Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qEWTbUlUwKNKJm6-RUDptPgWYHo.roa
File: qEWTbUlUwKNKJm6-RUDptPgWYHo.roa (raw, json)
Hash identifier: H6lf8HP+IpvJKhe8UtvqiG6nk8ngPvI6lmNp4MRas3U=
Subject key identifier: A8:45:93:6D:49:54:C0:A3:4A:26:6E:BE:45:40:E9:B4:F8:16:60:7A
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C30
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qEWTbUlUwKNKJm6-RUDptPgWYHo.roa
Signing time: Wed 29 Sep 2021 02:39:08 +0000
ROA not before: Wed 29 Sep 2021 02:39:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10085
IP address blocks: 203.163.194.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3120 (0xc30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A845936D4954C0A34A266EBE4540E9B4F816607A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:62:94:a0:5f:7f:12:60:89:14:a1:af:d7:d5:
09:a0:10:b3:91:22:29:85:b2:cb:ba:23:a4:a4:c4:
f4:cc:d1:00:bd:32:5b:18:96:04:d1:e3:e5:b7:c0:
0f:c0:46:b8:ba:e7:0d:38:9f:7e:d4:b0:d1:f8:56:
2d:16:b7:1d:be:de:65:ad:96:21:97:b2:ed:b9:99:
95:4b:0a:aa:94:77:9f:2e:c4:c9:ef:cb:a6:0e:48:
94:ab:ba:16:0c:cc:c9:04:c9:91:2c:55:38:6b:73:
87:3c:14:7a:41:2f:41:e7:cc:35:1f:11:c5:ff:6f:
ad:2d:94:7d:f8:4c:d0:15:0b:0c:b4:90:1b:6b:99:
ac:bd:11:16:15:0b:e2:5b:bf:80:2e:ff:c8:e2:ec:
f8:73:85:1d:c2:73:97:62:51:8e:51:2e:a5:50:9e:
dd:e0:5b:5f:d7:6c:78:cd:83:88:c3:73:55:f4:a9:
c4:cf:40:e8:72:2a:fd:1c:bc:96:4b:7c:eb:92:65:
67:9c:a4:ef:61:3f:d7:97:aa:e9:34:74:a4:18:84:
4d:a4:88:22:b6:4d:c2:8f:3f:59:37:6a:97:16:35:
85:bb:d9:6b:2b:1a:9a:3a:e4:8d:9f:cc:08:fe:74:
30:f3:91:9c:55:34:ce:4f:0f:f2:d9:c0:d4:32:fb:
17:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:45:93:6D:49:54:C0:A3:4A:26:6E:BE:45:40:E9:B4:F8:16:60:7A
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qEWTbUlUwKNKJm6-RUDptPgWYHo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.194.0/23
Signature Algorithm: sha256WithRSAEncryption
19:b6:70:f7:71:35:50:45:fd:3d:67:e6:83:c9:9d:f0:0d:ab:
06:35:d8:e1:85:51:2b:ca:58:06:ec:a9:a0:f0:87:fe:52:4a:
1b:33:06:7c:14:3e:d6:bc:75:12:bc:bd:c5:78:ea:65:8e:e3:
6a:aa:ec:16:66:a2:ec:ec:a4:6e:c7:1e:b2:d6:20:53:80:c2:
ef:b5:16:97:fb:1b:94:a9:6e:17:03:69:b8:0a:aa:7c:e2:6b:
70:4e:5c:4e:0b:f4:d2:52:b0:9d:46:9c:06:4e:a6:8a:a8:90:
d1:8f:81:0a:9a:db:6e:da:7f:a9:6b:5c:eb:5b:c2:32:e0:48:
a8:6a:4a:c9:93:80:f3:a9:8b:95:46:ba:a5:14:be:d3:e8:50:
d0:ef:2b:50:e8:0e:49:4a:d0:77:32:a2:5b:0e:18:13:aa:5e:
7d:0d:f7:72:1e:2f:d4:73:20:2e:8a:ad:0b:4a:b4:6a:c2:02:
69:c9:e5:87:fa:13:c2:7b:21:43:9f:79:44:30:0c:06:57:28:
19:cf:3f:a4:2a:27:02:a4:99:56:8e:b3:6e:6c:24:1d:64:b3:
81:60:a0:da:a1:92:f5:7c:92:2e:24:b8:cd:08:0a:45:75:a2:
ca:51:e6:7b:3e:66:df:25:69:df:97:03:67:a5:32:78:80:48:
86:b5:6a:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org