Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/pm0Xw8SJ11YAMGOKc8Pk51Pb36Q.roa
File: pm0Xw8SJ11YAMGOKc8Pk51Pb36Q.roa (raw, json)
Hash identifier: C1KwbWaNKKndO+SY2ZKAIxsfHxuv1Nf9RtS4NP1SIOk=
Subject key identifier: A6:6D:17:C3:C4:89:D7:56:00:30:63:8A:73:C3:E4:E7:53:DB:DF:A4
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/pm0Xw8SJ11YAMGOKc8Pk51Pb36Q.roa
Signing time: Thu 15 Sep 2022 02:39:22 +0000
ROA not before: Thu 15 Sep 2022 02:39:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 118.150.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A66D17C3C489D7560030638A73C3E4E753DBDFA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:50:44:b0:89:28:78:35:c4:1b:e3:47:25:ea:
6a:2f:1a:37:a6:e2:fe:a3:5b:87:f6:3d:88:7a:f7:
12:a6:84:9b:5b:7f:aa:c2:21:d3:43:f8:da:89:5d:
69:a0:86:86:30:7e:6b:ca:7e:23:c5:eb:76:f3:22:
c6:59:a1:4a:66:d0:6c:2e:ab:6c:60:1f:62:81:3e:
89:0c:30:f7:e1:a0:1b:8a:1a:0a:fd:b8:11:58:d7:
78:e0:99:7e:13:c4:91:fe:fc:a8:30:b6:a9:12:78:
cb:e4:93:0f:d5:d4:ba:26:62:59:ea:65:11:7b:44:
dc:47:39:3d:6a:5a:e7:1f:ce:45:00:a4:55:15:e3:
68:f3:3d:6f:ab:75:ef:80:ae:8f:f7:2a:3f:25:14:
32:eb:9c:e8:88:5c:25:81:1e:8c:14:d9:af:ec:a1:
dc:71:c5:b4:48:4f:95:25:9e:9e:60:39:57:18:7b:
80:b7:d8:49:77:81:99:a7:20:a4:97:8d:1d:35:03:
e4:9e:df:f1:f9:67:7a:3b:71:7b:7d:32:3d:92:70:
cc:98:a7:2f:44:9f:49:3b:ee:46:a6:6e:1f:c7:44:
1b:c3:21:2f:bb:8f:57:6f:96:70:f3:b5:a2:3e:c4:
1c:fd:ea:75:48:0e:62:b1:fe:d3:91:39:76:b2:f6:
7e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6D:17:C3:C4:89:D7:56:00:30:63:8A:73:C3:E4:E7:53:DB:DF:A4
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/pm0Xw8SJ11YAMGOKc8Pk51Pb36Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.248.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:82:7c:fb:31:06:c6:1e:49:0b:5e:3d:72:af:ff:e8:23:8e:
bc:64:a1:e4:ab:fd:75:87:3e:fa:1e:70:b7:10:5c:af:48:b1:
d0:8f:8f:09:8a:73:54:97:de:bd:e5:2b:02:de:41:3e:e3:09:
78:dd:87:26:0d:e8:0d:a0:63:fc:70:16:20:f7:f4:c9:4a:69:
d5:0d:69:c0:4e:28:7a:24:76:c6:48:b9:47:0d:99:6d:a0:a4:
b0:f5:b2:ab:86:0e:14:0c:84:69:1a:11:a6:42:9f:49:eb:58:
2a:fd:1e:64:91:4f:c7:c9:d4:cc:0c:2d:3a:b3:2a:2a:db:b9:
b6:8a:fa:c9:64:c1:48:a2:38:d5:00:bc:ce:50:60:07:7d:1f:
7b:a7:02:5d:43:43:18:4e:18:6b:1e:3a:ee:f8:11:71:7d:65:
81:1a:1a:50:89:1f:8f:7d:8c:ac:81:6b:ea:a4:18:76:28:31:
1d:54:bb:04:af:59:74:b0:2e:5a:51:ee:dc:8d:db:b1:05:9c:
f5:05:f1:a3:99:7f:a6:92:95:6f:a0:06:ba:43:69:08:dd:fa:
e2:d2:4b:47:2d:3a:da:4f:ca:55:39:b1:8c:52:b8:8c:cd:ee:
9c:51:b4:26:11:cc:e5:fc:b7:67:db:bf:e9:41:38:4a:8c:22:
e2:fc:71:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org