Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/q9ms3dwN8LbWWFa1y7j31Puxxog.roa
File: q9ms3dwN8LbWWFa1y7j31Puxxog.roa (raw, json)
Hash identifier: 81qh3+N5M1f9Fnr3wj50o822OqvCbZ36QU5dmpeNTJ4=
Subject key identifier: AB:D9:AC:DD:DC:0D:F0:B6:D6:58:56:B5:CB:B8:F7:D4:FB:B1:C6:88
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C34
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/q9ms3dwN8LbWWFa1y7j31Puxxog.roa
Signing time: Wed 29 Sep 2021 02:39:09 +0000
ROA not before: Wed 29 Sep 2021 02:39:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10085
IP address blocks: 203.163.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3124 (0xc34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=ABD9ACDDDC0DF0B6D65856B5CBB8F7D4FBB1C688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:5a:ea:c2:35:ba:8b:f6:04:46:bc:39:d6:58:
f9:d3:90:64:c8:d1:e9:f9:6c:59:02:98:7a:68:84:
73:10:b6:58:76:04:a2:63:31:5d:8b:e5:d8:7b:10:
3b:b5:70:df:07:29:83:45:f7:f3:9a:4a:71:46:2f:
9f:59:a1:49:68:4b:6c:50:c0:60:6a:e3:a9:c8:6c:
e6:51:64:8c:31:e7:0f:eb:b4:72:19:d1:af:9c:1b:
3d:16:12:4c:b8:8e:3c:59:38:a1:ed:ba:99:64:83:
b9:24:72:3d:0d:b5:0f:2a:b7:e5:88:a2:4d:3a:a1:
36:fa:0b:13:8e:11:91:45:14:fd:19:70:36:50:26:
50:f4:19:72:19:de:ed:45:45:fc:42:64:e5:3e:6e:
83:22:87:e4:70:85:ca:9b:42:a1:88:5c:71:f6:96:
74:9b:76:55:bd:b6:8f:80:f9:39:2f:ba:6f:dd:38:
6e:8c:88:d4:94:60:6b:99:f4:bc:89:10:64:e3:43:
5c:75:95:92:30:21:b3:46:da:68:b8:ab:94:2f:73:
cd:28:b7:b1:91:db:8c:c2:bc:6e:7a:4c:11:5d:6f:
d3:cf:a6:58:1a:d9:a4:7e:7d:d1:7b:95:e6:cf:4a:
49:5f:8e:c7:c3:66:69:9e:e3:f2:6d:57:50:c7:41:
c2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:D9:AC:DD:DC:0D:F0:B6:D6:58:56:B5:CB:B8:F7:D4:FB:B1:C6:88
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/q9ms3dwN8LbWWFa1y7j31Puxxog.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.196.0/22
Signature Algorithm: sha256WithRSAEncryption
95:f9:fb:21:ad:6a:e0:87:5d:f0:95:38:b6:7a:6f:70:7b:d3:
80:32:7b:39:4d:7c:6d:f1:7a:a0:e1:cd:75:f7:00:45:f8:38:
67:ae:c4:6a:0a:df:94:d0:40:5a:dd:bc:80:37:3f:eb:00:a5:
57:25:d2:3e:ac:ba:ad:db:1b:38:43:72:9d:a3:1a:9c:c7:a8:
74:e3:28:8f:3e:21:ae:ac:62:f5:10:50:80:3f:6a:69:f0:ff:
45:20:32:90:63:20:43:20:cf:e9:a0:85:63:22:46:39:1b:3c:
fa:27:28:38:06:7b:0d:26:00:0c:33:7d:28:ad:1e:43:56:6f:
d2:36:c5:80:c4:70:04:de:c1:72:0b:a2:4a:29:15:99:1f:0d:
c5:56:64:8c:05:3b:d0:7e:2a:14:24:f9:49:da:de:a0:57:20:
7a:e0:56:fa:2d:e2:f0:2c:8d:d0:ca:60:2a:db:40:1c:46:ab:
06:cb:33:dc:73:4d:d1:78:6d:61:d0:21:39:17:e4:66:fb:5c:
31:9f:7d:82:d1:f1:0b:d4:9e:e5:76:ff:e5:7e:62:a6:96:76:
ba:c5:c9:12:11:3a:42:58:e5:2a:16:13:82:cb:98:00:0d:46:
69:18:e6:b2:ea:d2:5f:09:8f:3d:b5:a6:12:29:9e:27:7c:83:
71:66:bc:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org