Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nJrjesVackv1iP1sza99woIh9NE.roa
File: nJrjesVackv1iP1sza99woIh9NE.roa (raw, json)
Hash identifier: O9HfjJKqvsx1A7FTWbwQ6bwd2Smx1N5Pl5SJRCSE8Bc=
Subject key identifier: 9C:9A:E3:7A:C5:5A:72:4B:F5:88:FD:6C:CD:AF:7D:C2:82:21:F4:D1
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AB2
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nJrjesVackv1iP1sza99woIh9NE.roa
Signing time: Sun 07 Feb 2021 11:52:27 +0000
ROA not before: Sun 07 Feb 2021 11:52:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 150.116.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2738 (0xab2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:52:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9C9AE37AC55A724BF588FD6CCDAF7DC28221F4D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d0:9e:ac:28:11:ac:bc:ba:e9:46:aa:9f:2d:
e3:eb:dd:de:d7:f2:c5:fd:3e:cd:a1:4b:00:04:a0:
34:fa:f7:b2:c3:5a:f7:06:79:6f:4a:49:f3:a4:8b:
6b:e5:cd:08:c9:31:0c:2d:0a:b3:35:35:0c:df:29:
e9:7b:81:8c:ea:58:a8:58:54:97:3b:5e:80:2d:4e:
0a:61:26:f2:0f:16:4a:03:b3:90:06:31:c0:65:92:
9a:ef:9b:ca:82:8f:ba:b9:f0:a7:ec:a0:be:81:05:
bf:8c:55:56:4d:e2:ef:e1:79:7e:40:29:97:71:80:
3b:6a:a7:e2:c9:d3:b6:81:2e:fb:e0:99:77:ab:ea:
fe:dd:92:f1:36:bd:be:71:7c:ab:22:8d:1e:3b:a0:
2a:c4:32:f6:4c:05:4b:41:42:c7:69:2b:9c:57:5f:
d1:fc:8c:f0:80:07:ca:09:8e:47:8a:6a:f3:6c:58:
9a:ff:ab:41:c5:bb:dd:2c:f4:43:b2:0e:ce:cf:35:
6c:c7:97:f2:3f:0b:fe:ff:6c:43:e6:d9:29:34:1e:
aa:b3:2c:84:34:66:a8:08:38:80:e9:1e:78:2e:65:
3b:d4:41:16:3d:9e:46:76:f3:cc:57:4d:ed:5f:4b:
7d:01:69:30:f9:b9:c8:4e:08:03:af:2d:2d:ea:6b:
fe:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:9A:E3:7A:C5:5A:72:4B:F5:88:FD:6C:CD:AF:7D:C2:82:21:F4:D1
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nJrjesVackv1iP1sza99woIh9NE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.16.0/20
Signature Algorithm: sha256WithRSAEncryption
ae:20:cc:3d:46:e0:c7:66:8c:3c:ac:25:5b:6c:c8:04:70:99:
af:09:05:23:51:c3:81:ea:74:3a:60:ff:a4:ee:11:e9:0d:d3:
42:52:93:76:ac:8a:59:68:e9:ad:16:18:8e:c5:45:24:73:6e:
b1:9e:02:92:9c:d8:f7:0f:c5:60:fe:21:e1:53:f6:e1:49:ac:
99:c6:c3:20:34:63:48:0d:6d:33:c4:5b:be:65:a2:a7:05:ad:
87:78:3a:6d:63:c6:0a:0a:1a:3a:94:6a:a4:fb:0a:67:92:6c:
90:56:2f:46:07:0e:82:42:82:db:88:96:dc:24:85:ec:61:51:
b0:7c:1b:29:71:fc:1f:ae:38:dd:97:8c:19:4d:d9:71:e8:cd:
69:a0:54:67:49:ed:b0:d8:4f:8f:4e:45:da:b4:f2:70:80:25:
1e:67:9e:02:a7:02:f8:9a:4c:41:e4:64:f7:57:ba:4f:6b:0d:
70:e9:53:f7:3d:43:2d:d0:4c:3d:de:22:d9:8e:20:3f:89:0b:
f0:00:e0:ea:a9:d4:f9:76:4b:85:bb:bf:51:02:b2:61:4e:3c:
aa:04:3c:77:e1:60:17:fc:21:32:64:b9:ae:69:c4:d4:84:a0:
7d:9b:32:7c:4e:f2:c5:7b:f5:b6:ac:8a:0b:8b:9d:d6:fa:1b:
60:95:6a:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org