Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kYt5v0USGAAMRssGHuvXgEYmD8k.roa
File: kYt5v0USGAAMRssGHuvXgEYmD8k.roa (raw, json)
Hash identifier: NmAbfpeBy5iqev9D2T8kA2XPOaNiX/W79V0V1iswX7s=
Subject key identifier: 91:8B:79:BF:45:12:18:00:0C:46:CB:06:1E:EB:D7:80:46:26:0F:C9
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E20
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kYt5v0USGAAMRssGHuvXgEYmD8k.roa
Signing time: Thu 29 Dec 2022 09:32:16 +0000
ROA not before: Thu 29 Dec 2022 09:32:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10085
IP address blocks: 150.117.104.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3616 (0xe20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=918B79BF451218000C46CB061EEBD78046260FC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fc:15:8e:bb:01:4e:c8:2a:00:33:98:06:62:
67:3d:b6:21:3f:c5:4c:9f:a7:cc:3f:11:29:98:05:
ad:3a:ff:a2:7a:69:c2:01:a3:ac:ab:01:65:79:e4:
fb:8c:81:a8:56:2d:47:e9:fc:d8:13:4a:60:c0:8b:
d9:a4:cf:b2:d6:98:81:28:54:fe:a1:b8:75:83:b9:
d1:09:b9:74:ad:da:eb:fd:0d:35:c6:a6:79:5a:36:
3a:a4:35:99:2a:e6:39:a2:a9:c6:ac:e0:7f:82:a7:
58:e3:73:3c:61:0a:12:22:42:d3:99:7b:78:04:63:
81:8b:8e:27:af:f0:ba:11:df:c0:6d:13:3d:c0:29:
98:df:cd:c6:3f:42:ca:6e:8d:e9:ff:e4:b7:07:61:
37:0a:b0:09:6d:c6:2d:c4:04:7a:3c:79:91:6c:d4:
3d:4d:dd:64:e7:32:ef:c9:7e:a7:f3:2d:88:08:f5:
b3:c8:e2:4f:b4:c9:4d:14:cd:73:a3:28:03:1e:65:
ea:ac:91:cb:1a:b8:7a:a9:ef:98:7f:5f:bc:fc:8b:
99:31:52:0b:4f:30:db:5c:fe:e1:87:58:e7:15:61:
cb:fd:9c:31:be:c5:fc:a7:fd:03:d2:43:79:50:83:
50:a4:c7:a2:a1:f0:0a:2f:1c:22:a8:e3:12:d3:08:
28:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:8B:79:BF:45:12:18:00:0C:46:CB:06:1E:EB:D7:80:46:26:0F:C9
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kYt5v0USGAAMRssGHuvXgEYmD8k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.104.0/21
Signature Algorithm: sha256WithRSAEncryption
85:63:54:6c:08:f0:cc:36:ad:13:3c:ca:87:46:57:83:0a:f6:
67:49:1b:6c:ae:f6:cb:d5:00:df:14:39:8b:60:ba:eb:fd:21:
b9:eb:9c:b3:88:4d:80:3e:da:bd:da:01:93:5e:bf:96:ef:dd:
f0:0c:7a:b9:9d:24:e8:9d:d1:f0:04:71:51:00:74:12:07:24:
44:16:43:ac:46:dc:76:60:c4:7f:7e:41:7e:1e:f4:9f:31:f2:
01:a2:53:14:14:d1:da:00:a4:4c:33:91:c0:13:ac:3a:c9:4e:
6c:70:f0:de:85:6c:4d:ed:15:68:01:1e:74:5f:a2:d0:21:2c:
f1:6c:a6:5a:b1:73:c3:53:21:d1:13:3e:2c:72:d5:b2:32:fe:
c8:3e:a4:fe:8c:25:9c:6a:de:15:9d:f3:46:da:10:6e:6a:2d:
0e:55:d0:d5:d7:1b:ea:15:78:d8:4d:49:aa:76:4f:81:e7:19:
11:29:1c:8b:14:d1:f8:89:4e:ed:e2:ff:e3:20:7b:2e:36:b4:
1e:71:8b:1e:b0:fd:ba:b9:57:a5:a1:aa:f6:fc:f5:c5:aa:2e:
04:81:a1:71:32:f3:de:92:f2:d3:bd:f0:f5:18:ff:76:08:31:
a8:ac:2b:19:34:02:f6:32:ad:df:f5:ec:22:4e:74:ce:66:b8:
1a:d5:6f:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org