Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/krWFJdpJIEiTrQea6VuAQSm9QA4.roa
File: krWFJdpJIEiTrQea6VuAQSm9QA4.roa (raw, json)
Hash identifier: /FWml/EuOSyjOsrNmDKiTb26+QtMcW/H3IJMs0Bj7z8=
Subject key identifier: 92:B5:85:25:DA:49:20:48:93:AD:07:9A:E9:5B:80:41:29:BD:40:0E
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 083F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/krWFJdpJIEiTrQea6VuAQSm9QA4.roa
Signing time: Tue 29 Sep 2020 10:02:14 +0000
ROA not before: Tue 29 Sep 2020 10:02:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.117.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2111 (0x83f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:14 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=92B58525DA49204893AD079AE95B804129BD400E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f6:c4:fe:3d:3a:8f:e0:fa:7b:e2:ae:22:cb:
d5:9f:95:bd:b4:36:b7:ae:a5:6b:55:87:5c:e2:14:
ed:69:64:26:1d:70:0d:e8:9e:3a:31:68:d8:02:ea:
dd:54:cf:ff:8a:1d:d3:a0:f9:44:95:11:ed:86:b6:
fc:bf:b0:b9:ca:ea:9d:be:ad:4d:a2:7c:dd:b2:d1:
6b:27:6b:46:cd:63:19:4c:7f:3f:32:0d:26:d0:af:
5a:f0:26:0c:79:05:74:fd:fc:5c:93:41:61:0c:45:
e5:00:fe:52:f0:f3:33:6a:c4:9b:25:d7:bb:da:3f:
43:6a:07:05:e9:af:d9:af:dd:68:e7:eb:fb:96:5a:
57:f8:17:b6:76:97:6c:39:d0:fe:60:b0:46:cd:45:
fe:d0:f2:90:f3:84:a3:5e:60:8d:0a:c9:fb:b8:fa:
e6:1f:43:5f:0d:be:f2:89:7b:14:1a:02:80:fb:0c:
2e:f1:b2:0a:a7:b1:d4:3d:2f:e1:3c:fc:27:3b:8d:
95:79:75:91:e1:8e:15:b2:49:06:ce:a6:f4:05:49:
06:f8:46:a6:ee:fe:af:60:99:69:ca:f2:cb:6e:f0:
22:2d:a1:8c:83:c0:3f:48:27:a6:46:15:8b:ca:71:
43:86:dc:94:d1:9f:15:21:33:59:e8:6a:a5:20:23:
70:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B5:85:25:DA:49:20:48:93:AD:07:9A:E9:5B:80:41:29:BD:40:0E
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/krWFJdpJIEiTrQea6VuAQSm9QA4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.232.0/21
Signature Algorithm: sha256WithRSAEncryption
ae:83:16:42:12:ba:3c:15:44:1d:67:99:ea:07:65:43:0e:58:
0b:84:d5:3a:87:e7:14:2b:7f:00:e7:cf:12:dd:e1:13:27:55:
99:b9:55:83:9f:98:c0:3a:ee:24:c3:f4:7d:24:bd:11:2e:e3:
63:8d:1a:8b:1b:5b:a4:ba:6b:ff:fe:4f:19:ef:0e:47:e9:96:
95:c0:53:98:87:1e:ff:fc:60:f8:01:53:37:57:14:5f:13:95:
c7:63:36:c9:a2:68:56:9c:84:76:ed:74:06:58:11:f5:ee:2c:
ae:7b:f4:99:b7:c1:02:6f:76:0a:d1:90:f5:ac:cf:fa:f0:70:
36:26:dc:6c:0a:b8:b7:35:f8:78:35:4d:2c:aa:f2:51:d9:09:
dd:f4:92:4b:b4:cd:f3:34:ba:3b:e2:6e:31:ae:a3:3e:9c:2d:
a5:d9:9b:a9:b9:16:26:ef:08:3b:91:5c:48:bb:53:fc:61:35:
25:23:07:0f:97:6f:6e:96:81:d5:c5:a8:c4:f8:87:c7:21:b1:
d5:5d:65:68:df:a4:4f:0b:d9:fd:5f:65:88:b3:23:3a:db:37:
0e:e3:07:2d:a3:2a:45:24:f3:e5:34:60:de:fa:6c:c4:41:14:
bd:65:27:48:ba:a1:c8:75:86:b0:50:8f:4c:bd:79:eb:01:b7:
77:8b:61:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org