Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/oBGjIa0RfGFXbv5_yPhrNy5pZmI.roa
File: oBGjIa0RfGFXbv5_yPhrNy5pZmI.roa (raw, json)
Hash identifier: NQcLxCXxwKTGMw/kw1/ooyPOM+qG8qvk3jJ1EEISTWw=
Subject key identifier: A0:11:A3:21:AD:11:7C:61:57:6E:FE:7F:C8:F8:6B:37:2E:69:66:62
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/oBGjIa0RfGFXbv5_yPhrNy5pZmI.roa
Signing time: Thu 15 Sep 2022 02:39:14 +0000
ROA not before: Thu 15 Sep 2022 02:39:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A011A321AD117C61576EFE7FC8F86B372E696662
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5b:99:1a:53:80:54:e1:c8:f6:81:de:89:b1:
71:34:e0:cf:72:12:bc:5f:b1:37:57:a2:80:b5:89:
a8:9d:eb:cc:bc:74:9d:b9:cb:8e:8c:38:22:a6:de:
1e:ae:e5:57:d4:10:84:d5:6f:f8:b3:9f:ab:30:be:
62:78:96:c5:cf:45:2d:fd:3b:f9:54:22:e2:72:d6:
02:8a:1e:bd:69:d2:16:3e:77:15:b7:ca:19:28:33:
f4:cb:40:8b:9e:9d:82:54:00:3e:c9:66:b6:62:d5:
db:51:e2:d4:80:d7:b9:a6:68:43:a5:88:be:70:06:
0e:5a:51:98:21:28:2d:29:de:a7:9c:75:12:af:ec:
23:55:6e:bd:d6:30:36:3e:33:27:08:b8:63:33:db:
22:f2:a1:26:fd:30:33:2a:8d:0c:54:b7:67:72:46:
75:99:85:8c:d3:7d:99:5a:6d:b4:87:76:e7:c2:3d:
84:5c:38:71:50:5e:4d:e7:36:b1:2b:0a:5d:9b:c3:
4e:15:18:e7:42:e2:3b:47:09:fe:dc:f2:9c:e7:dc:
90:b9:82:07:67:0c:2b:68:53:02:d8:85:b9:e7:21:
18:10:8b:62:63:80:87:be:47:c4:a5:f6:4f:01:6b:
0e:43:84:a1:45:44:74:35:8d:c2:99:ae:42:97:1e:
47:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:11:A3:21:AD:11:7C:61:57:6E:FE:7F:C8:F8:6B:37:2E:69:66:62
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/oBGjIa0RfGFXbv5_yPhrNy5pZmI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.192.0/18
Signature Algorithm: sha256WithRSAEncryption
8e:f1:a9:02:51:07:66:a2:db:5c:cd:7c:55:3d:18:ee:da:40:
fd:ad:94:1f:79:a7:0e:79:4c:bd:d4:18:d2:dc:c5:3d:6b:f3:
e2:98:b4:42:f3:30:db:03:42:75:e3:14:a1:2c:ad:80:f2:fb:
92:86:28:04:65:2d:0f:9e:31:93:a6:04:43:3f:b5:46:88:75:
a6:0f:25:6f:dd:af:d0:9f:88:63:76:d3:9f:4a:37:83:f8:9a:
08:3e:07:c7:60:94:93:ef:35:e8:45:a9:c0:d0:df:d1:ab:14:
12:f6:7b:14:05:63:f5:67:80:c2:c4:0a:8a:5a:ca:05:bd:0c:
a2:4f:bd:3f:e7:85:bd:1e:34:4e:1b:05:a9:4c:a5:7e:d9:5c:
74:09:37:cb:c7:ec:fb:11:9c:1b:fa:e0:35:8c:80:a3:47:ac:
c7:e9:e3:18:28:18:03:e3:e4:70:7e:ce:43:6f:9d:da:56:68:
a8:a6:cb:7c:57:db:4a:c8:a9:95:f7:99:cb:c3:c7:80:3a:1d:
b6:83:48:13:b0:4d:89:0a:ad:3c:32:bb:fd:90:d9:24:1e:85:
7c:39:11:72:62:44:28:4d:9c:93:4e:b4:86:69:9c:1f:46:1c:
80:aa:f4:e0:9d:19:79:08:67:2b:a3:cf:c2:c1:a2:f7:d9:01:
f7:37:c3:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org