Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/j6MLmmK21X-_RU12wihsK_BRXuk.roa
File: j6MLmmK21X-_RU12wihsK_BRXuk.roa (raw, json)
Hash identifier: x4DbzMiRvPPskh/gYlVA/jTAY7QFSy9xMDEzeo4X7qg=
Subject key identifier: 8F:A3:0B:9A:62:B6:D5:7F:BF:45:4D:76:C2:28:6C:2B:F0:51:5E:E9
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DFC
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/j6MLmmK21X-_RU12wihsK_BRXuk.roa
Signing time: Thu 29 Dec 2022 09:32:06 +0000
ROA not before: Thu 29 Dec 2022 09:32:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 223.26.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3580 (0xdfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8FA30B9A62B6D57FBF454D76C2286C2BF0515EE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ee:e1:e3:78:87:37:a9:8b:83:5e:6b:ba:34:
0e:ee:43:31:75:d4:f2:f2:74:b6:fa:a2:54:ca:de:
8f:25:fe:31:c9:ce:c7:7a:ad:04:ae:23:98:b9:3b:
0a:b8:2b:b9:1d:9d:9b:1e:24:20:e7:9e:9a:54:f1:
ba:1c:aa:26:b9:ac:0d:2a:04:a3:e7:e5:83:55:e8:
c7:07:68:58:03:9a:68:48:09:71:cf:5a:28:77:7c:
ed:80:72:4a:f7:2c:16:c9:86:77:66:40:7a:65:dd:
5a:02:86:a3:14:8b:00:13:b4:03:06:ef:00:bf:7e:
24:12:d0:d0:20:11:60:b2:fd:1f:ec:ff:40:6b:6f:
ca:28:d7:8b:4c:7c:3d:23:71:01:2d:24:8e:28:ce:
9d:46:42:43:c3:dd:ff:fb:36:61:75:f2:63:b1:2f:
12:77:d2:68:16:b1:fd:ea:aa:22:ef:0c:78:6d:14:
e8:67:ae:d8:d6:33:1a:40:d1:a1:92:f2:88:44:23:
94:5e:a8:e6:25:33:78:5c:a5:b0:f3:0b:c6:e1:fb:
97:ba:8e:5b:26:7d:79:d0:ca:ce:6a:20:03:61:e6:
2b:ac:a9:7f:89:38:25:4c:af:c7:87:b6:9e:73:ca:
f6:31:d9:f6:ae:c0:a8:00:fc:e7:50:15:03:6f:4e:
c0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:A3:0B:9A:62:B6:D5:7F:BF:45:4D:76:C2:28:6C:2B:F0:51:5E:E9
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/j6MLmmK21X-_RU12wihsK_BRXuk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.70.0/24
Signature Algorithm: sha256WithRSAEncryption
40:9c:57:1d:6f:37:65:68:bb:2b:b1:14:08:2f:a1:87:c9:e2:
f3:55:c4:29:75:6b:b7:89:5b:d9:be:0b:04:04:b0:ac:b7:f9:
0b:97:ea:3f:62:76:c1:0d:4c:79:a7:d6:c0:27:90:b4:49:31:
f2:f9:86:36:88:13:ce:ff:c4:aa:85:57:24:74:46:4e:20:be:
ae:05:34:7f:72:ce:20:a6:66:ab:8c:92:77:c1:79:2d:66:f4:
4a:3a:29:cb:17:73:d7:64:e9:c1:a9:29:d9:32:c2:07:23:d1:
68:e6:32:fc:1c:a0:f8:4b:8f:c1:e4:67:2c:10:ec:92:0f:88:
ea:c8:05:29:57:f0:7b:f4:a1:c5:3f:40:60:da:7e:8c:33:70:
b8:70:a2:c6:37:70:d0:f8:08:4c:fd:69:a7:06:f2:65:04:09:
44:74:0e:f0:ee:40:d6:bb:bd:ed:c1:f1:c0:f9:4e:42:b6:6c:
71:be:e1:f1:40:0f:35:8e:6d:23:60:7c:41:79:f3:4d:41:fe:
27:b8:2a:ce:54:35:a5:e8:d0:f8:e2:0f:19:ae:84:99:03:70:
83:ed:ff:92:d5:f4:1a:72:4c:59:5e:ec:95:a1:fc:33:31:92:
aa:0a:05:10:f4:9b:84:4f:2a:63:8c:10:0f:60:1e:bd:96:90:
ea:c7:26:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org