Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/wkBZvNh2Lzx0_Tgl-P9uToFtMcE.roa
File: wkBZvNh2Lzx0_Tgl-P9uToFtMcE.roa (raw, json)
Hash identifier: sGWZGTKS3hSMUSi69MOccmmd7lJg8X62YOvToI2EunA=
Subject key identifier: C2:40:59:BC:D8:76:2F:3C:74:FD:38:25:F8:FF:6E:4E:81:6D:31:C1
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0E27
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/wkBZvNh2Lzx0_Tgl-P9uToFtMcE.roa
Signing time: Thu 29 Dec 2022 09:32:17 +0000
ROA not before: Thu 29 Dec 2022 09:32:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.144.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3623 (0xe27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:32:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C24059BCD8762F3C74FD3825F8FF6E4E816D31C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:40:e2:da:b7:80:e8:51:27:d7:66:10:69:e1:
55:97:6a:44:93:2c:58:60:fe:48:ad:6c:fa:6b:73:
fb:ff:5c:5b:11:07:8d:5b:5c:da:c9:e1:70:69:6e:
74:81:66:3a:c6:f3:bf:52:37:a2:54:aa:24:dc:7a:
9b:cc:f2:e5:f3:c9:c5:36:78:d9:96:6f:db:62:02:
2f:75:93:6e:66:27:d5:6e:0e:dc:8f:5d:67:4c:6d:
fd:b4:ed:70:be:01:1f:40:0c:c9:41:84:da:59:24:
5f:fb:74:b7:38:89:00:68:37:70:9b:e3:8f:71:92:
37:20:13:ab:3f:2b:25:2f:49:e2:89:9e:3e:11:41:
aa:44:2c:a8:b5:29:ee:fe:c2:ec:71:a4:61:40:74:
78:1a:6f:10:3b:97:b2:58:5f:10:f9:71:69:ea:43:
95:d1:27:f1:51:e9:6e:6b:a8:8a:3a:79:35:08:21:
11:27:ed:fc:dc:46:fc:9e:4f:81:45:92:b7:a2:91:
78:0e:8d:ad:e2:c5:f7:5e:c9:10:a4:4b:fb:de:d8:
78:b9:ab:a7:a7:9f:87:4e:d2:3d:4d:df:ab:58:28:
c4:b0:bb:36:b9:c5:3d:b1:06:d5:69:fa:04:74:9c:
4c:b0:d8:79:9b:a5:2c:64:83:02:9b:7d:ea:ab:d7:
55:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:40:59:BC:D8:76:2F:3C:74:FD:38:25:F8:FF:6E:4E:81:6D:31:C1
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/wkBZvNh2Lzx0_Tgl-P9uToFtMcE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.144.0/20
Signature Algorithm: sha256WithRSAEncryption
2b:75:03:ca:c5:25:5c:4b:9c:c0:c7:ee:41:0e:b9:cf:e9:4a:
22:48:3d:55:cf:aa:af:b5:f8:90:78:c8:a0:39:76:bb:45:c4:
e2:74:21:d7:37:44:35:1d:8a:fe:13:46:32:a3:85:0d:10:0b:
70:21:61:1c:98:a1:37:68:6f:a3:42:25:65:fd:61:ae:21:00:
d5:5a:ad:32:7e:cb:87:ae:81:69:67:bd:e6:ed:93:6b:88:ef:
2a:2e:11:8e:55:60:0c:4a:9f:bc:73:88:45:cd:55:ed:60:c0:
95:db:37:31:92:08:d4:36:a9:73:a9:81:04:96:2c:86:24:8b:
59:c5:30:24:d2:66:12:3c:27:dc:e2:33:c1:cf:61:33:6b:96:
b3:60:63:5f:2e:3d:d3:3f:09:4d:2e:64:4f:c2:49:cd:8f:10:
84:7f:81:3f:b0:ed:96:9d:33:b1:ae:6d:ea:9c:02:16:7a:99:
34:e6:63:59:7a:e3:a6:2a:ab:8a:3b:89:81:30:20:af:32:52:
1b:98:3a:6a:8b:bd:f7:77:c5:34:b3:bf:74:58:25:9e:6a:a7:
28:49:1f:5c:6e:a1:a3:1f:1f:10:2f:e2:cc:29:59:6e:13:54:
68:73:be:b2:ab:7a:99:19:1c:dc:67:f1:cd:28:93:80:c4:99:
d9:ae:a7:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org