Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lmSVaTt-UJDPtmBLadL2IuX2nF0.roa
File: lmSVaTt-UJDPtmBLadL2IuX2nF0.roa (raw, json)
Hash identifier: +iHXTlPcmzzH8btablLHcTHzwubzvNp9bL6B5TJ8GNY=
Subject key identifier: 96:64:95:69:3B:7E:50:90:CF:B6:60:4B:69:D2:F6:22:E5:F6:9C:5D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lmSVaTt-UJDPtmBLadL2IuX2nF0.roa
Signing time: Thu 15 Sep 2022 02:39:04 +0000
ROA not before: Thu 15 Sep 2022 02:39:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 150.117.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=966495693B7E5090CFB6604B69D2F622E5F69C5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:58:26:d7:ef:f1:13:15:73:30:ac:65:6b:84:
d6:dc:c8:c6:86:09:63:e2:c0:15:e1:32:47:35:34:
ee:63:0b:18:b4:c7:f5:4d:05:38:4e:3e:cb:20:39:
7a:a5:12:a0:81:c5:06:aa:7f:ea:e0:b3:2a:08:09:
44:47:5c:00:a8:25:95:78:02:a7:51:34:c0:e4:96:
19:4b:25:91:20:9d:65:2c:7b:a8:9c:0f:5f:a9:45:
63:f1:85:68:2e:d5:8a:00:32:f0:74:ba:ab:98:93:
4d:26:b9:ec:4c:ca:e8:d1:47:04:7f:f7:fb:09:38:
13:41:8f:8c:58:c3:4f:7e:33:4d:8e:c9:fb:84:2f:
d4:a8:25:9c:c9:c0:02:11:3f:09:27:ee:b6:d4:68:
6c:26:da:28:d5:b7:98:a3:0b:64:72:fd:38:0b:1d:
23:22:8e:9a:c9:3e:41:a6:36:f2:3d:8e:f8:fb:b9:
0e:77:df:a9:2b:87:53:f2:16:90:13:37:ec:0d:6f:
52:59:fc:09:ce:d5:01:6e:73:ba:aa:c5:00:8f:b4:
1e:15:63:82:9c:10:68:c8:f1:81:39:57:58:59:4b:
30:08:ad:51:8e:be:0a:b6:24:13:cb:15:19:8e:3a:
0a:c9:0f:32:30:63:0c:05:85:cb:73:d1:4c:0c:fa:
c4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:64:95:69:3B:7E:50:90:CF:B6:60:4B:69:D2:F6:22:E5:F6:9C:5D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lmSVaTt-UJDPtmBLadL2IuX2nF0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.192.0/20
Signature Algorithm: sha256WithRSAEncryption
b3:25:14:d2:4f:2d:68:d1:f2:ad:66:a4:3c:b3:08:11:12:5b:
ba:ce:6d:2b:64:89:9c:1d:df:16:f1:c9:a9:30:d5:46:23:f7:
f4:13:b6:1f:db:67:a9:ed:32:83:f4:f9:51:d8:4c:03:58:22:
82:e0:96:a8:12:56:a8:80:8d:75:72:b2:aa:c9:6f:07:cb:8b:
86:67:5b:03:4d:63:f2:7a:e5:2c:16:01:fd:a4:b7:08:38:91:
01:71:67:e7:d1:7f:c9:b6:6d:b3:97:9e:61:5e:f2:0b:a2:1a:
21:ce:d7:fb:8a:97:04:d4:43:aa:2d:65:57:02:58:3b:f7:33:
f0:1a:d7:5c:f0:37:f2:f6:9e:f3:4d:01:fe:d7:85:5e:7e:eb:
4e:38:6f:31:29:92:5b:3b:50:ee:fb:30:97:d2:8d:e6:47:c7:
a2:b6:42:81:81:7e:b0:51:76:ae:83:3c:e0:e8:b1:f6:c1:59:
ad:2c:52:f0:0b:51:e6:40:ed:9e:b3:db:fa:f6:f1:0a:eb:45:
5d:78:b6:0f:16:7b:70:51:58:cb:ac:ab:02:8b:f8:fc:ef:2e:
d1:1c:63:ab:8a:1c:8e:bd:2b:30:7f:e1:99:26:c3:13:07:c7:
56:db:0b:4f:1d:05:ca:5e:ac:a9:15:d3:2a:5c:8c:e9:40:70:
d4:69:49:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org