Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sdGmEgkHeUsOiDCZtyv3rXrI7Lk.roa
File: sdGmEgkHeUsOiDCZtyv3rXrI7Lk.roa (raw, json)
Hash identifier: Ej6+r9x+dofTC969cKSl0N+gtKTVrKXXGTMdPtyiy2w=
Subject key identifier: B1:D1:A6:12:09:07:79:4B:0E:88:30:99:B7:2B:F7:AD:7A:C8:EC:B9
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E35
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sdGmEgkHeUsOiDCZtyv3rXrI7Lk.roa
Signing time: Thu 12 Jan 2023 03:30:35 +0000
ROA not before: Thu 12 Jan 2023 03:30:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 137263
IP address blocks: 150.116.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3637 (0xe35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Jan 12 03:30:35 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B1D1A6120907794B0E883099B72BF7AD7AC8ECB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e4:ab:95:61:ae:4d:65:1b:43:90:4c:f2:eb:
ff:09:e9:a1:6f:1e:0c:03:b0:54:0b:80:6b:95:96:
cb:cb:4b:e5:27:ee:6d:55:cc:c1:f2:15:b2:15:9a:
49:7a:89:0d:50:d3:b9:51:45:c8:67:fa:3c:29:72:
57:43:5a:1e:e9:9e:db:6e:7e:e2:8b:03:f9:fd:5d:
ae:d6:e2:93:86:a1:83:6f:5d:e1:52:62:01:fa:1f:
40:5d:e8:80:31:bf:9f:a6:ae:2b:d8:58:4a:08:be:
6b:2a:71:32:fd:5b:37:e6:b5:28:57:a3:18:47:e7:
8b:93:9a:53:bf:7f:18:d8:9d:ac:41:5d:09:d5:48:
2e:c4:1f:77:70:ee:d9:fa:9f:8d:ad:02:6d:e7:46:
44:3f:4e:d5:f2:a5:88:79:0d:cd:8e:48:9a:87:5d:
64:c0:11:9c:76:1a:af:f3:4a:52:e5:dc:e1:c9:23:
39:0c:32:52:31:66:98:36:fe:4d:b8:9b:4c:07:29:
54:31:0b:b1:1a:d8:60:8d:60:15:fb:94:3b:b1:88:
ba:43:77:fe:af:3d:aa:ad:e8:b8:af:4d:f4:ef:16:
99:12:d8:1f:6b:37:df:f9:87:0b:26:51:54:b5:ec:
f2:a6:b8:12:11:bf:82:c3:8c:d3:1a:63:15:5e:9a:
56:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D1:A6:12:09:07:79:4B:0E:88:30:99:B7:2B:F7:AD:7A:C8:EC:B9
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sdGmEgkHeUsOiDCZtyv3rXrI7Lk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.81.0/24
Signature Algorithm: sha256WithRSAEncryption
59:a3:ff:3b:65:6c:b0:e7:ff:f1:8e:1b:d0:55:9f:89:fb:1b:
62:45:91:40:9f:36:7d:5e:30:3b:13:03:a7:05:a4:f5:c6:d7:
0c:45:1c:fb:a8:b0:cf:ff:3c:37:12:1d:f4:5d:4c:7e:57:6b:
b2:0b:94:02:1e:6d:b1:af:6c:c8:cb:60:7e:71:8f:48:ba:e6:
1b:2f:02:b3:b9:eb:dd:c7:06:13:e3:66:18:cc:94:1b:0e:f6:
87:72:0f:61:fe:b5:5d:f6:c1:55:3c:60:16:1b:8f:f9:8c:ea:
e6:eb:1b:65:04:60:40:7e:00:a1:b8:ef:62:0d:80:c3:4b:7c:
fd:73:56:a7:14:7b:fd:5e:12:95:09:78:a4:c7:47:4a:d8:0d:
1d:f8:1f:c8:49:15:2f:c0:1d:dd:f1:e3:b7:19:1c:1e:10:1b:
6f:74:47:8a:89:b6:f8:26:3f:4a:b2:40:d1:8c:bd:0a:d2:59:
59:ad:5c:19:fb:39:b4:70:40:40:66:07:31:15:dd:28:59:d6:
7e:a6:cb:bc:9f:b2:b1:82:97:c8:d4:7c:97:d4:9e:84:1a:19:
e9:f4:d9:35:cb:1a:0d:77:68:5f:06:d2:b0:07:b8:17:7b:8c:
56:3f:c2:d3:89:81:63:bb:18:67:0d:eb:e7:d3:11:2a:97:f6:
57:d5:ba:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org