Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jkfnpVu8qxiM1dO3ZzJfJYtOjyM.roa
File: jkfnpVu8qxiM1dO3ZzJfJYtOjyM.roa (raw, json)
Hash identifier: erBDwdPnsYAOM3g9Kvdu1SE1p1yvk+MspIO37gYqqRs=
Subject key identifier: 8E:47:E7:A5:5B:BC:AB:18:8C:D5:D3:B7:67:32:5F:25:8B:4E:8F:23
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jkfnpVu8qxiM1dO3ZzJfJYtOjyM.roa
Signing time: Thu 15 Sep 2022 02:39:08 +0000
ROA not before: Thu 15 Sep 2022 02:39:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63199
IP address blocks: 203.163.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8E47E7A55BBCAB188CD5D3B767325F258B4E8F23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:02:92:87:bf:93:61:b1:c4:3a:6b:3f:a0:ae:
09:ef:12:38:85:b1:90:4d:a3:f6:c9:b2:29:eb:81:
30:2e:1a:f4:65:08:ea:97:21:29:b2:04:44:c0:98:
61:23:68:6c:35:f7:d0:6c:f0:8d:90:26:d0:76:cb:
25:71:40:36:39:df:e2:1e:77:7e:63:b7:b0:25:6a:
59:5b:cf:57:76:6c:e6:2a:7c:13:52:ef:01:1d:88:
89:9b:6e:96:16:ad:c0:de:b2:2c:96:f2:62:43:76:
97:6b:78:e1:f9:14:51:a0:9a:09:50:62:58:01:7c:
78:a5:e7:e1:2b:c0:66:c3:32:f1:fd:11:54:6c:47:
ba:51:b3:ea:01:b6:9b:ba:2e:ab:79:80:b5:ee:6d:
3c:c3:ae:a8:ef:18:0e:60:fc:53:91:10:9d:4b:4e:
47:8d:d2:1b:a7:55:8f:65:05:32:ff:b3:57:42:ec:
9e:8a:80:f6:ef:b9:d1:41:af:b9:3a:54:56:00:79:
a7:07:55:a1:ab:c1:6f:ef:cd:47:9e:e7:d8:37:5f:
b6:86:5b:15:98:d4:25:87:a2:e7:d2:a3:3d:f7:64:
af:4e:28:ca:31:6f:4c:42:0f:5b:36:fd:29:fb:79:
2c:52:fa:37:0b:e8:ce:e1:24:04:51:30:4d:2a:cb:
ee:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:47:E7:A5:5B:BC:AB:18:8C:D5:D3:B7:67:32:5F:25:8B:4E:8F:23
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jkfnpVu8qxiM1dO3ZzJfJYtOjyM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.216.0/24
Signature Algorithm: sha256WithRSAEncryption
62:bd:d3:87:27:06:47:b8:ca:5a:19:e9:3f:b5:47:63:37:73:
90:62:9e:da:87:39:f8:64:95:a6:04:19:68:cf:fa:ee:07:71:
c7:e8:78:ae:2e:03:9b:43:1b:2d:68:91:ad:8c:49:98:19:98:
5d:f4:9b:d0:00:b6:fc:d5:a7:71:c4:5a:c3:04:55:dd:ac:c9:
e4:ec:71:42:24:a7:20:f4:0e:90:37:ca:26:61:ea:86:e3:2c:
71:28:18:9d:60:21:6d:5d:40:a1:64:47:64:7b:31:01:a8:da:
f0:e6:4a:67:f6:1a:d2:eb:88:30:6f:44:67:d1:44:71:60:0e:
e4:d5:e9:07:e4:bb:81:22:ec:80:56:07:df:18:99:39:98:82:
09:fa:51:b4:3b:86:e7:18:3c:97:43:8d:24:ff:6b:b0:68:e1:
ea:59:f2:32:d8:95:01:c5:a5:59:45:e1:a4:83:2d:cd:d8:58:
35:1e:23:6a:ea:a2:a3:37:36:4b:5a:ba:63:df:39:fb:1f:5e:
c4:29:56:9e:00:aa:09:ef:6b:5c:18:05:a0:1e:a1:5f:58:e7:
35:76:ed:0d:34:c1:2f:87:8f:c6:42:0a:88:0e:00:50:8a:2a:
8c:7a:75:b0:71:1a:7d:8e:d4:17:2c:5f:04:af:bc:bc:26:cc:
d8:a0:51:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org