Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/vFwhgQUyhKJBerCQ_aeVq_aFkZQ.roa
File: vFwhgQUyhKJBerCQ_aeVq_aFkZQ.roa (raw, json)
Hash identifier: SMXVW6XaVZ7nQnWOB8564NHBHeNu6MMIoq2cE/JVpEY=
Subject key identifier: BC:5C:21:81:05:32:84:A2:41:7A:B0:90:FD:A7:95:AB:F6:85:91:94
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0B22
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/vFwhgQUyhKJBerCQ_aeVq_aFkZQ.roa
Signing time: Sun 07 Feb 2021 13:08:17 +0000
ROA not before: Sun 07 Feb 2021 13:08:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131273
IP address blocks: 150.116.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2850 (0xb22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 13:08:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BC5C2181053284A2417AB090FDA795ABF6859194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:98:5c:e6:29:76:41:14:e1:ed:7c:6e:b8:db:
30:ed:31:58:96:36:8f:0b:63:bf:95:aa:77:e4:5e:
d2:87:92:e0:2d:d3:f2:c6:c6:7c:67:ae:b2:14:0e:
4f:2b:4e:2f:2e:74:ab:17:cf:23:83:2a:6b:73:87:
1a:62:cc:84:2a:26:3d:9e:e4:b5:e9:1f:eb:20:06:
3f:f5:58:2e:fb:72:a1:09:a2:ca:1c:56:53:b4:ec:
42:ff:b1:0d:95:f8:da:40:70:17:3d:04:0a:51:72:
21:e9:1b:36:d5:99:68:9f:a6:69:2a:cf:50:ad:dd:
5d:cc:fb:97:9f:68:94:d6:88:b9:4e:08:9d:97:f8:
32:f7:1c:30:76:30:1c:74:bb:ec:bf:f7:a3:23:95:
cb:23:64:81:18:c2:01:7f:c0:4e:35:27:2c:7b:e7:
95:75:17:d9:4b:d0:9a:e5:78:78:8b:b0:66:26:50:
62:3e:7c:1c:5b:d0:ac:18:ee:3b:9d:f6:dc:c0:5d:
5b:07:e0:26:b6:f4:f0:be:f3:a6:41:f9:f8:4c:88:
d8:05:c7:bc:a2:0b:26:7a:c2:cb:70:fc:9f:a7:33:
e4:02:15:da:ce:b1:58:4f:56:d2:18:7e:48:2a:22:
9d:d8:7a:43:78:bd:31:e4:12:78:6c:f5:18:b9:48:
99:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:5C:21:81:05:32:84:A2:41:7A:B0:90:FD:A7:95:AB:F6:85:91:94
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/vFwhgQUyhKJBerCQ_aeVq_aFkZQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.53.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:df:9d:4c:33:a8:e2:de:51:12:0f:a7:a4:58:fd:89:5c:b2:
8b:c4:ac:ed:a6:64:9f:63:3d:8d:41:10:60:67:fd:9c:00:cb:
08:22:1f:fd:d5:44:5f:18:98:5c:73:42:8c:ea:5e:69:a8:5b:
90:01:c1:8d:91:25:0e:9b:cf:83:2d:bf:10:fd:24:af:c4:30:
67:81:fd:4c:1a:bb:6d:7b:9a:0c:e2:8e:09:a4:62:a1:6e:56:
0b:c4:c0:bc:a2:22:d4:0f:36:e4:ff:52:a8:42:74:c0:95:8f:
58:28:0c:7b:83:90:f1:c3:36:41:b6:65:70:4a:0d:3d:06:88:
21:26:dd:dd:4b:a4:52:2c:f0:09:22:9a:44:a5:f1:c2:80:ce:
06:ab:a9:4c:bf:a8:0a:1f:86:1e:f6:7f:fe:1e:cf:85:02:66:
79:33:f5:73:f4:6b:61:ee:6e:f3:68:e8:f8:3e:90:4d:3b:12:
6e:97:31:eb:f9:9a:7d:09:e3:6b:7b:d6:99:fb:20:5b:15:86:
c3:1e:de:cc:fd:c0:57:ad:ef:d5:7f:01:4e:f7:a4:e0:7b:46:
8a:73:96:23:5c:0e:fc:13:cc:ae:18:da:3c:c5:ef:be:70:7e:
d9:2c:67:1b:8b:b5:e5:0c:84:4e:40:63:ee:66:93:7b:bb:c7:
00:09:6a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org