Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/iK4FB8sCa8B2r6rtAC-7xUqMMnI.roa
File: iK4FB8sCa8B2r6rtAC-7xUqMMnI.roa (raw, json)
Hash identifier: QTUsju6A84Nhv6v8/PRc00DJseQWoJZabSkcvIjSdZk=
Subject key identifier: 88:AE:05:07:CB:02:6B:C0:76:AF:AA:ED:00:2F:BB:C5:4A:8C:32:72
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BDD
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/iK4FB8sCa8B2r6rtAC-7xUqMMnI.roa
Signing time: Wed 29 Sep 2021 02:38:47 +0000
ROA not before: Wed 29 Sep 2021 02:38:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.116.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3037 (0xbdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=88AE0507CB026BC076AFAAED002FBBC54A8C3272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:14:f4:11:56:2e:e8:18:39:7e:63:0e:50:a8:
6b:97:33:2f:40:b6:49:a2:9f:b1:d0:a1:78:02:98:
57:08:77:27:88:7a:c0:39:10:96:fc:4e:c8:a6:93:
6e:79:68:48:aa:f4:6c:0c:1f:ce:e0:e4:07:3c:8a:
2e:7d:eb:04:19:8e:90:ef:72:9b:22:2a:66:17:b6:
c3:a9:a6:cb:45:1e:27:59:74:ed:6a:da:30:ea:ca:
77:9a:01:8c:43:3b:20:44:c8:77:ee:b2:43:99:b6:
ac:1f:d5:33:f5:e0:b1:42:85:d8:14:b0:8a:c1:4a:
09:d8:ef:18:76:77:9f:8f:d3:95:6e:f7:28:a2:ed:
40:7d:61:67:1f:41:78:b2:a5:ab:10:f1:2e:a8:de:
f3:bf:91:cd:17:fa:61:41:93:d5:3f:51:3d:0a:23:
bc:8e:12:bf:dd:78:af:17:64:59:4b:b0:c4:c4:a0:
3f:51:e5:3d:92:9a:19:6a:0d:02:3e:1f:eb:ac:ee:
70:e6:76:e7:75:f8:5c:9e:28:2d:21:43:58:a4:4b:
4d:90:a5:66:91:32:5d:3e:83:3d:6a:f9:03:95:ff:
a7:e5:70:92:27:d3:74:20:dd:36:80:7f:90:ba:86:
1a:a1:5d:ab:fc:b5:76:7b:a7:26:5f:4f:56:e3:a9:
59:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:AE:05:07:CB:02:6B:C0:76:AF:AA:ED:00:2F:BB:C5:4A:8C:32:72
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/iK4FB8sCa8B2r6rtAC-7xUqMMnI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.84.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:7e:7f:5c:1c:e9:35:25:5f:d5:a8:85:cc:d8:7a:78:3c:ea:
0b:a6:68:8a:9a:51:d7:70:61:fb:0d:3c:a3:cd:ab:42:1c:db:
18:0c:4d:11:a7:6d:79:f8:ed:e1:25:dd:77:15:3d:31:2b:63:
8d:56:9c:11:2d:a0:e5:fa:07:20:2a:2f:2e:e9:15:ee:71:f9:
19:6d:bd:48:d8:4e:1b:e0:2c:7f:10:dc:c6:29:2e:67:1a:01:
b3:0c:82:c0:62:45:38:e8:cc:92:8b:40:2b:80:f8:d6:95:fa:
ac:a8:0d:13:3a:71:e3:98:46:0a:79:87:47:57:5a:48:cd:87:
6b:aa:a1:da:50:8b:16:ff:f6:63:cb:6c:89:48:3d:98:26:3e:
cd:7b:1f:26:85:ad:30:ac:9d:1d:00:08:80:f2:18:df:b4:ee:
23:98:69:a8:f4:a6:27:96:4c:46:e3:44:24:32:43:ee:21:4b:
c9:73:1c:7e:bc:64:f9:2b:93:06:e7:84:4f:85:ed:c5:cc:9b:
04:86:2f:e0:ed:67:ab:aa:ce:a5:38:dd:fe:a9:7c:41:ad:01:
40:ad:52:2f:5a:44:c0:05:f9:85:de:f2:42:8b:ab:10:a2:c0:
53:65:34:e2:fc:3d:b1:f4:ed:30:b0:6c:d7:7c:88:cf:1d:a4:
da:c5:3c:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org