Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/xRhLs3KSiJkKULjvHOw2JxYJfeY.roa
File: xRhLs3KSiJkKULjvHOw2JxYJfeY.roa (raw, json)
Hash identifier: U4Cfi/+klX9yd8F6/qdzn2nvYlah5nuU5K2No/++h3M=
Subject key identifier: C5:18:4B:B3:72:92:88:99:0A:50:B8:EF:1C:EC:36:27:16:09:7D:E6
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0845
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/xRhLs3KSiJkKULjvHOw2JxYJfeY.roa
Signing time: Tue 29 Sep 2020 10:02:15 +0000
ROA not before: Tue 29 Sep 2020 10:02:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 150.117.96.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2117 (0x845)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:15 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C5184BB3729288990A50B8EF1CEC362716097DE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:14:f3:63:9e:1a:26:b9:6d:25:17:c6:76:51:
3d:66:2a:a8:05:8f:02:fb:03:9d:7b:62:14:51:5d:
5a:33:c0:da:01:17:39:c9:73:6f:00:95:90:b9:44:
fb:48:7c:ba:7d:64:b5:01:1a:98:c3:be:65:32:5a:
dc:16:83:6b:64:c3:69:51:78:8b:2c:11:b9:f6:d6:
08:d4:83:d9:0d:cf:bb:3c:b3:20:79:9c:51:e0:61:
6e:1f:38:5e:3d:2c:1c:02:a0:2a:a5:af:a3:d5:ff:
53:45:38:f1:27:89:4e:36:2b:01:7b:bd:3d:c8:24:
65:6b:47:e1:c5:39:da:ff:6b:b9:b2:48:89:04:c5:
a7:e6:8d:6f:ed:11:f0:7f:68:a1:fd:c9:49:ef:39:
c1:d8:26:80:f6:c7:71:3f:0c:6b:c2:ca:1b:45:da:
63:26:f6:47:f7:53:d3:f9:3f:69:7d:be:8a:05:ba:
4d:fa:fe:db:e7:a0:4f:4c:d8:00:54:88:90:39:e4:
2c:1a:52:dd:a1:6f:8e:5b:81:05:f7:1e:43:57:b6:
bd:80:40:2c:1f:1a:2a:7e:8d:91:c8:a0:4d:d0:2b:
4a:82:b7:e0:6f:a1:c7:f1:46:43:97:0a:a1:cc:0c:
60:a4:19:b8:c2:4b:e2:95:86:d3:ce:d1:37:97:20:
01:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:18:4B:B3:72:92:88:99:0A:50:B8:EF:1C:EC:36:27:16:09:7D:E6
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/xRhLs3KSiJkKULjvHOw2JxYJfeY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.96.0/21
Signature Algorithm: sha256WithRSAEncryption
9a:5c:8d:ec:52:f0:95:23:2d:6c:c7:f6:70:01:eb:8c:06:9e:
1e:d2:eb:13:6e:01:64:ad:ce:95:fc:ab:28:48:59:73:61:71:
48:b8:21:eb:55:fa:47:7f:f5:5e:b0:b9:35:32:e9:4c:ce:62:
34:52:c1:81:2b:9e:b0:51:fc:ba:88:b7:b3:f0:b4:5c:e2:ca:
bf:e5:73:85:65:7a:2b:2b:5c:23:05:6a:e6:f4:6f:a2:a1:29:
7f:a6:04:8e:ee:dd:eb:f4:e0:9c:24:27:c5:1b:a8:82:c8:04:
d5:fa:28:fa:ec:ef:f2:2d:88:30:39:32:87:14:e0:c8:b6:02:
9a:37:19:c0:d0:03:47:07:09:7c:71:cb:5f:c8:1a:6c:8f:ae:
e2:0c:2e:5c:8f:d8:52:02:ab:90:e8:c4:3b:59:c4:1d:46:45:
9d:89:2b:6c:5a:08:ea:9c:55:14:5f:7f:39:0e:80:5b:9b:ce:
3b:b5:30:57:66:60:e3:2c:eb:1c:16:25:c6:30:ec:d6:c6:55:
af:70:94:79:bb:ae:08:c5:23:dc:3f:3f:fb:a1:9b:50:8f:78:
a2:b9:3e:c7:0e:01:a2:28:47:83:94:7b:68:fb:1f:ac:5e:2b:
8a:d1:e1:d5:21:5d:4b:4b:5f:34:74:75:5a:89:c4:80:10:37:
f4:ca:8a:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org