Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lkJXPjAGnAfvt2SQEo1-CkDFvV4.roa
File: lkJXPjAGnAfvt2SQEo1-CkDFvV4.roa (raw, json)
Hash identifier: /1F33+4j5wirISy6W9jU/Vi6R8XVcQs5ninytWQ79hQ=
Subject key identifier: 96:42:57:3E:30:06:9C:07:EF:B7:64:90:12:8D:7E:0A:40:C5:BD:5E
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DBD
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lkJXPjAGnAfvt2SQEo1-CkDFvV4.roa
Signing time: Thu 29 Dec 2022 09:31:48 +0000
ROA not before: Thu 29 Dec 2022 09:31:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 223.26.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3517 (0xdbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9642573E30069C07EFB76490128D7E0A40C5BD5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:54:03:60:6e:f1:25:38:71:d0:45:0c:ec:06:
a6:c9:00:7b:6b:e5:88:df:f9:f0:ee:a9:b0:79:72:
75:2c:c9:78:f2:3c:04:ef:d2:c1:35:15:d3:a2:d0:
c8:92:57:d4:8d:a8:74:b5:f4:4f:b9:76:d1:33:4d:
08:1a:26:37:c1:74:12:c5:53:6e:d1:b4:98:2b:c9:
76:ce:c6:32:eb:c6:64:81:d5:3c:e1:c9:99:90:08:
46:38:ff:3b:1e:3c:b5:b8:ba:96:7c:78:b7:5b:96:
33:ab:04:81:98:94:ca:21:f9:55:80:b9:bd:bd:1b:
a5:30:c7:6b:d9:e0:83:9e:ba:58:cc:34:1c:18:2c:
61:03:79:48:6d:86:cd:23:01:01:21:7e:e3:35:4f:
a8:53:42:67:8f:a7:d6:ce:a2:72:26:f9:98:fc:38:
4d:ae:b1:dd:ed:3f:e8:2e:56:77:e7:b8:cc:b0:88:
66:17:93:08:97:41:9d:68:42:86:25:dd:54:fd:89:
80:7e:f9:99:90:90:2a:31:7f:fc:4f:0f:bb:a9:70:
5c:a8:cb:9a:59:39:7f:ae:dc:ed:c3:75:6e:29:e1:
83:f3:dc:6c:90:16:1e:20:22:5f:ea:6b:1f:ec:11:
41:37:5b:c4:36:ef:5c:fe:47:40:2e:52:ce:e1:eb:
6f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:42:57:3E:30:06:9C:07:EF:B7:64:90:12:8D:7E:0A:40:C5:BD:5E
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lkJXPjAGnAfvt2SQEo1-CkDFvV4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.112.0/20
Signature Algorithm: sha256WithRSAEncryption
32:8e:fd:eb:9a:d0:14:cd:f2:29:7f:d8:fd:73:df:cf:ea:f3:
2a:ab:ce:d5:46:50:32:4d:55:29:1b:3a:26:c5:cc:a0:43:4b:
18:aa:4f:9b:09:32:06:81:56:22:25:34:b4:37:7e:4f:6c:14:
00:7c:ae:13:0b:94:cc:95:3d:4a:cd:c3:9f:fe:14:53:9f:e6:
58:ab:3a:7e:43:c3:1b:91:f8:75:00:18:9f:27:40:c3:c1:04:
71:3f:18:7d:2a:5c:b7:5a:d8:8e:d9:74:5f:2c:6b:2f:e6:8b:
81:5f:99:4f:b2:dc:c0:e2:32:2c:7b:e9:8d:79:64:e0:76:7a:
e3:54:8d:63:a6:26:ef:8c:93:75:55:67:1e:65:73:29:a1:4e:
6e:b9:66:7d:c2:10:53:f5:98:77:41:89:58:40:b3:99:61:0d:
4b:f6:63:4a:25:87:c0:dd:1e:26:96:ba:2c:0a:56:de:90:1d:
c6:48:b6:ab:12:9a:09:73:43:2e:f5:b1:5f:bc:9d:a8:90:be:
0b:26:5c:44:1a:78:fc:ee:98:fe:58:4e:30:f4:f6:0b:7d:b0:
09:1c:94:14:d2:24:b5:62:91:f4:a1:72:ea:b3:e9:32:ad:7d:
e9:30:38:2b:69:68:c8:95:91:57:69:36:7f:e3:3a:70:a5:ad:
35:47:01:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org