Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/taAH5MP74qxRAljt2UyxNuFqmPQ.roa
File: taAH5MP74qxRAljt2UyxNuFqmPQ.roa (raw, json)
Hash identifier: bHiIxuaE2o/4rM7ECO2U7DgQ+k6d8vFtVoqbC738ABs=
Subject key identifier: B5:A0:07:E4:C3:FB:E2:AC:51:02:58:ED:D9:4C:B1:36:E1:6A:98:F4
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C1D
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/taAH5MP74qxRAljt2UyxNuFqmPQ.roa
Signing time: Wed 29 Sep 2021 02:39:03 +0000
ROA not before: Wed 29 Sep 2021 02:39:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 55497
IP address blocks: 150.116.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3101 (0xc1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B5A007E4C3FBE2AC510258EDD94CB136E16A98F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:95:72:a8:12:e8:99:18:71:a7:b1:cc:6a:6e:
be:58:54:4d:cb:38:49:bb:ae:0d:a0:a8:8a:f6:1c:
5c:bc:6f:a4:f9:d2:70:07:7a:2d:67:6c:b5:08:e8:
13:c9:84:62:21:c7:87:9e:67:2d:54:79:7a:03:65:
75:a2:80:12:25:0f:7f:2e:00:da:70:c7:02:da:57:
ae:38:17:3c:f3:5c:7e:9f:fb:ae:a5:e3:f0:21:15:
c4:95:84:97:5f:1a:7a:4c:06:22:9b:41:01:02:cc:
ea:79:8f:20:ee:d5:b2:30:6d:92:ed:81:3a:2d:07:
24:4c:e1:86:a6:cd:e6:b1:c9:b8:bf:d4:73:18:f1:
33:6b:62:9d:40:7b:69:cf:c8:27:2b:b5:30:29:3a:
26:ee:13:dd:ac:10:19:fe:3a:2c:af:d9:d4:e6:60:
fb:ce:48:fe:3a:35:43:08:b0:b0:1b:0c:43:af:d6:
27:d4:b8:9d:6e:c6:cd:56:31:1d:a6:4b:9a:74:46:
ba:48:27:8b:1e:14:cb:43:33:3c:8f:70:ad:c5:29:
47:7e:93:d3:cc:ca:1d:9a:d8:f3:69:e0:6c:75:f5:
37:86:32:4a:78:90:d9:a6:66:64:7c:44:8a:2c:16:
fd:96:98:d1:e4:26:59:40:21:52:b2:9c:63:c1:04:
aa:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A0:07:E4:C3:FB:E2:AC:51:02:58:ED:D9:4C:B1:36:E1:6A:98:F4
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/taAH5MP74qxRAljt2UyxNuFqmPQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.9.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:54:52:7b:a3:62:3a:64:58:e6:96:da:d4:8d:84:5c:50:6d:
20:2d:5c:f7:13:f7:f3:fe:67:e0:35:08:39:0f:d3:a3:d2:49:
6f:97:4d:14:b9:fc:07:43:bd:9f:47:a8:c1:ee:d5:b7:2a:40:
6a:dc:07:e9:59:f6:96:c3:52:65:ba:a5:be:fb:00:1f:4b:e9:
54:f5:0b:4a:1d:57:d1:08:53:dc:d8:75:65:7b:01:20:46:48:
e1:96:99:df:88:8f:42:64:48:84:66:69:dc:26:bd:7d:4e:4f:
76:b4:43:6b:f7:e6:7e:4d:22:f7:22:da:1e:b4:1e:c7:60:83:
42:9d:cc:ef:ed:36:91:74:96:d5:6a:6c:da:84:1d:d8:bb:78:
20:94:0b:7d:1c:ee:20:de:f0:e3:8c:40:5f:b3:9a:67:b9:e6:
4e:42:e2:f7:81:87:5a:c4:c0:30:f1:83:b3:55:28:67:1d:9e:
a8:1a:7e:e6:48:7f:c9:68:5d:23:6d:d7:66:98:e3:aa:da:5d:
f3:67:83:5e:83:32:8f:d5:bf:0e:5e:4c:5d:ad:91:67:dc:d1:
f2:a8:7d:9f:8a:83:a5:ab:8b:9c:b3:f4:14:38:b6:70:bd:3b:
67:6d:49:0b:4c:ba:19:f2:38:ee:38:f2:12:95:65:53:2f:6d:
0b:0d:6e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org