Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mS_oj5qtfXt6YVJ95AxWDngGJaU.roa
File: mS_oj5qtfXt6YVJ95AxWDngGJaU.roa (raw, json)
Hash identifier: STQ+pAQ6Hk/QCu4EqtLhdLtQqMQ55hLwSFgHWykiDHY=
Subject key identifier: 99:2F:E8:8F:9A:AD:7D:7B:7A:61:52:7D:E4:0C:56:0E:78:06:25:A5
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 086C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mS_oj5qtfXt6YVJ95AxWDngGJaU.roa
Signing time: Tue 29 Sep 2020 10:02:27 +0000
ROA not before: Tue 29 Sep 2020 10:02:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 43.240.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2156 (0x86c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=992FE88F9AAD7D7B7A61527DE40C560E780625A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:95:1a:8e:f2:9b:05:fd:94:eb:f8:71:b1:cf:
04:3f:76:ef:97:e4:77:a9:c0:b6:83:bd:dd:88:6c:
4a:23:5f:28:3c:93:ee:0b:65:9c:72:fd:3e:ef:33:
17:e9:51:44:71:da:6b:72:bb:4b:91:01:c5:d8:99:
0c:a3:94:ea:b0:a7:b5:c0:54:6f:fd:40:57:f7:07:
57:93:79:f3:5a:1c:a5:c0:be:7b:c2:75:f4:52:ab:
44:88:46:c5:79:6b:21:f0:ef:1b:f1:78:6b:74:65:
04:a7:0b:e1:3e:97:a5:c9:4b:15:e4:87:4a:b6:70:
ba:44:67:7f:94:88:d4:58:0e:e2:ee:f7:b6:38:fa:
99:59:3e:f5:4e:95:1b:b6:a6:ad:55:38:97:03:7d:
e7:1e:e5:b6:04:41:ce:40:2e:a2:f0:31:12:ed:6e:
7b:ea:cc:83:61:20:4b:f8:62:1e:35:5b:df:bb:cb:
39:fb:f4:d1:85:b9:66:74:05:72:1b:e6:6d:f7:fa:
08:10:e5:ca:80:76:31:1d:db:0a:f9:70:3f:3d:d9:
ee:1f:19:0a:db:85:14:bd:3d:bc:42:f3:06:74:db:
8c:00:b4:12:3e:80:6e:42:fd:ac:f5:1e:2a:eb:06:
b1:51:e4:d8:28:8b:79:7a:60:c6:a1:b2:c4:43:98:
34:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:2F:E8:8F:9A:AD:7D:7B:7A:61:52:7D:E4:0C:56:0E:78:06:25:A5
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mS_oj5qtfXt6YVJ95AxWDngGJaU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.240.152.0/22
Signature Algorithm: sha256WithRSAEncryption
49:fc:44:9f:fe:a2:21:50:da:bf:44:52:17:e9:22:fa:96:f1:
0a:6e:69:89:56:f9:4e:e6:1d:06:af:29:a7:33:61:cc:52:6f:
ef:66:b8:ae:23:5e:d1:71:fa:9f:fb:eb:8b:e0:89:c9:92:7b:
ce:13:09:d2:43:48:ea:09:bd:38:eb:2c:35:ad:2c:c4:80:69:
f5:33:cf:9c:02:0a:01:7f:c3:41:91:c6:76:45:20:15:b2:3c:
8f:c7:26:4d:9e:27:4c:c7:87:60:af:4e:7a:b4:34:9c:6a:25:
35:89:7e:85:cc:cd:57:43:ce:d5:ae:b3:80:8d:3c:56:df:ed:
3f:ad:9d:52:39:8f:cc:92:14:28:e5:c7:63:65:56:a9:5f:82:
27:79:df:89:7d:e6:33:42:2f:c3:89:b3:f7:1b:44:12:11:e4:
32:83:f1:b6:eb:1e:ba:f8:8d:91:5e:30:b9:82:12:99:74:b8:
49:27:90:11:a6:f6:e7:8e:7c:e1:de:37:85:e3:3d:ec:8f:ef:
20:1f:4c:ae:a3:eb:a1:f3:4a:3e:a4:7a:cd:45:3d:84:d6:7d:
29:c1:46:e3:bb:1d:8a:d0:69:7a:7d:8a:a5:b8:a7:3b:9c:40:
0e:94:e0:d0:21:c8:53:b0:82:18:c9:84:1c:a5:89:4c:ad:8c:
f9:42:10:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org