Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/vWhOuPZXcQsbYiiPVF0tfKYzf74.roa
File: vWhOuPZXcQsbYiiPVF0tfKYzf74.roa (raw, json)
Hash identifier: cyQhNHPuLVuEGyKFE10YY40bNqMEJYrzkSqxfOlUrgI=
Subject key identifier: BD:68:4E:B8:F6:57:71:0B:1B:62:28:8F:54:5D:2D:7C:A6:33:7F:BE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 089F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/vWhOuPZXcQsbYiiPVF0tfKYzf74.roa
Signing time: Tue 29 Sep 2020 10:02:42 +0000
ROA not before: Tue 29 Sep 2020 10:02:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 118.150.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2207 (0x89f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:42 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BD684EB8F657710B1B62288F545D2D7CA6337FBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e2:c4:f7:e2:82:6a:59:c9:f6:e0:ec:90:c4:
50:0f:64:e0:c6:c6:dd:7d:ac:85:c3:6c:cf:a0:0c:
92:f8:98:67:03:19:f6:12:da:c3:6e:dd:84:cb:b6:
80:81:8e:b2:35:35:94:44:51:bc:4b:ed:85:03:b1:
a8:e6:9a:f0:25:74:b5:80:f6:0b:07:1d:ce:44:94:
ac:6a:23:62:98:51:e2:f0:5c:0d:e3:a4:91:61:99:
e4:24:7a:4b:c7:c8:e8:f3:1a:0e:f4:19:df:34:ab:
ba:dc:b3:b0:d2:d2:d8:72:b1:66:78:c6:98:12:76:
42:65:42:ff:08:d3:b1:35:03:98:77:6e:0c:06:5b:
1c:4c:ee:09:24:c2:f8:18:32:00:c9:c0:a0:54:6c:
d5:03:ad:60:a9:38:2c:6d:1c:c8:34:9d:dc:6b:6f:
76:6b:68:ec:ca:ec:0b:04:e0:98:e6:c6:7e:e0:79:
a8:bf:03:14:22:3c:be:ab:e0:8b:15:51:ce:57:44:
ec:96:34:aa:1c:bb:2d:85:b6:5f:77:3e:12:20:f5:
91:95:cb:ec:cc:e6:d3:5f:31:f4:27:3c:22:5b:63:
d4:57:01:58:fa:8e:eb:46:12:09:4f:d6:a1:7c:06:
4e:d8:99:6c:c2:62:f0:e3:35:61:74:79:08:0f:4e:
cb:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:68:4E:B8:F6:57:71:0B:1B:62:28:8F:54:5D:2D:7C:A6:33:7F:BE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/vWhOuPZXcQsbYiiPVF0tfKYzf74.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.248.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:da:c6:2b:ba:4f:70:0f:27:1c:4f:ce:55:a4:2a:09:76:2b:
ca:65:74:d1:4e:48:28:ba:ec:97:02:74:dd:be:e2:17:88:b6:
32:8a:40:4d:b9:d4:56:45:92:cb:15:e4:98:78:d4:80:4d:2c:
44:c3:39:3d:ce:77:55:ba:4c:11:4d:df:2b:95:5f:52:bb:7e:
72:2c:2a:bc:c3:40:1b:b0:42:96:9d:6e:17:4c:8a:cb:a1:db:
33:0b:d6:90:fa:97:da:47:5f:07:6a:00:65:56:2e:36:e3:16:
3a:ef:6f:bc:af:70:59:0a:d7:ce:47:90:77:8e:da:b6:de:79:
30:ec:0e:38:b4:d9:f7:02:18:0b:6f:f1:63:b6:fe:da:22:a8:
57:65:6a:65:c4:93:df:79:90:ea:45:62:67:d8:a2:43:2c:2c:
b1:fc:86:7b:fe:53:d9:87:ae:20:af:83:05:07:c2:42:63:29:
af:8f:66:c3:b9:67:1f:4f:19:c0:21:9b:9c:dd:26:35:a2:9b:
56:5e:05:d8:02:06:ad:17:69:57:01:98:85:1e:59:ee:33:c3:
17:f9:ae:01:ac:00:a8:e4:56:93:59:83:70:32:f1:92:b7:97:
3c:66:f6:34:d5:c7:b4:5b:1d:10:96:66:ca:35:c6:dc:56:0e:
a4:23:69:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org