Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/szGAbBP-nxC3f-NA7hMb3csfTDc.roa
File: szGAbBP-nxC3f-NA7hMb3csfTDc.roa (raw, json)
Hash identifier: 3sLmybPLEacdWSNkI/7ZNaYsIlR26YudPl//if1g/tw=
Subject key identifier: B3:31:80:6C:13:FE:9F:10:B7:7F:E3:40:EE:13:1B:DD:CB:1F:4C:37
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 09EB
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/szGAbBP-nxC3f-NA7hMb3csfTDc.roa
Signing time: Wed 27 Jan 2021 08:02:37 +0000
ROA not before: Wed 27 Jan 2021 08:02:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 150.116.120.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2539 (0x9eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Jan 27 08:02:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B331806C13FE9F10B77FE340EE131BDDCB1F4C37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3b:66:cc:47:77:a5:e1:7a:28:55:70:6c:5b:
42:68:36:51:b6:c8:ab:18:70:19:f8:30:fd:ff:ab:
d7:98:bd:4e:7a:8e:36:d5:99:57:75:8c:4c:97:44:
ee:27:fc:d5:27:3b:de:e5:25:3b:f9:5a:ed:9d:1a:
df:3c:95:fa:43:c1:81:1c:86:52:73:9f:07:37:49:
ea:bc:df:22:76:44:01:21:cb:32:c6:78:14:14:7b:
36:3e:85:7f:37:7f:0d:ab:06:30:4f:c7:b8:3a:04:
5c:52:e3:29:aa:d9:ee:c5:ef:a4:68:10:a5:ba:06:
ae:f8:8b:2b:66:02:f5:c4:55:b8:fa:ad:89:9b:07:
3c:1b:35:77:1a:d6:fc:be:96:bd:59:06:30:89:54:
35:4a:9b:17:34:a2:66:51:fe:9a:79:c6:d8:6d:29:
f6:a9:4a:a8:a8:9c:4f:e8:68:c4:02:8b:42:d5:ab:
57:4b:3d:da:37:fb:6c:5d:f2:f8:27:45:e7:16:11:
4c:a4:d3:e4:8c:f8:42:a4:0f:6f:0e:f4:37:c0:0a:
50:1f:cb:86:f0:05:ca:e8:53:e2:26:6b:af:45:05:
c3:75:3b:c8:cc:10:a2:8a:d7:ef:b7:ae:e2:15:29:
84:9f:dd:f0:6a:c0:ac:b2:96:d3:1f:84:ba:98:83:
65:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:31:80:6C:13:FE:9F:10:B7:7F:E3:40:EE:13:1B:DD:CB:1F:4C:37
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/szGAbBP-nxC3f-NA7hMb3csfTDc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.120.0/21
Signature Algorithm: sha256WithRSAEncryption
b0:cc:7d:9a:88:8a:1c:08:8f:7d:e1:0d:3f:6c:02:50:75:1c:
6a:0f:19:84:07:82:10:38:24:d8:1c:a0:9a:48:4f:b1:7b:82:
84:95:91:78:52:47:ba:24:8f:87:7b:76:9a:09:8a:37:b5:8f:
38:25:da:1e:74:1b:11:55:df:5a:56:02:0c:7e:8e:39:0a:9f:
41:f3:42:db:ae:14:6f:db:eb:4b:a6:ca:94:88:8e:39:bd:e3:
e1:67:9c:b4:bd:72:4f:18:1a:c2:e6:ec:57:d4:0c:0c:ef:b3:
66:08:d5:c4:53:52:8e:d4:ec:30:95:7d:fa:56:1d:68:bd:e7:
5e:48:92:29:38:99:3c:5d:7b:55:b0:7f:bb:ed:af:bf:ce:30:
a6:a7:10:81:78:78:b4:42:c0:f4:cf:80:f1:47:bf:59:45:f9:
24:d1:62:d2:6d:0b:7d:13:c9:38:44:cd:b9:1e:51:17:ce:b6:
95:10:94:7f:12:be:fc:9a:8d:59:60:e4:c5:28:45:85:4e:37:
61:63:6f:45:4d:62:a8:70:6c:a0:17:52:f9:69:4f:3c:76:a2:
f9:44:74:b8:f1:d5:7f:bb:ae:65:e4:d5:ac:95:2f:9f:52:63:
b1:fe:46:79:e3:95:56:62:d3:03:4d:07:bb:d8:23:70:b2:8c:
52:68:12:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org