Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ndlgXiGaJCue3-bO80EIxPrmF0w.roa
File: ndlgXiGaJCue3-bO80EIxPrmF0w.roa (raw, json)
Hash identifier: M8eyoz/bo/TP8rliQfMnKhCWYL+Wbzu4e9BiatinAIE=
Subject key identifier: 9D:D9:60:5E:21:9A:24:2B:9E:DF:E6:CE:F3:41:08:C4:FA:E6:17:4C
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0BE2
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ndlgXiGaJCue3-bO80EIxPrmF0w.roa
Signing time: Wed 29 Sep 2021 02:38:48 +0000
ROA not before: Wed 29 Sep 2021 02:38:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 150.116.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3042 (0xbe2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9DD9605E219A242B9EDFE6CEF34108C4FAE6174C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:86:2e:62:96:78:ec:36:00:bf:71:9b:be:44:
aa:d7:2e:87:56:db:28:5c:c7:7e:f6:88:e8:c4:74:
40:2c:32:30:b5:c2:7e:96:e2:b4:fa:3e:d9:55:8f:
db:3d:1c:3a:3f:a0:9b:a7:a9:3d:94:a7:cf:c3:8d:
01:e9:ba:84:13:a3:fc:69:58:e3:12:0c:37:59:21:
34:a6:6b:0a:39:a4:fc:36:75:f9:f1:8b:db:b1:6e:
99:cd:bb:96:22:04:f3:20:e0:b0:32:20:8e:c9:fd:
8a:75:27:7a:79:8a:bb:22:a7:c4:64:58:6b:1c:62:
54:ee:82:c4:e5:a7:15:08:3d:ea:a4:9e:f2:4c:3a:
b3:cd:a9:5b:fe:d6:b2:4b:c1:71:56:fd:11:60:f9:
ad:c9:87:6d:88:64:17:77:77:72:fe:40:a4:7d:bf:
ff:52:47:0b:5e:b5:af:c9:35:2a:d2:e4:0f:3e:90:
92:94:c1:b5:8c:5b:ef:2c:9a:80:55:6d:62:85:95:
92:57:c4:5f:69:c2:ed:8d:cb:52:10:75:8e:8f:3c:
c3:f4:62:0b:31:bd:cd:4a:f3:b8:5f:2d:36:a1:cc:
34:be:f4:02:25:e0:26:27:b2:62:c8:d1:82:a2:1d:
cc:14:df:34:f4:98:2c:0b:e1:65:44:1f:76:a9:5b:
b1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D9:60:5E:21:9A:24:2B:9E:DF:E6:CE:F3:41:08:C4:FA:E6:17:4C
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ndlgXiGaJCue3-bO80EIxPrmF0w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.172.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:1e:18:0f:33:e3:7c:34:c4:bc:95:9b:3c:27:15:c9:1f:8b:
0c:15:a4:59:2a:76:40:7f:29:4f:03:82:d2:75:0a:21:3a:6f:
dd:1b:fc:1c:4b:ca:1d:1d:a5:e2:58:cd:1a:38:06:28:74:e2:
d6:d1:dd:70:5e:c1:4a:40:d9:8c:54:be:0d:7c:ae:e3:3c:90:
ab:22:cc:3a:32:fd:64:10:ad:28:a5:70:38:a8:27:cb:90:1c:
ff:ac:82:8a:13:90:4c:42:18:56:43:b3:fc:2c:7f:48:8f:47:
3f:c8:84:69:02:f1:7e:f8:c4:03:97:2b:ec:b9:98:cd:95:f2:
a2:91:ab:4a:fe:d7:e5:91:eb:e6:be:80:6e:94:c4:c6:01:e2:
3c:1e:7d:3a:9c:01:73:19:38:45:93:d4:3a:08:94:94:2c:4f:
90:fe:24:b6:73:97:1f:4e:60:3b:8f:06:1e:7e:5f:74:03:9c:
20:9c:4e:9e:be:ae:fe:99:e6:1b:5e:9a:46:ac:b1:c7:75:8b:
51:bd:b4:49:cd:0a:e2:cc:12:51:1c:cf:7c:d1:af:3c:07:6e:
2e:fd:a8:0b:9e:ed:2a:36:db:ca:57:1c:99:40:ad:39:f2:fc:
76:33:39:ce:72:4c:77:05:c0:98:b8:cf:6a:09:0e:08:f7:a6:
cb:b1:82:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org