Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zwrvOvqtHxwLk-HMiC7am1ROiSw.roa
File: zwrvOvqtHxwLk-HMiC7am1ROiSw.roa (raw, json)
Hash identifier: R87heGvpn97aJ1k4fw0GP++vECkWUsZDDDCp9tcfDDg=
Subject key identifier: CF:0A:EF:3A:FA:AD:1F:1C:0B:93:E1:CC:88:2E:DA:9B:54:4E:89:2C
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zwrvOvqtHxwLk-HMiC7am1ROiSw.roa
Signing time: Thu 15 Sep 2022 02:38:57 +0000
ROA not before: Thu 15 Sep 2022 02:38:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 118.150.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:38:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CF0AEF3AFAAD1F1C0B93E1CC882EDA9B544E892C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f3:73:ab:14:2a:9e:3a:ec:37:5b:ac:c7:14:
43:bc:f3:c0:d5:82:eb:3c:fc:a4:0a:d0:72:c4:b1:
cc:21:6f:ad:9b:e3:33:bd:17:71:a5:5b:e7:c4:83:
88:a7:26:00:9d:f5:c7:b0:4a:c1:33:21:e1:1f:84:
d7:56:1e:5f:44:ef:65:06:a1:93:c5:a5:8e:6b:29:
8f:5d:fd:4b:b7:7c:3d:d3:cf:c5:fa:dd:74:00:7e:
c0:68:71:36:37:d7:73:6b:7c:ad:3b:c1:53:00:ec:
09:b2:86:85:85:ec:8a:31:28:eb:28:ad:a3:1c:2c:
72:b8:38:30:4e:5f:22:bc:f1:d0:a7:fc:bc:0f:34:
6c:e7:cc:ae:4c:6d:ef:e3:9a:b5:05:b3:bc:55:4c:
44:fe:14:88:28:5d:91:22:5c:62:a5:ed:d2:b7:3c:
d5:aa:90:1b:fb:65:b7:5a:31:60:17:ac:be:9a:ce:
db:f0:a6:4f:1b:2e:b7:30:14:65:04:74:bb:f9:2c:
8b:4a:bd:16:39:da:6d:ca:fa:5e:48:e7:1e:ad:2a:
c5:6a:96:65:d1:cf:44:bb:21:cd:6d:bf:22:a6:53:
4c:62:f3:6a:51:95:09:b5:49:34:60:78:9d:57:d3:
0a:ff:54:1b:54:dd:48:9e:e2:50:1f:59:fe:57:e8:
4d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0A:EF:3A:FA:AD:1F:1C:0B:93:E1:CC:88:2E:DA:9B:54:4E:89:2C
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zwrvOvqtHxwLk-HMiC7am1ROiSw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.192.0/19
Signature Algorithm: sha256WithRSAEncryption
44:46:3c:d9:c6:64:32:91:5e:a2:7a:a4:29:60:20:ad:0a:96:
81:8a:7a:e1:be:83:13:37:4b:30:a7:1c:70:6f:4e:d4:38:3c:
ba:64:1c:47:04:7a:45:42:e2:5d:11:20:6b:a0:d4:c3:e6:e9:
01:3c:8b:19:82:bf:d0:64:cb:f0:36:44:c1:d4:71:d8:d5:7b:
f4:cf:22:89:9e:ed:5e:cc:5a:5c:df:12:10:98:83:b5:6d:65:
af:87:82:0c:37:89:67:c0:de:90:22:7e:1c:16:c5:b1:d9:54:
28:dc:7e:17:6f:47:48:74:33:38:d7:bd:a9:83:8d:4d:d1:01:
1d:a6:94:93:6e:30:5c:fa:37:25:c1:78:de:79:ca:15:86:d6:
6d:f4:31:2c:5d:6e:0c:af:7c:57:95:a6:37:6f:a7:be:ed:49:
f5:a2:12:46:84:d9:d3:e1:0d:69:58:21:8f:69:b0:87:a1:7d:
87:da:05:fd:5e:00:28:dd:9c:29:05:7e:73:34:e6:2a:f8:be:
e7:f5:90:bc:71:cd:47:99:91:c1:d2:d8:08:fe:08:31:30:32:
8a:00:04:91:eb:15:3c:bf:ab:d6:d1:6c:18:d4:95:57:b3:f2:
7b:68:5f:5a:7b:e8:b1:8c:ee:cf:48:f0:66:a5:62:68:5c:62:
1d:9e:0b:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org