Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mxNZXsQSmVZ0OR-UU2V2g8Ywm8k.roa
File: mxNZXsQSmVZ0OR-UU2V2g8Ywm8k.roa (raw, json)
Hash identifier: TtKgCNRDzcqoIDjI2zVCQAdHhnmhqoD+6kbx/Ki9qDM=
Subject key identifier: 9B:13:59:5E:C4:12:99:56:74:39:1F:94:53:65:76:83:C6:30:9B:C9
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C20
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mxNZXsQSmVZ0OR-UU2V2g8Ywm8k.roa
Signing time: Wed 29 Sep 2021 02:39:04 +0000
ROA not before: Wed 29 Sep 2021 02:39:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 223.26.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3104 (0xc20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9B13595EC412995674391F9453657683C6309BC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f4:98:4f:82:06:09:90:fa:a8:22:ce:ec:a6:
8a:07:c1:59:e6:d3:25:a2:99:9d:45:6e:6d:39:73:
e4:bb:a1:01:88:96:e5:9a:ce:fc:cf:d5:c4:55:93:
4c:c2:2e:e3:9e:b4:ab:f3:1d:58:1f:cf:db:d3:7d:
c4:c1:0a:94:7f:c2:b4:16:87:1a:36:80:0f:d8:6f:
52:37:10:fd:2f:22:6b:39:e3:d4:bc:97:00:9a:08:
2c:e8:11:c7:fd:d5:62:bb:6f:ac:a1:88:3d:8b:67:
a4:92:88:ff:dc:f1:e0:b9:45:b6:fc:1e:2c:59:3b:
34:cb:35:a3:ca:7f:fc:43:42:ac:a3:4f:b3:0d:88:
4f:8d:67:75:07:9a:61:6d:01:6e:a7:10:b9:7a:2c:
4d:cf:81:ec:c0:5f:fb:e2:85:e8:5b:f2:d0:83:78:
a0:c5:c0:06:51:cf:83:52:f4:25:aa:ac:3e:fe:a1:
c2:2c:ff:06:49:b0:c9:61:0a:f8:4e:f2:e4:03:1a:
3a:6c:3c:19:87:1d:65:bc:b8:7f:08:9b:2a:6a:c3:
b6:30:e3:d3:2f:4d:98:13:fb:62:6f:fa:01:60:75:
66:40:78:6e:48:00:64:ba:3a:8b:b3:36:95:e3:5d:
59:d9:c1:58:50:11:70:08:cf:9d:df:2f:b0:f9:b9:
35:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:13:59:5E:C4:12:99:56:74:39:1F:94:53:65:76:83:C6:30:9B:C9
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mxNZXsQSmVZ0OR-UU2V2g8Ywm8k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.112.0/20
Signature Algorithm: sha256WithRSAEncryption
00:fb:9c:70:94:e1:80:0a:44:61:5e:13:8e:8d:80:04:21:6a:
a5:5a:b6:6a:ee:ef:9c:90:5b:14:8e:2f:3e:0c:21:e7:d5:fd:
53:d6:bf:09:88:61:a2:e2:24:30:59:44:09:98:8c:60:9d:ca:
ed:63:6a:f4:5e:c9:6f:b3:54:fd:17:c3:72:da:50:d5:3c:01:
8f:76:c6:15:db:22:6f:a8:1e:3b:b1:d5:ab:78:db:aa:ec:b7:
42:80:db:13:98:85:ce:f5:4c:b8:3a:04:1d:e7:89:bc:b5:fe:
20:1c:4e:21:f6:c3:e5:94:2d:c2:19:2e:2f:ec:6f:fb:ee:52:
85:53:d5:5e:c8:35:03:16:6b:46:b8:a3:28:51:c7:69:d7:b6:
e3:9b:00:a7:b1:1a:07:e2:66:3a:0b:94:87:a7:55:7c:a6:ae:
b7:05:a9:79:b1:45:89:b4:4c:84:0f:90:6a:f5:8d:b9:63:5e:
ba:61:8b:6f:75:95:43:06:8a:b1:9f:7b:8f:f3:dd:a9:48:ad:
ed:04:9b:c9:0e:d4:ae:45:e8:17:db:3d:e2:42:4a:aa:cb:9d:
3a:39:ff:b9:a8:7c:aa:fd:92:b4:a7:cc:f5:e4:d7:2f:6f:0a:
ce:bd:b4:ac:11:f4:24:c6:4b:57:d4:b0:16:d8:ac:2c:dc:b4:
ab:0d:68:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org