Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/x5AxPOdneAVh3w4Y7ZpF8brpB0U.roa
File: x5AxPOdneAVh3w4Y7ZpF8brpB0U.roa (raw, json)
Hash identifier: 4kbfdT3p/4TPhq4D73KLpnFYwyJhs9wUlxpnhqImmc8=
Subject key identifier: C7:90:31:3C:E7:67:78:05:61:DF:0E:18:ED:9A:45:F1:BA:E9:07:45
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0848
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/x5AxPOdneAVh3w4Y7ZpF8brpB0U.roa
Signing time: Tue 29 Sep 2020 10:02:16 +0000
ROA not before: Tue 29 Sep 2020 10:02:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 118.150.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2120 (0x848)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C790313CE767780561DF0E18ED9A45F1BAE90745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a9:c0:f3:b3:38:41:0d:b0:de:9d:29:a2:ae:
cc:7a:ff:30:32:c7:f8:78:7f:4f:4a:68:86:ed:b3:
bb:8a:f7:db:a2:b2:c0:db:08:9e:be:bc:7f:05:01:
83:84:98:75:aa:4c:a1:84:5e:de:1f:5b:08:87:6a:
18:26:29:55:93:8d:9b:a3:4b:29:db:3a:ac:37:02:
77:2d:8c:01:1c:b9:35:f1:01:f0:bd:91:25:16:cc:
ea:e5:3a:e8:4d:42:0c:b8:5c:71:59:15:80:b1:b7:
b6:d4:ca:be:e4:66:ea:75:be:a8:03:7e:f9:c8:49:
77:f9:7a:b9:73:91:03:f3:3a:7c:48:fa:90:39:91:
83:b8:11:0f:26:76:33:1f:d5:80:18:50:18:7f:ae:
6e:cc:8a:50:9e:b1:0d:4e:34:4e:0e:5b:57:80:ad:
bd:9d:48:aa:f2:64:5f:26:91:7a:c5:d1:34:4f:40:
29:5b:b1:53:18:82:c3:79:5c:d8:eb:4c:c4:28:37:
ab:21:9f:de:8c:be:49:cc:96:09:34:ec:13:44:b4:
46:c7:34:31:ba:37:a2:3f:7d:5a:b1:47:47:b2:a8:
43:38:b3:8e:de:13:53:be:3d:96:79:e5:e8:cb:9b:
59:20:7c:3b:ff:cb:2e:cb:34:5f:56:30:77:d9:f6:
43:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:90:31:3C:E7:67:78:05:61:DF:0E:18:ED:9A:45:F1:BA:E9:07:45
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/x5AxPOdneAVh3w4Y7ZpF8brpB0U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.128.0/18
Signature Algorithm: sha256WithRSAEncryption
3e:f1:41:75:e0:93:ed:f2:a3:f2:80:1a:10:27:18:35:a9:8a:
0a:71:93:ca:7e:51:d2:60:38:b8:79:e9:ae:b4:71:8d:cc:ec:
ff:7b:02:36:98:83:50:97:e9:ec:20:85:4d:fb:8c:60:18:88:
72:75:de:44:43:4f:fd:31:24:46:15:a6:f5:93:4e:3f:8a:a9:
06:bd:1b:5f:bc:b0:bb:39:32:ce:6d:b3:67:bc:c1:5f:24:b1:
a6:07:64:5e:40:70:ce:ed:fe:b6:fc:c2:62:08:17:ca:e2:98:
3a:3b:89:ce:03:3c:d7:bf:f0:a8:d1:77:52:d6:01:60:b0:05:
ae:40:45:24:82:a6:01:92:33:c8:8f:ec:8c:fe:2b:f0:84:6e:
92:6b:a5:2b:9b:72:09:57:68:2d:43:81:04:cd:21:fa:0a:67:
9b:21:9f:6f:39:da:80:6c:3f:a6:e7:8f:ee:f3:8b:27:f6:ad:
bc:c1:bf:3c:92:f8:0a:df:33:e5:53:10:9a:0a:4c:c8:96:b0:
1c:55:34:67:37:a6:36:45:b1:e1:ae:e7:b2:59:e3:dc:0c:3f:
40:ea:5c:a7:33:b5:b4:42:57:66:87:00:17:80:47:63:a6:c8:
69:d1:89:87:d6:5b:73:ef:73:ef:d3:1a:27:16:fe:eb:42:b1:
90:66:36:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org