Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/piFbF7ODQWDHPlDL74B8wc7J2pU.roa
File: piFbF7ODQWDHPlDL74B8wc7J2pU.roa (raw, json)
Hash identifier: y9vnxPAQf2asPK3BgFdgshYM3NBF+WsRrOkvAbUpbf8=
Subject key identifier: A6:21:5B:17:B3:83:41:60:C7:3E:50:CB:EF:80:7C:C1:CE:C9:DA:95
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C02
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/piFbF7ODQWDHPlDL74B8wc7J2pU.roa
Signing time: Wed 29 Sep 2021 02:38:57 +0000
ROA not before: Wed 29 Sep 2021 02:38:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17408
IP address blocks: 150.117.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3074 (0xc02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:38:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A6215B17B3834160C73E50CBEF807CC1CEC9DA95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f1:fa:d5:a1:22:42:ec:ec:bb:b6:90:ea:f8:
ce:5e:db:52:c1:3d:8d:b5:b1:a3:88:3f:c6:fb:c5:
5e:a9:fc:f5:9a:63:f4:cf:8e:65:df:94:83:a7:25:
a4:b7:b6:00:09:c2:cc:24:21:5b:3a:8d:22:16:e0:
ac:d2:9f:cf:0f:dc:fa:0e:5d:af:04:3a:1b:ca:04:
d7:39:6e:a1:50:23:01:1f:45:98:76:17:47:95:c7:
72:1c:dc:43:96:2b:eb:ea:41:6e:47:1e:c5:a9:f2:
71:de:96:fd:c9:54:05:6a:09:ba:ad:d7:8a:68:3d:
3c:e5:3f:3d:af:d7:38:ce:64:18:b5:db:d2:81:17:
17:46:9c:d5:c3:6f:39:91:20:10:91:51:a0:16:35:
ae:76:ee:58:e4:04:09:68:ab:d0:21:b5:12:15:b8:
c4:f0:50:75:a9:be:50:6c:7e:73:14:4a:b9:87:dc:
b9:cc:82:06:2e:ca:59:64:af:6b:7f:c9:fa:d6:8f:
ad:58:ce:a8:25:eb:3f:f4:f4:f8:f9:e4:08:34:bf:
f5:87:ab:a8:53:d1:bc:5e:ff:92:f4:bb:f8:8f:06:
96:5a:55:07:16:4f:d0:56:60:08:7b:89:37:c7:4a:
16:31:6e:d1:d4:b7:37:ac:b1:bd:ad:96:2e:8c:e6:
4e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:21:5B:17:B3:83:41:60:C7:3E:50:CB:EF:80:7C:C1:CE:C9:DA:95
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/piFbF7ODQWDHPlDL74B8wc7J2pU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.160.0/21
Signature Algorithm: sha256WithRSAEncryption
83:54:e9:5b:fc:d3:eb:37:f2:2a:ca:13:e2:72:8d:6c:9f:68:
aa:4b:d4:ee:41:37:a7:e5:7c:1b:38:9d:3e:fb:ab:7d:29:fc:
72:20:b3:08:c6:e9:8d:96:79:bb:51:4e:a0:23:a2:d7:5e:9b:
29:80:ee:9a:a8:9c:28:34:9b:4a:e6:9f:7c:b8:ca:59:f1:03:
97:4e:94:63:f0:81:63:5b:a5:7d:7b:e4:76:4b:85:0d:e2:36:
6b:a9:6c:b8:32:90:dc:88:f8:79:e4:19:41:e9:ba:68:ed:2d:
aa:fb:8f:d3:f5:19:23:21:99:af:29:d8:30:3b:2d:50:60:c6:
3e:3f:3c:9c:3e:d8:b1:c8:38:5d:14:2c:ea:6e:b1:27:de:41:
6e:a2:c7:a5:e6:d1:54:33:b8:2b:14:14:59:5f:a4:2d:b0:52:
a1:c9:1c:b9:2c:88:ec:da:bb:52:32:89:82:9c:0e:4f:60:42:
6a:57:70:50:ef:29:a5:26:2b:60:da:93:bc:32:2e:e9:52:5e:
91:53:c7:8e:81:74:79:12:e7:01:34:57:16:90:da:d3:f2:13:
d8:52:35:07:0e:4a:53:6d:63:db:f0:38:7c:62:a0:38:62:98:
a9:a0:c5:a4:80:d0:db:69:67:f3:46:ce:62:88:fb:8b:a7:47:
87:14:06:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org