Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/mOdq6LfpQBEY0ZMOHQMutDZvgM4.roa
File: mOdq6LfpQBEY0ZMOHQMutDZvgM4.roa (raw, json)
Hash identifier: 4BbsG9GBm3anr81okIeCnwOXSG8CUXWMXUFcunmW4ng=
Subject key identifier: 98:E7:6A:E8:B7:E9:40:11:18:D1:93:0E:1D:03:2E:B4:36:6F:80:CE
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 92
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/mOdq6LfpQBEY0ZMOHQMutDZvgM4.roa
Signing time: Thu 29 Oct 2020 16:11:48 +0000
ROA not before: Thu 29 Oct 2020 16:11:48 +0000
ROA not after: Tue 05 Oct 2021 04:04:36 +0000
asID: 212666
IP address blocks: 2406:8dc0:2002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146 (0x92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Oct 29 16:11:48 2020 GMT
Not After : Oct 5 04:04:36 2021 GMT
Subject: CN=98E76AE8B7E9401118D1930E1D032EB4366F80CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f4:89:ae:77:48:0c:f3:13:c0:2e:4e:90:41:
b2:7e:ef:24:f2:f1:ae:1d:23:e1:04:4a:2a:61:31:
9e:91:da:cb:65:ee:1a:e5:5c:23:63:68:23:30:2e:
96:b3:be:8e:4a:76:5b:d7:bb:b6:d9:e2:18:45:00:
7f:73:d0:97:2b:5e:b9:a3:d6:56:d5:3b:b0:e2:34:
ad:0b:b4:a0:66:8e:19:ce:29:ac:7c:8f:f3:09:35:
09:06:c3:74:2d:21:22:4e:fc:a1:3e:44:44:ff:2a:
b8:63:c7:1b:30:cf:30:a0:93:5d:bf:65:68:22:cf:
5d:68:43:53:3d:ce:89:ef:88:dc:66:07:39:9e:fa:
6c:1e:bf:16:8a:d6:97:15:f1:1e:61:ec:b2:9f:3a:
a9:75:ef:bb:d4:ca:41:bf:17:9b:89:8b:ab:2b:67:
27:06:3a:70:bd:1a:c1:5d:0d:8a:3f:fd:0d:d5:6a:
15:1f:c6:ca:ca:c8:5e:2b:23:03:06:9e:5f:9a:83:
ef:01:c1:45:cf:7a:42:55:4d:5d:60:70:48:d7:67:
e3:29:47:63:3f:d5:f7:6d:aa:e9:04:00:79:32:6e:
4b:1d:e2:aa:61:71:03:cc:86:4d:89:96:76:ce:69:
36:75:5f:35:9f:ec:a1:c2:6c:6d:7a:6c:9d:0f:3e:
68:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E7:6A:E8:B7:E9:40:11:18:D1:93:0E:1D:03:2E:B4:36:6F:80:CE
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/mOdq6LfpQBEY0ZMOHQMutDZvgM4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8dc0:2002::/48
Signature Algorithm: sha256WithRSAEncryption
46:bb:65:a5:f5:01:e5:34:03:af:75:e2:cb:dc:0e:de:a0:26:
fb:3c:25:9c:35:f6:01:82:a8:5a:c0:e0:b8:03:f8:b1:85:2d:
11:67:b1:f8:70:68:71:45:77:a4:e3:7d:89:41:27:f5:c0:8b:
3f:86:71:2c:8e:9f:e5:ef:20:e7:21:9d:90:73:e7:ec:10:c1:
b2:6d:73:7f:d0:72:b6:22:ff:05:7b:9a:f7:f4:69:9e:0c:76:
81:4f:93:c9:ae:55:e9:c9:76:76:dc:03:ec:87:c1:bb:5d:b2:
2f:68:64:16:b7:83:0f:8d:a5:b4:92:ea:95:81:cf:95:89:eb:
e6:f3:39:5a:95:3d:2d:b4:ad:35:5d:5b:00:5b:9a:db:18:9e:
55:7c:76:c4:e4:42:be:4a:30:33:37:f1:5a:f5:f9:02:6b:26:
f7:06:0c:10:2f:b1:5f:a4:57:e0:e9:bc:9c:9c:eb:9d:8d:f0:
eb:3c:d5:78:d1:18:67:99:1f:3c:86:ea:80:43:d5:32:dd:76:
8b:55:77:c8:fd:51:b7:04:cf:a4:3d:e1:48:60:30:4e:43:58:
50:49:aa:64:0f:00:ff:ba:8a:a2:6a:75:90:47:dd:d1:53:2d:
eb:15:b2:6a:aa:6b:50:b2:2a:40:41:3c:90:0c:89:68:70:32:
e8:f5:c8:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org