Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jh3ACgTV-0r5q8-vHnRDtyIBTaM.roa
File: jh3ACgTV-0r5q8-vHnRDtyIBTaM.roa (raw, json)
Hash identifier: ihV3Z0wrw75XoGbEM/8NVenQ67GW9aINRMYYKGBS3dA=
Subject key identifier: 8E:1D:C0:0A:04:D5:FB:4A:F9:AB:CF:AF:1E:74:43:B7:22:01:4D:A3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jh3ACgTV-0r5q8-vHnRDtyIBTaM.roa
Signing time: Thu 15 Sep 2022 02:38:58 +0000
ROA not before: Thu 15 Sep 2022 02:38:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.236.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:38:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8E1DC00A04D5FB4AF9ABCFAF1E7443B722014DA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1e:42:71:5c:35:91:04:4c:fb:c7:b9:55:1e:
00:f4:b0:02:0b:54:49:77:dc:c0:96:aa:c8:ae:02:
11:57:99:58:f1:a3:04:8c:8b:1e:59:4a:b0:f7:76:
27:80:03:56:4c:6a:65:41:e6:64:70:ab:17:72:07:
81:d6:a2:5a:94:e6:6b:91:05:49:f5:22:ad:80:0c:
7a:f7:57:dd:84:f9:e5:47:4c:aa:c2:3d:b2:04:f5:
39:f5:99:81:32:f8:f4:8b:03:3a:1a:20:ee:20:4d:
28:8a:0c:d3:04:09:a9:35:2d:e2:82:d7:5e:7e:b6:
13:08:1b:23:35:f6:e1:81:18:87:10:6e:33:f6:61:
a8:7d:9f:af:28:e9:bb:08:96:e0:d3:d7:a6:a2:5b:
0e:a6:18:93:2e:0a:b2:d3:3c:44:11:4f:19:b8:47:
a9:08:6e:a1:9a:4d:cb:71:ab:96:e9:60:62:c4:2e:
7e:c0:2a:c7:60:ff:d3:43:6a:9a:58:ff:a1:dc:f4:
bf:86:f7:42:20:ca:65:a6:32:6b:c9:6b:f5:91:a2:
80:10:fc:34:4d:13:6a:4d:6f:80:76:ea:2a:12:48:
45:5f:b8:9d:85:ac:11:7f:a8:1d:51:a4:02:f8:6b:
02:ac:18:5e:cc:f0:4e:ed:00:bb:57:d1:99:63:70:
86:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:1D:C0:0A:04:D5:FB:4A:F9:AB:CF:AF:1E:74:43:B7:22:01:4D:A3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jh3ACgTV-0r5q8-vHnRDtyIBTaM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.236.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:d6:72:5f:a9:28:59:3d:5e:ba:22:59:41:6f:38:df:ba:ec:
40:b2:1a:fa:f7:42:b5:38:7d:20:54:d9:48:03:70:93:00:2b:
3e:64:58:c6:7d:cc:2a:37:cd:0d:b4:66:72:7e:3f:b8:a7:57:
92:18:a7:36:93:1e:17:6f:aa:f1:88:30:09:13:be:f4:75:31:
e1:5f:41:88:32:ee:53:00:51:7a:69:3a:ac:0a:4e:c0:7e:c8:
cc:ee:6c:da:56:af:75:ea:0e:02:6b:27:30:f5:1c:de:f9:9b:
6b:eb:2e:3a:47:13:69:02:4b:0b:0a:43:b6:ab:27:22:36:dd:
b9:2f:1b:72:c1:72:1a:e6:11:ce:88:de:c1:66:b5:80:61:8d:
54:40:63:7b:a0:5b:6f:ae:1a:16:d2:2d:82:b4:dc:a6:02:06:
95:57:a0:ca:df:d5:7a:cb:de:68:3b:86:12:8d:5b:e1:eb:d3:
6e:da:e7:3e:22:5c:e8:06:81:4c:5b:38:3c:65:93:b8:43:b5:
da:c2:15:3a:b6:c8:da:ed:e3:5a:7b:7d:47:7f:c5:c7:12:4b:
36:25:d8:00:a5:9e:18:c2:1f:91:8d:d0:85:6d:e2:65:c3:f7:
55:98:08:74:7f:f9:6a:3d:9f:99:60:1e:27:35:47:02:fb:8b:
0c:95:89:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org