Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kVAwWxE3amVJFDeMawyK9IXZlb4.roa
File: kVAwWxE3amVJFDeMawyK9IXZlb4.roa (raw, json)
Hash identifier: FIQF7zLZbG5ROaPP77XG6I2Ips2M5lHF4f+1TTsG4uQ=
Subject key identifier: 91:50:30:5B:11:37:6A:65:49:14:37:8C:6B:0C:8A:F4:85:D9:95:BE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AA6
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kVAwWxE3amVJFDeMawyK9IXZlb4.roa
Signing time: Sun 07 Feb 2021 11:50:45 +0000
ROA not before: Sun 07 Feb 2021 11:50:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131607
IP address blocks: 150.117.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2726 (0xaa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:50:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9150305B11376A654914378C6B0C8AF485D995BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:47:77:cb:85:b4:69:98:89:b9:5a:d9:57:29:
48:2a:49:6f:32:6e:75:53:89:83:a8:da:ea:b3:9e:
8f:5b:cf:e7:e0:bc:05:81:70:a0:91:2e:a2:ff:5b:
94:62:09:52:55:1b:7c:31:6f:ed:0d:88:a3:01:07:
3a:ce:c3:8c:2e:22:f6:78:6b:28:b8:7f:05:dc:c4:
d0:6d:98:d0:fa:b0:26:3a:19:f5:73:15:7b:6d:34:
16:e3:21:6f:b4:f4:8c:1f:88:44:b2:47:1e:8c:27:
dd:7c:98:3f:d9:0e:b0:09:8d:c4:7b:3a:a9:c6:1a:
13:18:72:80:dc:b8:01:b3:73:09:d5:a9:aa:49:69:
4d:0d:57:cd:6f:05:2d:b2:31:a3:39:df:ec:c5:69:
d6:a8:a7:24:4b:0f:b5:a2:61:18:5d:9a:e0:27:9c:
66:99:a9:4a:ea:4c:5d:aa:12:79:e2:5c:36:76:20:
ee:3c:1e:5e:c4:76:3f:0a:4a:9d:16:e0:e2:e9:66:
77:ab:c7:d4:87:e8:e8:44:a1:35:db:bc:1d:5e:b1:
65:9e:97:16:6b:fd:2d:01:e1:d0:fd:e9:b4:cb:cd:
4c:c3:75:02:39:51:82:cf:6f:ab:ff:ad:f8:6d:d4:
e7:b2:43:29:11:06:d0:c4:7b:f7:24:96:eb:b1:61:
8b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:50:30:5B:11:37:6A:65:49:14:37:8C:6B:0C:8A:F4:85:D9:95:BE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kVAwWxE3amVJFDeMawyK9IXZlb4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.224.0/21
Signature Algorithm: sha256WithRSAEncryption
59:a8:7f:b3:7b:cc:33:c5:c4:90:b4:b0:28:91:50:34:a8:2f:
9f:00:b5:1e:ed:3b:b3:29:78:00:26:c7:fe:b3:61:0a:1c:32:
82:ab:7d:2f:a2:4e:74:18:7d:24:3b:68:98:7a:11:13:90:46:
b3:dd:29:92:1b:9b:05:63:05:c9:17:10:1f:1a:60:2a:d3:85:
c6:a2:41:80:ab:b9:88:5f:9a:fc:9f:87:bf:53:b3:ef:cd:08:
fa:9f:94:db:48:80:b6:46:0f:04:ec:3b:f1:19:6a:cd:47:43:
bc:71:72:76:85:10:bf:44:f4:92:25:28:c2:89:e0:23:ad:92:
67:a4:e5:5e:be:2d:1e:b5:2a:46:25:ae:7f:32:8d:7d:9d:11:
b8:fe:72:16:eb:d8:6e:fa:4b:f8:b6:d8:1b:93:7f:9f:d5:3b:
4e:36:2c:dd:be:fe:f3:19:8c:53:9f:60:1d:c6:1f:6c:11:de:
bb:1e:52:92:ab:cc:6b:31:7b:5d:66:f1:3c:39:6d:d8:ef:ea:
b0:e5:f3:91:e1:43:9b:12:a4:e6:7b:3e:f7:37:70:1d:09:39:
f7:4a:e2:a1:3d:d3:ca:4f:0f:93:ab:71:e4:2d:df:c2:ab:37:
bc:4d:bc:fe:2b:47:4a:f9:83:f3:88:c0:3c:8a:9b:a7:ba:72:
cb:54:5c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org