Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/Q72z9jji1VzW1Pac-qqq-HlF_rI.roa
File: Q72z9jji1VzW1Pac-qqq-HlF_rI.roa (raw, json)
Hash identifier: i7aPlN2Euz+PZcBXkRXJI5x2I6nZYWESJUO2NoQXtCA=
Subject key identifier: 43:BD:B3:F6:38:E2:D5:5C:D6:D4:F6:9C:FA:AA:AA:F8:79:45:FE:B2
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 016B
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/Q72z9jji1VzW1Pac-qqq-HlF_rI.roa
Signing time: Fri 19 Feb 2021 15:12:37 +0000
ROA not before: Fri 19 Feb 2021 15:12:37 +0000
ROA not after: Tue 05 Oct 2021 04:04:36 +0000
asID: 38173
IP address blocks: 2406:8dc0:2003::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 363 (0x16b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Feb 19 15:12:37 2021 GMT
Not After : Oct 5 04:04:36 2021 GMT
Subject: CN=43BDB3F638E2D55CD6D4F69CFAAAAAF87945FEB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:be:c9:a8:65:75:f0:03:13:e8:c3:5d:9b:86:
53:d0:e4:45:9d:44:81:e4:ae:15:ae:ec:1c:6a:e4:
50:81:ac:5e:ba:c8:4b:c4:f6:e4:28:03:d9:35:6d:
b1:cc:ab:4e:f1:a9:07:01:61:47:6a:06:7f:b8:d9:
2e:50:c3:cd:ce:8d:e6:f9:d6:62:2a:a9:95:3e:49:
99:a8:b5:fe:31:62:31:ba:45:4e:31:01:00:30:57:
89:ed:81:66:6a:69:bb:88:b3:d6:fc:b7:8e:fc:e6:
d1:1b:32:f4:6e:43:a2:23:e0:a2:6a:78:87:01:ce:
63:69:98:f5:30:27:4b:39:a5:6a:dd:06:19:37:17:
3d:ce:5c:48:f5:b0:94:df:48:86:fc:71:95:23:c4:
7f:60:3d:ac:77:80:09:24:57:1a:b2:38:56:90:9a:
25:39:3f:fd:51:80:1e:72:52:c3:87:e2:3d:e1:6c:
0c:ca:bf:00:1b:19:d7:da:d0:c8:1c:ff:35:51:31:
22:07:64:31:8e:1c:ec:c6:02:de:36:ec:70:7e:72:
fe:d3:3d:a6:60:48:15:09:64:02:8e:d8:25:51:1b:
85:67:23:d0:19:91:ff:55:17:1a:61:31:47:0b:c2:
1a:35:67:75:b2:92:ec:78:e9:8b:29:48:4c:5d:a2:
37:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:BD:B3:F6:38:E2:D5:5C:D6:D4:F6:9C:FA:AA:AA:F8:79:45:FE:B2
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/Q72z9jji1VzW1Pac-qqq-HlF_rI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8dc0:2003::/48
Signature Algorithm: sha256WithRSAEncryption
6b:1d:a8:99:86:84:c0:7a:c6:f4:0b:cd:ac:6e:ce:23:86:c4:
d6:67:dc:a5:60:df:e3:b6:d3:5a:39:87:77:bc:a2:ca:d2:d1:
11:d5:8d:93:07:45:4a:43:20:0d:d9:af:51:f6:04:fd:55:d4:
19:d6:3c:00:b4:d0:f0:33:98:8c:d0:22:c6:56:ef:1b:95:9d:
d4:d5:ef:61:70:a7:f8:6f:0e:55:41:d3:23:1d:b7:ed:f4:de:
0e:a5:c4:3c:fd:38:e2:74:60:71:ff:90:06:f9:11:17:74:ed:
22:c9:6d:b6:9c:37:a8:b5:ef:ee:88:d3:2b:b8:db:c8:25:a5:
d8:6f:4d:85:e8:85:fe:46:db:19:55:2a:19:3a:6e:1f:3d:f1:
bf:17:01:35:89:52:52:69:16:ee:a9:43:f0:bf:0d:2a:92:d3:
ac:a0:50:e6:cc:5c:8d:aa:58:08:5c:89:5c:18:e9:ea:6a:3c:
5f:89:ac:85:60:a2:ee:10:7d:d1:12:b3:63:b8:e2:2d:b1:3d:
c2:0d:72:1f:bd:8b:31:a3:14:82:68:9f:a0:5b:6b:e6:e3:c0:
40:97:55:af:ab:a6:04:0c:24:70:cf:b7:80:b7:07:64:11:bb:
8d:69:bd:80:14:6a:9d:ef:79:f0:a9:0f:1c:3e:8b:95:0c:dd:
80:98:ca:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org