:0e:cf:ed:8d:78:49:6f:
ee:56:c5:27:24:6a:15:db:ef:31:e4:ad:30:05:e3:
14:f7:4b:c6:e1:e3:38:6d:ed:e4:81:a6:67:d9:1d:
1b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:5A:65:0E:66:01:2A:9C:BC:CF:8B:9A:19:EF:01:DD:CA:EE:F2:36
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/iFplDmYBKpy8z4uaGe8B3cru8jY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.224.0/21
Signature Algorithm: sha256WithRSAEncryption
a9:1e:a5:96:a4:18:74:bb:03:8f:cf:c0:87:bf:23:67:34:c9:
33:e8:7b:6f:4a:d2:a4:26:dd:4a:0e:fe:d4:dd:5d:31:6f:1b:
5a:ce:4d:cd:57:c2:85:f5:18:18:1d:c2:a6:96:03:b7:6b:bc:
39:3f:f3:e9:4f:7e:63:cc:94:6c:1f:97:c2:9e:a0:d2:ee:5c:
46:f9:b1:8b:16:b8:64:0c:a5:91:2f:56:77:91:85:5b:16:c3:
b5:e0:bf:ff:63:bc:63:0e:0d:c9:fa:40:d1:48:ce:c2:f2:4c:
0d:e8:a9:7d:bd:89:86:d0:8b:99:47:b3:a5:fe:8a:e6:33:3b:
b3:4f:47:ec:3c:9b:d6:52:e3:3f:dc:79:ee:9f:3b:f9:7b:35:
66:74:38:dd:dc:81:0d:8a:63:5a:90:e1:cd:26:61:47:95:2d:
81:a1:80:22:03:cf:0a:37:ec:14:37:19:8f:82:b0:15:d9:3e:
e2:d8:5d:b3:18:4f:23:ea:0b:64:31:b7:19:33:6e:f7:2a:11:
34:4c:78:c1:1e:11:a2:71:0a:93:f3:79:35:cb:08:84:b8:5f:
03:e9:a9:d3:92:5a:a3:d1:c4:3d:ae:4f:bb:da:38:f6:e9:20:
78:f5:25:20:df:c4:76:fa:fe:05:ef:82:c7:9f:e3:85:b3:f5:
04:0f:0f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org