Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/wCM9A9dZ8HXV6wAJf-R5YSYiwl4.roa
File: wCM9A9dZ8HXV6wAJf-R5YSYiwl4.roa (raw, json)
Hash identifier: rfg8+bOyxp2ceRD6sdgv2X8waoyg+9Zyg+S2OksOspY=
Subject key identifier: C0:23:3D:03:D7:59:F0:75:D5:EB:00:09:7F:E4:79:61:26:22:C2:5E
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0C2D
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/wCM9A9dZ8HXV6wAJf-R5YSYiwl4.roa
Signing time: Wed 29 Sep 2021 02:39:06 +0000
ROA not before: Wed 29 Sep 2021 02:39:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10085
IP address blocks: 223.26.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3117 (0xc2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 02:39:06 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C0233D03D759F075D5EB00097FE479612622C25E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:94:7b:16:91:6b:84:87:0d:59:ab:56:cf:bb:
b3:34:8d:27:49:db:d6:b1:3e:87:95:9a:63:95:c7:
30:7c:e9:6d:0f:ca:d9:d2:88:e7:ac:35:da:bd:9c:
1e:38:80:f6:fd:16:84:fd:ac:47:f5:10:78:f2:32:
be:ab:4d:e5:62:b6:3f:e2:9e:c0:f7:80:f3:81:18:
b1:c6:02:2c:96:18:4b:4b:43:82:b0:0a:0d:67:29:
f4:4e:8c:a7:21:cf:87:d5:fd:ba:fb:2a:5f:0e:fc:
41:dc:da:45:04:6e:b1:b8:34:e3:14:b5:cf:67:9f:
f7:92:fd:b9:83:7e:6a:96:89:25:e9:2f:0b:96:15:
53:5f:ce:75:0c:e0:e3:a7:b0:cd:4c:45:90:8c:f5:
e1:3c:b4:44:e0:6c:01:99:52:d8:48:17:df:ea:7e:
72:75:1b:2b:0c:25:e5:e0:f7:d0:61:f3:34:b3:44:
e7:41:bb:70:ec:9a:2d:10:32:92:d1:91:d7:82:52:
0e:1c:86:4b:d6:79:ce:dc:f2:b0:51:ab:bf:58:0d:
42:e5:74:14:53:03:43:b7:8f:7e:8a:b5:13:12:e9:
44:9a:59:17:27:98:1f:2d:be:e8:e4:b3:a5:9d:56:
4e:f8:86:dc:a6:f6:c3:0f:60:03:86:a7:a1:20:bd:
1a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:23:3D:03:D7:59:F0:75:D5:EB:00:09:7F:E4:79:61:26:22:C2:5E
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/wCM9A9dZ8HXV6wAJf-R5YSYiwl4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.88.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:f7:1f:3a:4c:f0:0d:30:08:07:a4:1f:19:89:41:ab:aa:5c:
a4:82:6d:8d:ea:60:5a:af:63:43:1f:38:4b:b9:4e:f8:a4:81:
95:e8:2f:45:f1:0a:99:8e:be:79:05:db:23:ea:c5:4c:3b:7a:
45:fb:94:b2:a6:10:60:be:60:cc:0a:76:b2:28:6b:2b:13:60:
05:63:d5:73:84:14:58:3d:6d:96:26:77:77:66:3a:64:c6:65:
32:cb:2d:93:11:21:da:25:b2:d5:91:91:ec:00:f1:96:a4:6a:
ea:d0:8a:a3:8b:85:de:f2:94:94:9f:e8:6a:de:c2:f9:45:2e:
b9:d4:eb:99:36:e6:22:fd:83:30:2d:71:1c:6a:6f:76:4e:eb:
22:35:f0:82:7e:05:10:94:fe:4d:dd:f2:df:dc:25:53:7d:61:
43:58:90:9b:f2:50:57:48:df:1a:9f:8e:0f:bb:4b:d6:69:eb:
1d:8b:5f:12:1e:a9:66:8b:3b:37:86:03:e4:41:39:31:79:76:
fb:9d:b2:9d:1a:83:54:d2:09:5d:c5:50:14:40:a8:e0:05:c2:
d0:90:f9:d4:73:97:5f:73:38:69:f7:01:fa:d2:63:fb:ff:d9:
b9:6b:69:da:98:c6:42:84:a7:94:d2:2e:61:f6:26:e2:44:08:
46:b9:34:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:49 2023 by rpki-client on console-ams.rpki-client.org