Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/yPmYnQy7fpggjjSrpZz3BRbZI2Q.roa
File: yPmYnQy7fpggjjSrpZz3BRbZI2Q.roa (raw, json)
Hash identifier: AbdLtYS1f9O4OQbsZ9LorAK5v4f8mqPKmSOPengoBhY=
Subject key identifier: C8:F9:98:9D:0C:BB:7E:98:20:8E:34:AB:A5:9C:F7:05:16:D9:23:64
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 083D
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/yPmYnQy7fpggjjSrpZz3BRbZI2Q.roa
Signing time: Tue 29 Sep 2020 10:02:14 +0000
ROA not before: Tue 29 Sep 2020 10:02:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2109 (0x83d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:14 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C8F9989D0CBB7E98208E34ABA59CF70516D92364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:81:a5:7f:8c:08:10:c1:94:bf:bd:ee:c3:06:
37:59:9e:97:37:c9:58:ca:67:f4:be:13:55:ee:3e:
95:ef:73:fc:67:76:1a:35:11:2a:d4:e0:2c:eb:09:
97:9f:8f:eb:1c:37:2b:81:d5:8e:2c:1b:5a:bf:8a:
22:ea:42:cf:44:94:10:d0:03:45:19:7d:f0:12:7d:
3f:2e:14:05:93:86:d4:9f:12:7d:f9:91:1a:35:b2:
b6:9f:12:c1:e5:ca:99:29:61:13:d2:a7:9f:bb:22:
0b:17:13:fc:16:53:3c:6a:d1:e5:ac:4b:cc:44:12:
c5:d0:6c:db:ac:d0:23:48:d6:c1:a0:a8:d7:25:5b:
26:79:6a:60:4c:d5:33:e4:88:b7:6c:37:d8:53:fa:
62:cc:6e:f6:24:40:c3:39:78:9c:21:20:1f:29:4e:
2f:b2:60:3d:87:68:87:d1:56:b6:e3:d9:44:c6:ea:
fa:c8:71:29:3c:1a:7f:9a:46:97:59:ea:a5:c7:8a:
2c:ec:20:71:c7:39:76:25:69:38:64:bb:4b:1c:67:
02:c3:0f:2e:d4:f4:31:3a:26:b8:43:79:33:18:dc:
28:9a:d5:2d:83:1a:94:83:f1:5c:42:28:50:9e:06:
bc:fd:e3:94:ca:27:62:ba:6b:7a:f5:8a:1c:36:c1:
b1:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:F9:98:9D:0C:BB:7E:98:20:8E:34:AB:A5:9C:F7:05:16:D9:23:64
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/yPmYnQy7fpggjjSrpZz3BRbZI2Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.238.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:31:a4:ea:37:56:44:5a:fe:01:a4:4c:75:33:e5:6c:ba:61:
1e:de:11:54:7f:d7:37:38:53:38:51:da:8c:67:97:71:af:a6:
a9:f6:c2:51:61:c7:71:84:e7:f3:7c:88:9b:1a:87:37:d1:c7:
50:5c:ee:3d:85:c6:07:01:69:70:af:de:90:6a:71:c9:9d:94:
18:b1:79:8a:16:48:1f:e6:30:fd:f5:da:e3:ed:03:2c:36:79:
1d:24:82:26:1a:e1:7c:b2:87:14:8e:ef:c1:b5:6f:1c:c2:32:
b3:20:54:e8:86:39:42:38:f0:d9:9e:60:8c:35:e0:4b:8c:32:
93:f7:13:6d:ae:ff:76:19:09:bc:2c:b5:29:3b:46:87:3f:6a:
60:78:93:b6:df:93:ef:58:2b:7b:05:c5:74:c2:f5:d7:b0:d1:
ad:84:90:e9:76:6d:4e:6f:09:96:b3:12:3e:29:d3:1c:f2:39:
cd:3c:e2:9d:7a:02:5c:79:2d:c5:8f:1e:5a:e1:b9:35:60:29:
62:15:7e:78:4a:71:1f:68:a8:71:85:99:e5:ea:31:10:d1:f9:
c6:12:e2:5f:e6:a0:40:5f:08:b0:5c:fd:50:53:d7:0c:4d:68:
08:44:4e:02:d2:3a:7c:dd:b6:c1:fb:96:db:cd:12:9f:34:4d:
a6:09:ef:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:49 2023 by rpki-client on console-ams.rpki-client.org