Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/yYc6T1zEtkD2vkiapYq7stULtEo.roa
File: yYc6T1zEtkD2vkiapYq7stULtEo.roa (raw, json)
Hash identifier: 2KsKe85YIJMVTmqApwXNslcC9axFPi4AW5EbhrFVP/I=
Subject key identifier: C9:87:3A:4F:5C:C4:B6:40:F6:BE:48:9A:A5:8A:BB:B2:D5:0B:B4:4A
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0AB8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/yYc6T1zEtkD2vkiapYq7stULtEo.roa
Signing time: Sun 07 Feb 2021 11:52:31 +0000
ROA not before: Sun 07 Feb 2021 11:52:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 150.116.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2744 (0xab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 7 11:52:31 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C9873A4F5CC4B640F6BE489AA58ABBB2D50BB44A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4b:64:8c:3d:b5:57:83:1b:23:8d:42:34:26:
6c:41:be:e4:b3:61:53:3d:7f:2d:ff:a5:c3:a1:a0:
1c:78:cd:0e:00:d5:7e:38:d6:0e:c4:66:04:ac:46:
35:0c:64:ac:39:33:3a:ae:85:c9:a8:19:9f:df:9e:
76:d9:84:5a:0e:d9:72:37:b5:5d:23:ee:14:b1:83:
65:9f:97:6b:d0:35:1f:22:74:40:58:87:bd:a8:0d:
46:b5:c0:1c:db:ff:ea:a8:80:2d:e2:e0:e5:b7:00:
c8:b5:c8:68:64:8f:e5:9e:38:42:d1:e9:2c:fe:37:
97:f1:7b:2d:66:c4:5b:4a:be:3d:a0:e7:a3:5c:af:
59:27:81:13:0f:31:6a:98:e3:51:b5:31:f7:8d:9d:
8f:9d:5b:ee:39:4b:e2:c4:0c:b6:25:c1:f6:c8:dc:
45:ae:2f:2b:04:44:aa:01:79:6c:2f:2d:f4:bc:2a:
89:47:1b:e1:34:25:7f:56:5f:5c:49:83:b9:e2:d4:
cd:3e:c4:31:70:01:75:a5:db:e4:4e:4c:3e:85:c8:
3c:61:c8:8d:98:00:56:62:e7:9b:6d:78:3b:74:ba:
ca:90:48:cd:7f:42:8a:bb:84:6f:42:19:91:cd:61:
a4:43:30:cd:47:6c:da:27:f1:dc:68:b8:bb:3b:05:
61:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:87:3A:4F:5C:C4:B6:40:F6:BE:48:9A:A5:8A:BB:B2:D5:0B:B4:4A
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/yYc6T1zEtkD2vkiapYq7stULtEo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.239.0/24
Signature Algorithm: sha256WithRSAEncryption
55:f2:44:fa:7b:94:aa:92:ed:55:1a:ef:98:43:68:ab:68:97:
97:6b:6c:e7:04:b1:b9:c1:d5:a4:bf:13:60:7f:f5:35:68:11:
54:e1:48:b3:61:ec:48:d7:b4:67:46:fc:be:95:d6:bf:64:9c:
88:ba:fc:9a:6b:c0:85:4a:bc:fe:06:2b:3b:1e:65:1b:34:47:
2d:09:9d:ed:65:57:dc:5f:54:28:15:fa:4b:41:d8:91:37:3a:
70:29:52:fd:69:e8:5b:08:02:7e:11:ea:8a:88:4c:7a:2d:f0:
03:64:3a:41:ba:c4:87:92:c2:49:86:8b:62:d9:f8:97:80:92:
b4:64:04:e0:d0:49:77:7d:71:41:92:08:0a:e9:36:24:e2:8e:
b4:65:02:4c:17:cd:c0:d3:f7:fd:aa:6a:b5:f6:07:f8:71:30:
66:f5:6a:d2:f4:f8:c9:7b:12:c9:07:c8:bd:48:00:20:05:4f:
e4:39:93:b7:74:11:8b:51:f0:26:af:3d:76:83:28:87:3a:99:
e4:b5:0a:89:05:5e:54:a4:2a:91:fe:72:9a:d4:74:0c:4f:0e:
25:46:35:07:de:8d:34:de:ca:ca:e0:5b:0c:0b:68:94:d9:0b:
78:f5:9f:d5:81:fa:3b:a6:c5:a7:04:e0:ee:71:eb:3a:d8:8b:
58:98:0b:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org