Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/k32ZQdT0MnJayg16pnCsVRvhCq4.roa
File: k32ZQdT0MnJayg16pnCsVRvhCq4.roa (raw, json)
Hash identifier: tjAmV7wBYsn7bACTjE11cJ/OJVneNsYA6WH5rUZ1K00=
Subject key identifier: 93:7D:99:41:D4:F4:32:72:5A:CA:0D:7A:A6:70:AC:55:1B:E1:0A:AE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E06
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/k32ZQdT0MnJayg16pnCsVRvhCq4.roa
Signing time: Thu 29 Dec 2022 09:32:08 +0000
ROA not before: Thu 29 Dec 2022 09:32:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 150.116.0.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3590 (0xe06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=937D9941D4F432725ACA0D7AA670AC551BE10AAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e0:7e:d3:3e:fd:8e:0a:9b:17:9e:af:38:8c:
70:79:33:4c:fc:28:78:c8:a7:82:8f:f0:8d:87:09:
5e:c8:79:d7:53:9a:61:15:cc:bb:1e:2d:a9:75:1b:
5d:ad:8a:40:06:75:d2:60:ef:ac:84:39:cd:94:c2:
a7:c9:d6:95:ee:48:72:a0:8d:78:fe:29:5c:cc:e1:
7c:11:70:2c:63:cd:c6:7b:ca:d3:e1:e0:6b:2b:b8:
86:9a:c4:cc:2a:22:81:3d:7a:47:1e:fa:1f:13:e5:
4c:fe:e3:ed:6f:12:84:a6:60:37:d9:15:cd:6c:2b:
d7:61:04:f6:4a:8c:c5:5b:03:cc:d2:a5:5b:db:e4:
5f:5b:48:1e:e4:99:ba:17:eb:42:90:fc:27:58:73:
34:c7:9c:be:c0:1b:f4:b2:98:70:57:34:fd:7f:7a:
79:23:b6:ac:f6:90:4d:db:b5:30:ab:19:43:4d:8f:
ef:d7:69:f3:c9:09:0b:2d:87:be:b6:9f:cf:0d:d9:
a1:0d:09:c3:26:1b:2d:59:6a:1b:3e:0e:43:a7:85:
3a:04:4f:66:b5:59:4e:6a:b5:29:f0:5f:09:f4:3b:
7e:8d:4c:86:21:51:4e:79:74:44:11:6b:3a:b0:2c:
b4:81:05:26:b6:13:91:55:7b:86:5f:25:df:dd:91:
cf:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:7D:99:41:D4:F4:32:72:5A:CA:0D:7A:A6:70:AC:55:1B:E1:0A:AE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/k32ZQdT0MnJayg16pnCsVRvhCq4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.0.0/21
Signature Algorithm: sha256WithRSAEncryption
0e:d8:ba:72:15:49:69:5b:8f:69:fb:01:26:6b:88:f6:f8:eb:
e0:ba:bf:86:02:36:65:bd:52:63:73:f5:a8:f3:58:8d:b8:65:
ae:44:b7:2d:77:74:3b:5c:14:98:7d:5e:eb:fc:5e:8f:dd:c9:
3e:2c:50:5c:e6:a4:1b:77:8b:5f:66:ea:fb:39:84:4a:fb:11:
4c:3c:3d:e1:c9:e9:91:4a:67:bf:47:b7:31:96:fc:65:31:47:
64:af:b0:5e:5c:6d:18:24:12:e4:a5:a9:66:f7:33:d2:16:55:
63:d2:75:14:63:cd:b4:b5:d4:96:60:99:ac:81:69:42:ff:9d:
44:50:3d:79:1f:80:0d:4c:4f:cd:dd:03:8a:b1:44:59:73:10:
29:53:5c:78:ee:68:78:ea:8c:0d:3a:9c:22:d6:6e:c4:94:75:
77:4a:98:72:fa:8d:49:0e:0f:65:b2:cc:67:9a:31:0d:fb:c0:
87:c9:6f:4c:43:92:9b:04:a0:29:21:f9:70:d8:26:3c:c3:db:
b5:a2:c9:96:8f:de:52:c4:51:e7:ae:1f:72:f2:0f:26:ef:48:
11:b4:15:c1:99:83:58:76:f2:74:bb:dd:77:7c:16:75:91:e6:
ab:22:9f:a9:7c:9f:23:5c:51:12:a1:fa:67:3e:3e:78:95:f2:
d4:40:a7:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org