Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/m8yyIt81hTkmOhX-aGNWGgEoL9E.roa
File: m8yyIt81hTkmOhX-aGNWGgEoL9E.roa (raw, json)
Hash identifier: NCGtC6wNYirVRCQFqUfTffEwIkbm7QsKRZylFpPpSoI=
Subject key identifier: 9B:CC:B2:22:DF:35:85:39:26:3A:15:FE:68:63:56:1A:01:28:2F:D1
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/m8yyIt81hTkmOhX-aGNWGgEoL9E.roa
Signing time: Thu 15 Sep 2022 02:39:21 +0000
ROA not before: Thu 15 Sep 2022 02:39:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9BCCB222DF358539263A15FE6863561A01282FD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e1:13:47:1e:42:cd:67:3b:72:b3:02:55:9f:
ef:89:34:d5:24:09:99:a0:48:26:ce:5e:e5:27:83:
10:a3:27:c1:45:cf:e3:c7:cd:b4:11:21:02:93:f7:
b8:f1:39:50:06:25:fe:ac:5a:b8:96:ba:53:1b:da:
0e:31:03:04:3c:35:29:10:dd:23:ee:6a:d8:a8:71:
63:7c:19:44:7d:a1:37:80:2d:e3:ce:23:2b:99:1c:
53:28:f1:12:3b:4a:f6:3e:ff:c1:20:a3:ff:3c:44:
8e:de:d6:a4:5d:92:32:22:d5:d9:a6:a8:56:e6:b8:
14:14:64:42:be:77:5a:a6:78:b4:60:a2:ed:e7:83:
ec:21:ed:a6:01:93:f0:58:7b:e8:62:08:7a:31:45:
4f:3a:2f:3f:d6:a6:47:c0:7e:15:88:c8:83:5b:ab:
59:30:4f:0f:1d:1f:af:4a:73:9a:d1:ff:79:28:47:
cf:0a:db:9c:0b:c9:01:ca:7f:9e:f7:67:ac:ac:9d:
93:2e:41:79:b9:9d:aa:a0:84:9d:dc:c9:22:7b:10:
4c:b3:0f:d3:4c:aa:4a:ed:1b:d7:4a:ec:46:ee:26:
63:24:7e:32:80:cd:f6:f4:8f:00:4a:d9:ea:ee:87:
cb:80:ec:20:fd:73:0c:47:9b:6f:27:98:29:bc:c0:
1d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:CC:B2:22:DF:35:85:39:26:3A:15:FE:68:63:56:1A:01:28:2F:D1
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/m8yyIt81hTkmOhX-aGNWGgEoL9E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.240.0/20
Signature Algorithm: sha256WithRSAEncryption
44:89:14:0e:2f:05:50:f4:d9:93:7b:8d:e6:cd:45:7d:17:1b:
ae:f7:80:2f:93:10:3c:97:0a:21:43:2b:ac:c8:c5:24:e9:a9:
d7:77:6d:fa:ba:6a:7f:42:7b:de:45:d2:29:88:bc:8c:65:6c:
f8:4c:77:b2:5a:bc:3c:bc:91:df:0c:89:d8:c6:bd:4d:39:d9:
30:65:aa:2e:1f:c1:f4:f4:c6:0f:ba:96:ab:0a:53:3a:9a:41:
25:cb:ef:c0:e0:42:74:57:5a:cc:3f:f3:d0:99:18:31:4b:be:
72:ba:ea:3b:15:c1:d0:76:a0:4d:89:b5:e8:56:bf:67:12:ac:
48:0c:42:f3:ce:88:c9:42:f8:65:d9:ac:cb:b5:7a:fa:1b:d7:
89:4a:21:50:ee:78:8a:b8:0a:b0:64:5c:93:d8:d8:bb:04:0c:
7c:d0:dc:8e:91:2f:c5:5a:93:71:72:5b:b8:b0:5d:5d:83:6f:
8a:bf:9d:d2:52:18:80:23:05:87:71:57:46:b4:e9:15:78:d0:
19:22:b6:b6:4a:a3:11:11:57:be:c5:ee:bb:1d:3a:bd:ad:d8:
f3:c6:1d:14:25:31:52:2b:45:6f:27:e2:3b:ec:25:33:9d:29:
99:9c:f3:dd:9b:c1:e6:41:cb:15:89:55:ac:ed:e3:8c:e4:2d:
5b:0a:2e:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org