Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nsl1rW45vB6DTEmll3CBaCY8O8E.roa
File: nsl1rW45vB6DTEmll3CBaCY8O8E.roa (raw, json)
Hash identifier: sV+dZbHT+d4UVwqsQPo5lqRXU1jjXBXoxJIAWhftmQE=
Subject key identifier: 9E:C9:75:AD:6E:39:BC:1E:83:4C:49:A5:97:70:81:68:26:3C:3B:C1
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0CF6
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nsl1rW45vB6DTEmll3CBaCY8O8E.roa
Signing time: Tue 26 Apr 2022 03:27:40 +0000
ROA not before: Tue 26 Apr 2022 03:27:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7532
IP address blocks: 150.116.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3318 (0xcf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Apr 26 03:27:40 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9EC975AD6E39BC1E834C49A597708168263C3BC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b3:07:19:27:93:cd:cc:b0:d7:d5:89:f1:15:
8e:05:77:a5:65:83:40:85:69:96:e1:59:eb:0e:40:
8a:f7:ac:58:6f:d4:0e:ff:1f:de:c3:31:a1:a6:3b:
dd:95:76:df:dd:d9:c4:a9:c9:40:12:b6:fb:cd:56:
7f:d2:d0:ab:68:62:3a:9c:3a:0a:47:f7:6e:bd:db:
36:3e:e6:f1:79:bb:1e:83:d0:a3:61:aa:c0:6b:33:
e6:a8:25:de:06:df:bc:c4:f1:12:0e:60:80:20:c4:
02:ed:16:6a:c4:aa:50:79:38:ba:d3:e2:50:19:cd:
e2:13:bd:d2:87:85:4a:d0:ed:44:3a:b9:b6:21:80:
5c:92:69:ba:10:e3:35:63:84:79:f9:2a:99:65:1d:
0b:9a:ca:aa:bf:54:f9:a5:2c:08:43:33:55:4a:a6:
d0:1f:38:16:14:d1:28:b3:28:15:22:b8:f9:5f:18:
b5:92:e4:b8:85:26:17:d2:c4:e5:ef:b5:6b:35:0e:
59:3f:34:4d:6a:76:60:34:70:3e:59:5d:01:44:94:
eb:a9:d5:5b:9a:e9:18:28:ec:16:13:c6:99:67:71:
1a:46:fb:02:52:33:64:ee:33:dc:34:a7:5e:16:de:
91:ec:b1:36:fa:01:99:86:10:a7:55:11:d1:6a:a0:
91:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:C9:75:AD:6E:39:BC:1E:83:4C:49:A5:97:70:81:68:26:3C:3B:C1
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nsl1rW45vB6DTEmll3CBaCY8O8E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.55.0/24
Signature Algorithm: sha256WithRSAEncryption
43:7c:47:0e:ad:16:5d:9d:6f:22:94:bd:80:9d:03:aa:f0:ab:
ba:49:c5:fa:f1:a5:74:f0:ea:16:01:c9:07:41:e3:84:23:1c:
6b:d7:5d:dd:f0:30:62:d9:81:94:b6:a9:b1:85:d1:e3:ec:c0:
a8:d5:4a:8c:99:67:bf:55:3b:94:03:12:47:35:2a:23:01:16:
b4:b9:d9:a9:f4:da:69:f5:3c:93:8e:5d:a0:43:93:05:63:e2:
34:5f:9b:aa:4d:86:af:c9:47:89:9c:48:d4:3a:39:e1:a5:ac:
95:73:bb:31:ae:2f:65:7e:77:ef:ee:98:46:f8:e8:21:be:f2:
ac:3e:9d:32:55:34:68:73:7a:ef:5f:48:46:e7:52:d7:6b:b8:
53:31:0a:3f:69:da:9b:08:50:fa:e5:f9:61:aa:90:f8:41:1a:
45:bc:46:58:eb:83:c3:9c:f2:bf:e3:28:e8:b1:9d:c6:f0:34:
6b:ce:eb:5d:7c:dc:76:6f:d0:ee:c0:d0:a8:a0:41:42:77:7a:
58:42:49:dc:4b:08:20:7f:e0:ec:ca:7d:87:4f:72:7b:8c:6e:
e0:7b:f0:cb:08:cc:ae:a9:12:af:ca:28:fb:52:98:23:cd:84:
e5:d6:93:74:c8:80:1c:db:86:3d:36:75:02:d2:ae:75:ea:63:
9d:fc:89:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org