Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/q8pc720Q3Rh43ciPVOArB1Q931Q.roa
File: q8pc720Q3Rh43ciPVOArB1Q931Q.roa (raw, json)
Hash identifier: R/7gLOTRH0xD75D63fmKJJr5yZKsM86JLbwsrp8Miqo=
Subject key identifier: AB:CA:5C:EF:6D:10:DD:18:78:DD:C8:8F:54:E0:2B:07:54:3D:DF:54
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/q8pc720Q3Rh43ciPVOArB1Q931Q.roa
Signing time: Thu 15 Sep 2022 02:39:17 +0000
ROA not before: Thu 15 Sep 2022 02:39:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 150.116.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ABCA5CEF6D10DD1878DDC88F54E02B07543DDF54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:97:55:dd:96:9d:4a:85:66:a6:15:60:31:a9:
16:a8:1b:28:50:30:cf:c3:94:84:f5:9c:a4:66:dd:
ff:92:20:a2:6d:a1:03:05:52:c2:79:3b:da:77:3c:
74:1f:0c:f0:47:96:1a:20:64:1d:e6:94:1b:72:fd:
b1:c2:3c:b1:b6:41:17:89:d9:73:d3:3f:c2:07:ee:
da:27:a7:b3:7d:43:60:9c:65:a4:63:ef:6d:dd:fe:
21:f0:56:90:c5:b9:28:86:f6:38:7c:28:66:8c:d6:
d5:81:3f:82:d7:d1:f0:8b:dd:59:dd:bb:6e:9c:45:
c6:ac:d0:42:c0:57:63:a4:b9:6e:1e:cd:8d:31:ed:
c4:9c:17:cf:8b:37:32:e3:9d:56:b2:bb:d2:f2:3b:
75:bf:4f:34:12:89:2c:d0:bf:e3:dc:79:04:60:60:
61:be:71:3d:57:1a:c1:2a:47:f4:a9:ef:68:9e:9a:
9c:0b:22:76:e1:d4:9a:28:3e:da:db:15:cc:71:05:
ac:37:0e:eb:09:40:79:f6:46:3c:73:66:00:1b:be:
8b:10:56:6b:1f:6d:98:40:b8:8c:ec:08:c2:e4:cb:
d7:b8:a3:f0:07:4c:e8:cf:be:06:50:4f:3e:90:38:
79:32:bf:90:32:f9:e3:48:5e:97:9f:2c:c3:e7:10:
d3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:CA:5C:EF:6D:10:DD:18:78:DD:C8:8F:54:E0:2B:07:54:3D:DF:54
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/q8pc720Q3Rh43ciPVOArB1Q931Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.119.0/24
Signature Algorithm: sha256WithRSAEncryption
96:09:ac:fe:2c:af:69:02:32:51:d3:d1:78:45:bb:e0:2b:e5:
c2:aa:91:15:47:cb:d4:06:69:37:81:9f:65:3e:71:94:f3:d8:
04:a4:d8:ab:79:8d:43:1b:44:12:a0:49:bf:a6:f4:21:6e:ad:
09:95:48:01:a2:4d:ba:1a:f6:35:3d:9a:45:52:ee:ef:30:f4:
c2:1a:2e:8b:ce:40:ba:ff:72:66:aa:eb:58:1e:fc:c5:6e:68:
0c:aa:a7:1e:44:2e:a2:c4:f9:06:2d:79:b0:40:97:73:4e:a4:
ea:35:d2:41:70:ff:a9:2e:e4:71:58:7a:42:2f:04:0c:97:ab:
3b:98:a3:e4:92:0b:4d:5e:1b:d6:06:ad:a5:9f:67:95:4c:7f:
f0:52:9c:26:0d:34:b8:03:39:03:d8:81:d0:9f:ed:dd:45:a4:
cd:82:a3:f4:7f:61:d7:7c:85:f2:8b:21:cb:06:5b:bb:5c:54:
4c:d0:cc:13:47:0a:9d:b5:69:92:88:c5:d1:9a:2f:24:b2:8d:
90:29:c0:0d:aa:c3:cc:e9:66:69:e1:e0:f8:79:61:fc:aa:29:
25:54:aa:27:d5:3d:d3:cd:01:63:c0:80:fe:6b:1f:3d:51:38:
50:a3:65:5c:55:35:07:ab:b3:22:2a:71:61:63:f4:ea:1d:53:
ad:43:63:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org