Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lQDN9xZUr55nRcl3mAq3nbzxr_M.roa
File: lQDN9xZUr55nRcl3mAq3nbzxr_M.roa (raw, json)
Hash identifier: 0bV63/d/2s46W0o0+ObWjeMh64n0puyZA5kM7i2vmD8=
Subject key identifier: 95:00:CD:F7:16:54:AF:9E:67:45:C9:77:98:0A:B7:9D:BC:F1:AF:F3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E17
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lQDN9xZUr55nRcl3mAq3nbzxr_M.roa
Signing time: Thu 29 Dec 2022 09:32:13 +0000
ROA not before: Thu 29 Dec 2022 09:32:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 203.163.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3607 (0xe17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9500CDF71654AF9E6745C977980AB79DBCF1AFF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:61:77:10:99:c1:c9:88:3b:8b:5e:c4:8d:75:
5d:03:36:f6:40:ac:b9:b7:6e:da:56:1a:06:76:2e:
33:8e:0a:63:c6:69:04:29:5a:ac:d3:18:bd:49:e4:
6f:c8:34:3b:ac:1e:ac:43:a1:90:0f:93:b8:fd:32:
08:a9:04:9e:09:a7:9f:3c:d8:3d:7e:62:21:36:27:
71:98:d3:0b:5e:95:d4:e0:14:f3:3c:36:cd:24:14:
a2:56:c7:2f:31:1e:7a:ab:5e:88:a5:59:14:8c:1e:
26:e4:b4:c4:50:e3:14:8f:33:86:76:37:43:22:43:
a8:b7:f9:fa:53:c0:ac:83:6f:2f:f9:f4:b6:7a:cc:
cd:14:74:e7:0a:d9:fa:7e:4d:ef:6c:da:9e:22:5c:
a2:c5:46:be:11:bf:d2:7e:73:91:19:55:53:73:d7:
14:ed:15:9b:1d:7e:b7:3a:34:68:e5:7f:75:3f:e5:
01:33:7a:ab:ed:29:ad:e5:71:88:4f:6b:ab:6a:7f:
bb:fd:68:e4:6b:38:b3:cc:12:b8:c2:fc:dc:84:cf:
bf:21:23:5b:48:fe:89:2a:20:50:ae:75:a5:42:e6:
2e:cc:64:55:1f:69:0f:ff:7e:0f:b8:cb:f6:eb:46:
f0:07:48:47:48:59:03:50:da:9b:2d:63:dc:cd:ea:
e2:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:00:CD:F7:16:54:AF:9E:67:45:C9:77:98:0A:B7:9D:BC:F1:AF:F3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lQDN9xZUr55nRcl3mAq3nbzxr_M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.220.0/23
Signature Algorithm: sha256WithRSAEncryption
68:41:df:61:8a:c4:85:27:8e:56:c7:49:86:6f:17:c8:39:3b:
55:7d:d9:7d:fb:77:c9:2f:22:ea:ea:b5:7e:b9:c4:b7:e0:03:
65:b1:7b:52:09:b0:f6:db:8e:cb:3f:91:9d:ba:86:87:41:df:
f5:29:4a:2f:1a:b4:a4:0d:00:05:d5:9a:9e:d3:a0:3d:79:98:
0f:6c:b5:0e:6e:20:2e:34:67:b8:3d:00:4b:b0:c0:2a:30:28:
2c:df:1c:7f:fc:03:50:bd:0d:fe:91:15:07:4c:e6:27:23:b2:
64:f2:fb:3c:b7:f8:78:8e:34:b5:c2:10:08:9e:b6:dd:f5:ad:
6b:7d:79:1f:f2:24:8a:07:4f:51:75:69:48:76:cc:f4:87:57:
cf:40:69:18:f3:c7:92:7f:83:32:82:57:e7:b0:4b:aa:27:8b:
8e:83:b8:31:d4:ef:2b:70:75:86:b3:20:cd:4d:1a:19:98:4e:
3a:2f:16:ea:9d:d4:ad:4d:23:2c:b8:77:d3:d4:85:64:e7:45:
d9:98:b4:6b:cc:16:97:9a:89:6a:f7:4d:ee:7e:b0:f1:bb:2b:
63:95:81:9a:9d:24:80:1f:77:89:62:51:3e:dd:c9:57:13:f7:
d9:99:b5:c2:c0:40:2d:eb:b7:a3:55:61:d7:68:c1:08:84:2c:
0d:20:0e:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org