Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/03pdKYbzN1-pweNh0z0U7zD9AwI.roa
File: 03pdKYbzN1-pweNh0z0U7zD9AwI.roa (raw, json)
Hash identifier: Kv7Cetyc4VGhMPgr1E5i+i7hUqMXdxUe++YwLAzY86s=
Subject key identifier: D3:7A:5D:29:86:F3:37:5F:A9:C1:E3:61:D3:3D:14:EF:30:FD:03:02
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0124
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/03pdKYbzN1-pweNh0z0U7zD9AwI.roa
Signing time: Mon 21 Dec 2020 09:56:38 +0000
ROA not before: Mon 21 Dec 2020 09:56:38 +0000
ROA not after: Tue 05 Oct 2021 04:04:36 +0000
asID: 209557
IP address blocks: 2406:8dc0:2200::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 292 (0x124)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Dec 21 09:56:38 2020 GMT
Not After : Oct 5 04:04:36 2021 GMT
Subject: CN=D37A5D2986F3375FA9C1E361D33D14EF30FD0302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0d:df:4c:65:da:4d:53:e0:52:3c:58:78:89:
b5:b1:fa:4a:b9:60:47:67:23:70:21:59:6f:88:58:
a6:44:7d:95:04:6c:1e:da:3e:f6:88:6d:6c:12:cc:
fc:c6:e0:a8:1c:05:0d:68:45:82:e5:3f:b4:d3:d1:
78:47:19:01:be:dd:b3:1c:72:88:70:de:b3:35:f5:
8a:7c:e1:b9:90:a8:9f:dd:fe:fb:c9:88:24:19:84:
de:c9:d7:d8:34:ae:0c:fe:68:c7:fd:c7:02:b6:13:
bb:e8:a1:a0:1b:85:dc:f6:01:fb:32:85:a1:48:95:
a0:99:0d:4e:67:52:e4:d8:53:46:23:ee:77:f4:ea:
56:8d:1b:8a:9a:94:cf:c5:85:dd:fe:c9:a0:9e:3f:
f7:89:34:f9:a5:21:32:82:f6:7b:b5:40:32:e4:94:
0f:8f:ac:52:1d:13:65:94:cb:53:80:af:fe:13:cd:
22:d8:7f:60:d5:b2:7a:33:b8:73:82:9b:3a:ff:19:
71:83:30:af:22:05:17:46:bf:2a:05:de:3f:bf:10:
56:b6:52:41:36:aa:16:c5:d7:07:ca:b3:9c:a2:20:
91:94:4f:84:8b:c9:58:cd:ac:ca:0d:09:46:01:82:
b5:31:e8:f9:81:ba:ac:f5:2e:d9:be:86:9d:d9:7a:
2b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:7A:5D:29:86:F3:37:5F:A9:C1:E3:61:D3:3D:14:EF:30:FD:03:02
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/03pdKYbzN1-pweNh0z0U7zD9AwI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8dc0:2200::/40
Signature Algorithm: sha256WithRSAEncryption
5c:da:e0:0f:a5:44:41:6d:b5:a0:18:9b:f7:f5:89:a2:7b:ba:
fa:b4:c0:1a:bd:14:0b:22:4b:83:c1:59:f0:69:c6:a4:39:d7:
dc:8e:96:1b:4e:83:1d:23:f5:6f:82:4c:32:97:1d:3c:b7:f1:
f7:98:56:73:cf:35:bc:5e:55:a7:46:eb:4d:bb:72:04:e6:bd:
84:64:39:5f:08:90:39:bc:2f:f2:97:77:36:65:4b:94:1b:9a:
bd:65:00:fa:22:87:8d:1c:9d:f4:ba:0f:77:2c:8f:32:31:50:
37:4f:64:63:08:7f:7d:ac:03:9d:2e:26:be:95:a7:5c:0e:6d:
df:2a:04:ac:8d:aa:a9:a3:59:ec:6d:1b:cd:75:ac:e6:0a:d0:
bf:f1:89:85:30:68:20:e7:a3:7d:fd:98:64:5a:db:c8:a1:17:
cd:f5:42:2a:09:6d:15:14:6b:9b:60:f4:f7:f8:a7:3d:45:42:
2e:27:74:de:45:ad:62:d8:69:23:3f:28:c2:76:da:9c:95:41:
93:4b:e7:ef:0c:e4:81:cd:cd:80:a3:c1:d8:c5:61:fb:3a:ea:
36:17:4f:d3:4d:e5:9a:2d:ca:09:10:42:dc:42:97:04:e3:bf:
cf:2e:dd:cc:04:fb:f3:2f:67:e0:21:45:6e:d5:e8:60:31:4f:
c9:2e:d4:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org