Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zkpzrMLQ5mG0m1OxVGc48JYAW28.roa
File: zkpzrMLQ5mG0m1OxVGc48JYAW28.roa (raw, json)
Hash identifier: wErC96IlEkFQRQB0bQETTKL7unGyIoPX+2HnFHTG45s=
Subject key identifier: CE:4A:73:AC:C2:D0:E6:61:B4:9B:53:B1:54:67:38:F0:96:00:5B:6F
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 086A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zkpzrMLQ5mG0m1OxVGc48JYAW28.roa
Signing time: Tue 29 Sep 2020 10:02:26 +0000
ROA not before: Tue 29 Sep 2020 10:02:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 150.116.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2154 (0x86a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 29 10:02:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CE4A73ACC2D0E661B49B53B1546738F096005B6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:25:d2:8e:ba:02:23:af:72:a1:49:65:4a:94:
ce:86:39:a3:95:0e:25:0c:01:15:35:c4:be:71:b8:
e8:14:cd:55:d6:6b:cc:85:a3:a2:55:67:74:27:c5:
23:71:96:e9:d8:99:bb:64:9b:4d:88:d5:8f:26:c6:
23:f5:b3:f6:b8:75:a3:86:c1:37:99:54:1e:8b:82:
a4:62:b5:42:4d:c9:ca:9a:1e:73:25:9e:1e:8b:5e:
c9:c1:b3:91:29:a8:b5:0a:0e:8b:e6:46:64:8a:c6:
4f:ed:76:12:cb:a5:97:3b:09:2c:72:be:9f:12:93:
12:62:88:61:d6:4a:da:b4:93:60:36:47:e5:16:71:
66:40:0c:6d:25:03:12:3a:b0:5e:ed:9d:b2:1c:8d:
5c:b5:c2:4b:f5:b8:1c:27:e9:a6:56:b3:97:e0:09:
bf:8d:a0:2f:b7:a5:88:54:3e:12:8c:bc:1e:1d:46:
59:62:cc:88:8b:a0:95:8f:94:d5:b8:10:2a:b7:60:
4b:fb:1f:ae:0b:c5:aa:cd:e9:6a:ad:40:8f:d7:78:
f2:88:f7:2a:73:06:c6:9d:c3:84:99:1e:f1:0a:ad:
cf:5c:2e:39:1f:22:dd:28:a4:30:4f:56:92:ad:1e:
d7:7d:0e:e4:1c:f6:41:aa:e7:4c:4b:5d:55:cf:82:
92:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:4A:73:AC:C2:D0:E6:61:B4:9B:53:B1:54:67:38:F0:96:00:5B:6F
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zkpzrMLQ5mG0m1OxVGc48JYAW28.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.160.0/19
Signature Algorithm: sha256WithRSAEncryption
28:00:0b:92:5d:f6:2a:b9:03:bd:87:bf:69:f2:ab:ed:56:fb:
57:d2:72:a0:d1:f1:5b:df:8a:c0:5c:82:f7:0a:40:0f:3a:27:
90:9e:6e:23:9f:74:6b:72:ff:3e:f0:50:a0:d7:0b:3b:f4:91:
ce:f9:41:68:fb:41:46:ce:e9:3a:ba:2c:b5:08:db:86:eb:95:
d1:b6:fa:87:f9:fd:29:0a:79:16:dc:21:b6:ea:e2:44:21:87:
56:69:49:3f:df:1f:a3:88:6e:db:be:16:aa:2f:81:60:57:fa:
b7:f9:06:e8:7f:55:b7:66:72:68:3e:e6:99:8b:ff:ac:ef:3a:
bc:b8:09:8f:36:d2:2e:60:a3:05:d3:c2:c4:d9:66:0a:f1:27:
dd:cf:24:e4:b6:6a:70:a8:e3:da:90:91:9a:2d:20:05:e0:1d:
0d:60:b1:3c:f4:65:d9:c9:ff:fb:d3:79:19:72:6f:96:b6:e0:
93:ad:98:3d:aa:ce:44:ce:df:72:14:d4:e3:7c:f4:3d:4e:75:
93:96:22:a9:c7:24:85:da:5d:ff:3f:db:cf:60:61:41:ae:89:
27:ba:dd:bf:b4:15:35:ce:a7:7e:7e:74:0b:6a:8a:3b:71:79:
a9:c7:3e:7a:5f:bf:eb:98:44:28:86:8c:69:4b:61:85:18:e3:
ad:c8:7f:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org