Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jAZg89G_K2SL0TTYKi2Y21zrsls.roa
File: jAZg89G_K2SL0TTYKi2Y21zrsls.roa (raw, json)
Hash identifier: N2ZTxBn5PFo4ZLMe9vGTbfwQmIjtj8UW20GQW5kmwo0=
Subject key identifier: 8C:06:60:F3:D1:BF:2B:64:8B:D1:34:D8:2A:2D:98:DB:5C:EB:B2:5B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E1F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jAZg89G_K2SL0TTYKi2Y21zrsls.roa
Signing time: Thu 29 Dec 2022 09:32:16 +0000
ROA not before: Thu 29 Dec 2022 09:32:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131600
IP address blocks: 223.26.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3615 (0xe1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8C0660F3D1BF2B648BD134D82A2D98DB5CEBB25B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:9e:44:d0:ec:bf:68:43:a0:11:cf:57:a2:ca:
31:d5:fb:66:24:cf:73:2a:68:cc:43:f8:61:b5:1f:
b4:c6:f6:48:2d:51:3c:db:ed:80:e4:36:b2:93:a4:
3d:96:ee:c7:e0:c2:c2:06:c7:1e:fb:5b:4d:b9:5c:
03:df:0b:25:35:fd:19:48:2f:2a:ea:54:71:e7:39:
44:02:f4:68:0b:81:8a:9d:1e:d4:ad:64:94:eb:87:
b3:fd:51:a5:8e:d5:13:77:61:0c:7d:68:94:50:4b:
c9:df:9b:fd:f8:90:48:21:e4:ec:a6:02:dd:ff:e1:
33:1e:65:0a:8a:73:13:7e:30:96:28:cc:90:c2:0b:
19:b7:4a:60:37:ba:cc:d1:c3:51:f9:18:e6:d8:9d:
a3:d6:36:e7:1b:46:1d:5d:c0:1f:24:1d:ad:09:f4:
c0:e6:08:b8:b9:a3:6e:c9:d5:ab:bb:d1:70:36:c5:
35:03:33:13:49:39:8f:22:88:78:f5:b5:b1:90:f8:
8e:b2:1e:18:d2:55:e5:e4:4e:56:61:b1:de:bc:da:
be:6d:62:4a:35:83:76:52:f8:72:8c:61:02:9f:ec:
9b:42:04:75:9b:80:a9:d5:18:9a:43:b1:a0:13:12:
00:e3:3f:d3:00:90:bd:13:31:c7:96:7d:c4:cc:c8:
2b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:06:60:F3:D1:BF:2B:64:8B:D1:34:D8:2A:2D:98:DB:5C:EB:B2:5B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jAZg89G_K2SL0TTYKi2Y21zrsls.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.68.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:18:59:e7:bd:88:b9:b8:73:49:0c:6c:d4:38:90:db:78:6a:
4e:9c:3c:b7:5e:cf:f3:73:88:52:f3:47:ab:92:b3:bb:43:a2:
c9:f3:27:15:2f:d4:62:60:58:f9:69:2d:d5:c3:8c:9a:db:55:
8a:b2:2d:cb:0d:cd:b8:2c:e6:c2:86:f3:5c:99:f9:f4:8f:67:
02:f0:d7:a2:78:a3:5a:fe:7f:23:fc:e5:cf:a6:98:6d:0a:10:
90:3f:af:91:fc:d7:dd:11:1d:a5:4a:a8:fe:ac:16:a4:c3:95:
40:a0:eb:53:ac:69:6f:f0:94:66:5a:89:ce:a4:6f:cc:4d:4d:
a0:66:98:de:8e:b8:16:f1:10:05:68:37:59:7a:fd:31:dc:55:
f8:39:f9:77:8d:a9:56:b5:3b:f8:18:be:44:75:b2:35:71:ae:
57:39:cc:11:11:31:b7:d2:36:32:5f:0f:61:10:a1:30:ba:39:
94:84:65:69:5f:b2:a3:51:01:61:ec:37:5f:8e:60:27:17:06:
de:ee:1a:6f:8e:a4:81:0a:ad:42:6f:3a:e8:0e:cb:c9:11:42:
0c:9f:e0:06:b2:37:dc:b3:6b:b0:66:9b:89:73:a5:41:c2:3d:
6d:84:55:bd:7b:4b:5b:d5:88:b2:25:4f:b6:a7:49:21:8d:ef:
d8:0a:98:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org