Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/S-C2ApHuJ7qomsAFV88MPgUFPMs.roa
File: S-C2ApHuJ7qomsAFV88MPgUFPMs.roa (raw, json)
Hash identifier: 3glTh0LCem25Pbhkh9u/iy/rzOEQZNFA8Jr41JWQ758=
Subject key identifier: 4B:E0:B6:02:91:EE:27:BA:A8:9A:C0:05:57:CF:0C:3E:05:05:3C:CB
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 08D9
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/S-C2ApHuJ7qomsAFV88MPgUFPMs.roa
Signing time: Sun 07 Feb 2021 12:58:17 +0000
ROA not before: Sun 07 Feb 2021 12:58:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 101.0.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2265 (0x8d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Feb 7 12:58:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4BE0B60291EE27BAA89AC00557CF0C3E05053CCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1b:38:bb:b8:2e:d5:5c:89:96:49:38:a2:04:
ce:e8:e4:e6:70:2e:30:08:e9:7a:17:bc:0a:d5:f2:
68:09:18:d0:95:77:c3:50:7a:c3:34:57:a8:fc:d6:
df:c7:58:e8:9c:45:f2:3b:d4:b4:7b:89:f2:55:63:
05:94:08:eb:03:0f:e7:e4:0b:b5:f2:5a:18:c2:74:
b6:4b:39:0d:fd:35:2c:79:9b:75:87:3a:d6:5f:83:
91:9b:ba:f0:5c:2d:35:45:47:ba:cc:16:95:9e:0e:
59:cc:02:42:87:4e:36:9a:7c:bd:4a:19:b7:8e:1b:
87:db:da:11:1f:69:81:44:a3:04:e7:94:53:d4:7e:
6d:6f:05:79:d4:8f:d9:27:81:11:eb:2e:44:19:e4:
84:be:a2:1e:42:32:e9:7e:bd:d2:14:30:c2:30:0c:
ab:c4:d6:3e:74:90:d7:37:62:59:b1:28:88:a5:9e:
c3:cd:04:79:a5:91:58:38:2c:3e:95:e9:a5:c3:98:
25:fd:2f:47:0a:97:82:92:01:79:b3:91:d8:08:04:
f3:7c:d7:72:a0:15:9d:b1:c6:ca:d9:da:b4:92:5e:
ce:de:b8:8f:97:a7:e8:b8:f5:81:36:e7:82:a9:c8:
aa:32:b7:f9:0b:91:61:af:74:30:54:d0:a4:81:f3:
1f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:E0:B6:02:91:EE:27:BA:A8:9A:C0:05:57:CF:0C:3E:05:05:3C:CB
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/S-C2ApHuJ7qomsAFV88MPgUFPMs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.0.240.0/20
Signature Algorithm: sha256WithRSAEncryption
40:1c:1a:8a:f2:c9:9f:9e:83:5d:ad:e9:66:7c:7c:47:1c:50:
f4:05:b3:9a:a0:a6:de:b2:f7:66:33:03:89:50:d8:b4:6c:21:
6a:d8:1c:e3:48:b2:69:f9:58:ca:0c:f8:52:bc:73:0c:aa:04:
6c:14:49:a6:dc:b3:8f:ea:6d:7e:d3:c0:ef:dd:b9:83:17:1b:
ec:68:5d:66:a7:d4:66:03:4c:27:b9:4e:07:5b:ad:c5:a3:ca:
c1:91:d6:cf:7a:ed:4b:07:2f:d2:a0:08:62:49:d3:e3:ed:1a:
7b:24:5c:bc:90:c7:0a:cc:7c:88:7b:31:eb:00:09:70:f1:46:
e4:e9:10:46:9d:da:7e:92:a1:fb:50:d4:eb:da:72:0e:f0:0b:
8a:bd:11:b9:6d:95:71:99:ea:cc:4b:31:80:78:57:69:3b:48:
dc:a7:4e:97:a2:81:2a:51:45:e2:90:36:77:4b:90:3f:4a:78:
8d:fa:c5:9f:c7:0b:f2:91:23:6f:88:ab:fa:76:1b:0b:d2:3b:
f9:45:cd:ff:bf:89:be:a0:ac:bd:f9:e8:fd:b7:09:6d:32:bf:
38:bb:a8:57:12:90:1e:d0:42:99:2e:cb:cd:c3:c2:b7:63:bf:
99:aa:30:ae:e7:45:e9:c9:47:c7:bc:30:e4:e4:9c:29:23:ae:
de:a8:c0:f1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org