Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/NMKfFfgsPZCCzRnP2hkaeZdeer4.roa
File: NMKfFfgsPZCCzRnP2hkaeZdeer4.roa (raw, json)
Hash identifier: k7hI0izvb9bFPQNkDn3unB+jeyNF26d46tXFTOvnll4=
Subject key identifier: 34:C2:9F:15:F8:2C:3D:90:82:CD:19:CF:DA:19:1A:79:97:5E:7A:BE
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 097E
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/NMKfFfgsPZCCzRnP2hkaeZdeer4.roa
Signing time: Wed 29 Sep 2021 02:52:23 +0000
ROA not before: Wed 29 Sep 2021 02:52:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18046
IP address blocks: 150.129.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2430 (0x97e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Sep 29 02:52:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=34C29F15F82C3D9082CD19CFDA191A79975E7ABE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:56:78:8f:aa:36:dc:3e:7c:8a:c9:e5:9e:2f:
9e:8e:e0:4a:f8:62:80:7c:94:b7:f5:83:03:ee:26:
ac:01:f1:0b:79:02:8b:67:5d:88:ec:18:94:e4:2e:
41:5e:9e:02:b7:df:3c:2f:4b:d5:41:07:06:52:ef:
65:d8:a1:f1:65:23:c3:08:13:13:31:a7:44:0d:e8:
69:ef:dd:05:9d:a8:e3:f6:7c:4c:e8:3a:26:90:cd:
2b:c4:dd:f3:68:3d:31:c8:5e:75:79:0d:37:50:0f:
18:0d:77:16:4b:d4:1a:12:11:8d:2d:22:00:39:8c:
22:72:fa:2e:f5:2a:60:ce:76:48:83:26:1a:01:c1:
eb:29:ca:48:f2:89:5e:98:80:54:e7:d9:67:f8:c0:
93:cc:26:f8:4c:72:6e:aa:42:e3:21:4b:f7:08:40:
bf:52:8f:3c:19:1b:a3:f1:af:f1:68:9e:e3:c9:70:
a7:2e:6d:03:a9:19:3b:fd:79:42:19:0d:5f:02:e9:
bb:84:a0:6e:50:e9:28:f1:84:61:2a:85:ec:0a:c6:
7b:03:47:70:ee:fe:e0:fb:dd:24:98:b3:fc:93:39:
40:43:36:8b:25:32:e7:68:bb:c3:97:be:33:9b:79:
7a:60:9e:02:1d:12:ff:28:14:71:07:3c:f5:3e:d5:
7c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C2:9F:15:F8:2C:3D:90:82:CD:19:CF:DA:19:1A:79:97:5E:7A:BE
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/NMKfFfgsPZCCzRnP2hkaeZdeer4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.36.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:97:00:11:e0:28:01:10:65:52:79:01:5c:10:e4:00:8d:8f:
98:78:d3:d1:9b:05:bf:37:e4:f4:10:b5:c7:75:8b:9c:7a:dc:
2b:4a:0b:f8:4d:51:03:d4:ba:e6:2c:aa:85:1e:6d:e8:c2:49:
e0:78:86:ca:23:89:12:83:15:2c:dc:6f:bb:06:00:1a:58:6f:
ba:ec:27:ce:22:9a:eb:ff:7f:6a:50:4e:fa:3a:3f:e6:b6:7c:
29:e0:34:81:e8:4e:13:90:c9:c1:ec:fd:54:49:21:96:f4:5b:
8e:6f:37:83:5a:67:52:10:51:fc:3b:a4:02:86:1a:94:53:e2:
80:e2:27:de:e2:83:61:ae:37:3f:e6:32:1c:4e:e4:66:be:d7:
aa:4c:9b:90:ac:21:48:30:16:15:01:68:c6:9a:c2:ca:56:7a:
7f:ce:bb:18:ad:f9:38:e3:31:c3:94:47:a3:86:04:af:00:f1:
dd:15:1c:f3:2e:d7:68:74:e3:cd:6d:11:b8:f8:72:33:bd:56:
94:41:35:5c:1f:d8:0d:00:b6:ce:74:60:a6:37:5e:6c:fb:d5:
15:65:6c:22:44:bd:89:e9:d8:72:13:1e:88:b0:d9:24:dd:f2:
df:16:e0:aa:8f:ab:2a:52:3f:d3:46:ed:5d:36:29:36:72:4a:
5b:12:ec:88
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org