Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/j-QnNDWoG0ID84WJNJubSGYXJNo.roa
File: j-QnNDWoG0ID84WJNJubSGYXJNo.roa (raw, json)
Hash identifier: KbKSDkVml2ii3PvcAdRPdWP/v4g6L5vZRsYCuP/wJIU=
Subject key identifier: 8F:E4:27:34:35:A8:1B:42:03:F3:85:89:34:9B:9B:48:66:17:24:DA
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BFE
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/j-QnNDWoG0ID84WJNJubSGYXJNo.roa
Signing time: Wed 29 Sep 2021 02:38:55 +0000
ROA not before: Wed 29 Sep 2021 02:38:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 150.116.52.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3070 (0xbfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8FE4273435A81B4203F38589349B9B48661724DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e3:1f:c4:ae:45:fd:7f:20:9a:be:77:43:63:
20:45:4e:e2:27:61:e8:dd:8c:5e:05:ca:fd:aa:10:
5c:37:32:dc:d2:3f:03:86:5d:ff:8b:54:e6:33:29:
cd:68:11:cb:a1:12:3e:09:b9:6a:12:2a:28:03:eb:
05:31:be:10:f2:f0:ee:a2:77:a8:fb:ad:e3:62:aa:
6a:a9:a7:44:73:ec:a7:f9:6a:e7:4c:97:f7:c9:3c:
f6:f2:72:3b:90:e7:40:8c:a5:b0:45:44:54:0c:75:
2f:f6:37:e6:b0:4e:0d:9e:18:9d:3b:b2:f0:92:80:
95:8e:21:e5:63:4e:2d:a2:d4:49:3e:f8:b0:32:85:
62:13:9e:06:82:20:9f:13:d1:aa:b0:c7:1e:ff:e3:
23:17:0d:2b:2e:92:99:69:b6:21:66:d3:2c:63:f1:
14:7d:98:3c:6b:c8:a0:d7:0f:71:ab:7a:3f:44:99:
91:b9:cc:fd:db:56:f2:46:22:d3:0c:6b:48:50:e7:
cc:6b:60:8c:e2:3a:03:e2:94:1f:d9:21:45:c4:0c:
e4:79:79:3a:58:a7:cb:25:f5:3c:11:28:e7:39:ef:
69:9c:16:49:14:1d:99:07:88:fc:73:c7:24:37:0e:
33:64:6e:b7:47:c0:fb:b3:22:78:21:43:5b:c4:56:
97:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:E4:27:34:35:A8:1B:42:03:F3:85:89:34:9B:9B:48:66:17:24:DA
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/j-QnNDWoG0ID84WJNJubSGYXJNo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.52.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:c2:fc:e8:35:7a:a5:42:b1:fd:48:3f:3b:c1:85:2f:6d:9b:
94:95:ff:8e:40:64:fe:55:13:ed:d3:09:f5:a0:a6:b0:62:ef:
9b:15:f3:d9:f9:18:85:21:5a:f3:b6:84:ba:74:62:4e:04:3f:
db:6b:77:f2:2b:ab:69:fe:f7:03:03:a2:12:f2:2c:a7:be:73:
7d:ef:d3:57:ac:fe:04:fb:4d:e5:ad:e4:9e:81:09:b8:8b:6a:
22:70:12:b6:de:c9:f3:ae:ea:ef:96:65:0b:50:65:23:c7:bd:
cc:2d:98:43:aa:46:2e:ea:9a:28:78:8f:b7:58:14:5e:18:37:
77:02:03:d0:ed:b8:99:d6:bb:c5:47:dd:f8:6a:4a:8d:24:4d:
7d:7d:5b:41:a2:09:3f:a6:fc:ec:c3:c0:fa:13:86:99:0b:d8:
65:db:e8:0c:53:1f:2d:88:d6:37:28:b6:6c:5a:ca:1e:d5:40:
40:4a:13:2d:27:0d:fd:13:e3:3d:50:08:35:73:55:c3:d5:4c:
6f:81:4a:4b:51:f1:cf:cb:94:e4:16:11:86:ee:fb:55:10:63:
78:74:1e:85:42:7c:16:00:50:19:01:e9:f6:a4:2d:a5:bc:c7:
67:22:7c:c6:dd:0c:65:b2:80:1f:4d:d8:5e:aa:5a:7e:05:d6:
94:81:fb:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org