Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qkYoPVhelw29oBjP9d2AYHNw1rM.roa
File: qkYoPVhelw29oBjP9d2AYHNw1rM.roa (raw, json)
Hash identifier: fPkr0lt9E7t8zgGVBKY+YLAYqWa68fPcyXI6AHS2UnQ=
Subject key identifier: AA:46:28:3D:58:5E:97:0D:BD:A0:18:CF:F5:DD:80:60:73:70:D6:B3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AAA
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qkYoPVhelw29oBjP9d2AYHNw1rM.roa
Signing time: Sun 07 Feb 2021 11:50:48 +0000
ROA not before: Sun 07 Feb 2021 11:50:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131607
IP address blocks: 150.117.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2730 (0xaaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:50:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AA46283D585E970DBDA018CFF5DD80607370D6B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:29:32:85:7b:c1:1f:df:80:72:04:0e:7d:05:
ae:1a:c4:59:2c:61:c1:84:7d:4e:b9:40:bb:75:92:
48:42:bf:d7:4d:9b:1c:42:98:33:17:43:7e:3a:5e:
c5:57:5c:76:95:64:f1:d8:5c:fd:6d:8a:4a:06:5c:
0a:08:a3:5f:fb:09:98:2f:16:38:f7:fe:9f:fe:59:
28:65:f5:f0:f9:79:f4:af:ba:92:70:91:f5:33:f7:
73:f8:e7:0d:24:63:4e:41:30:4d:56:83:93:c7:47:
c3:8a:9c:c0:69:15:42:77:dd:0b:0c:2d:43:c2:de:
13:26:bd:95:dc:2c:1a:83:46:1f:c9:19:72:c6:a6:
c3:c8:17:1f:b0:68:c7:87:71:d7:3d:d1:88:97:3b:
5a:17:4e:ed:5e:ed:21:9c:a1:ed:bf:f8:59:fc:40:
ea:b7:49:90:86:36:5a:8b:1f:30:9a:91:78:21:a4:
13:c5:fa:ad:e5:a5:e1:41:b2:2f:14:7a:df:a6:b6:
1d:e9:ce:67:d4:6f:3f:a2:d0:e7:ad:ba:bc:4f:c3:
17:33:cb:fb:2b:82:f0:7b:17:4e:33:bd:23:5d:fc:
91:e1:29:d3:1a:4a:5c:92:c8:e1:fa:14:5c:5b:44:
d8:4f:27:19:f0:c8:81:cc:84:d3:0f:cc:0a:03:e1:
f5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:46:28:3D:58:5E:97:0D:BD:A0:18:CF:F5:DD:80:60:73:70:D6:B3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qkYoPVhelw29oBjP9d2AYHNw1rM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.208.0/20
Signature Algorithm: sha256WithRSAEncryption
25:c2:71:14:5a:5d:20:af:03:c1:d5:f0:16:e1:dc:c7:02:ca:
7f:b6:8d:9f:22:76:67:32:dd:f5:63:8a:5b:ba:ec:67:79:8f:
b6:6d:f2:f8:37:f5:0f:99:c0:e8:45:b3:28:53:79:a3:01:f2:
d6:93:f3:43:d3:a7:fc:1b:49:7b:4d:c6:93:1f:1b:5c:1d:bc:
de:a1:ae:3f:70:e2:12:15:93:59:aa:fb:07:b7:ff:73:34:e0:
21:e1:b8:d1:e7:f4:2e:57:97:9b:b7:f2:45:50:56:01:76:2a:
27:81:09:1d:0a:9b:e7:41:f8:3e:62:8c:6b:3e:ba:3b:98:ca:
83:de:fd:dd:8a:a7:f3:c3:b4:79:c2:8a:7a:f9:1c:fa:13:ed:
f4:d8:83:c1:fd:86:08:a6:0d:09:08:c5:8c:a2:36:0d:45:55:
c9:a5:ad:ca:87:48:25:97:91:72:ec:ca:3e:cd:86:1e:26:0b:
38:b1:7a:c1:bb:4e:5a:0d:35:c4:c1:fc:c0:29:2e:72:fb:d8:
38:dd:ae:5b:75:e8:23:e9:f6:92:01:6e:bb:1b:42:31:9e:35:
ff:14:46:5c:21:4b:3a:7d:b6:79:cb:b9:de:d1:0d:8b:55:1b:
c9:71:3f:8e:47:41:2a:29:62:6f:31:15:a1:b9:87:e1:bc:bd:
c2:b7:65:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org