Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/pai9khvaamx09aTYxSfmfpA5xdE.roa
File: pai9khvaamx09aTYxSfmfpA5xdE.roa (raw, json)
Hash identifier: Rn6L9RdpBDmX7BvS6kdYfo7BmxCkTOb9pTVzjq0xADs=
Subject key identifier: A5:A8:BD:92:1B:DA:6A:6C:74:F5:A4:D8:C5:27:E6:7E:90:39:C5:D1
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0872
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/pai9khvaamx09aTYxSfmfpA5xdE.roa
Signing time: Tue 29 Sep 2020 10:02:28 +0000
ROA not before: Tue 29 Sep 2020 10:02:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 223.26.70.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2162 (0x872)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A5A8BD921BDA6A6C74F5A4D8C527E67E9039C5D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:64:9c:7f:46:a5:b4:23:f3:bc:b6:f0:5d:ba:
ec:f6:e5:0a:de:1f:19:f2:cb:51:7b:e1:2e:aa:e7:
28:7b:5e:0d:3d:65:90:dd:5e:24:27:ce:a6:3f:f9:
38:84:e3:9b:d1:be:12:dc:cd:2a:47:f6:78:3c:a9:
23:f2:18:23:c2:7a:73:1a:aa:2e:52:e8:33:20:b1:
40:10:8f:e6:7b:37:ff:0f:81:3c:4e:53:f7:08:ad:
36:ee:b9:20:fa:a5:21:30:02:5f:a4:80:b3:cb:5b:
d2:d0:1c:53:d4:a0:d4:22:4b:8c:68:5c:79:86:f3:
f4:07:09:5f:f9:32:e0:80:e7:c1:67:6c:0b:15:b0:
fb:6e:0c:5f:52:3f:53:ff:0d:91:f9:ca:ee:63:08:
86:f9:a7:92:50:0d:62:a5:86:5b:b9:c4:27:24:ab:
c5:72:86:d3:f8:1d:fd:3b:ba:33:c5:5e:09:82:6a:
18:db:6d:52:e3:d9:cd:d6:41:bc:3d:13:37:db:aa:
71:cd:97:d0:fd:f3:6b:47:6e:7f:98:c3:a3:e5:d7:
c1:67:02:6a:9d:3c:03:63:2c:78:c7:4a:ea:49:77:
fe:34:08:92:09:b3:03:26:c7:36:ee:23:12:11:87:
6b:e8:f6:ac:d6:d8:b0:77:83:36:2d:27:f6:19:ac:
c9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:A8:BD:92:1B:DA:6A:6C:74:F5:A4:D8:C5:27:E6:7E:90:39:C5:D1
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/pai9khvaamx09aTYxSfmfpA5xdE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.70.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:eb:d9:83:6a:d3:fc:5a:b0:0a:cd:0e:37:b3:de:38:f9:57:
93:4d:1e:65:1e:3a:ed:b2:5b:e7:a4:10:aa:ac:54:74:c6:d5:
3d:d2:8e:9c:2c:54:9e:34:fd:50:7b:28:59:a9:b2:c9:34:92:
6c:5c:66:0e:fa:33:1f:a9:a7:15:f3:0f:9b:01:05:bb:ef:41:
43:54:2a:df:98:c6:4e:db:92:6f:59:6f:90:f4:e1:ec:66:bc:
f9:fe:b4:f2:21:52:da:01:9b:3c:e5:af:4e:a1:33:97:c4:6f:
ac:e0:b5:2b:c9:84:f5:cb:86:bb:d2:0b:78:5d:27:a9:af:b5:
99:b6:3b:8e:fe:f7:ad:99:83:2b:64:e7:67:75:f6:50:58:90:
5e:af:de:54:fc:73:bf:12:fe:4d:57:af:5a:ca:0e:2a:bd:99:
67:e3:05:0b:af:2d:aa:93:8f:70:34:a5:07:65:33:23:72:1d:
4e:11:32:88:2b:58:a6:70:da:e1:46:f5:3f:fd:b8:4f:13:31:
17:2b:e3:33:08:a4:2b:6d:bd:89:d8:7d:e8:e9:c3:5c:97:02:
b3:6e:bb:34:f4:39:65:e1:dc:b6:9b:ad:30:d4:9b:86:01:1d:
ed:c2:ec:f2:be:b3:74:f0:f8:aa:b5:e3:07:46:3a:9e:02:67:
b2:f5:4a:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org