Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/tbIvViLaBZypa6iIQqGs96z6uP0.roa
File: tbIvViLaBZypa6iIQqGs96z6uP0.roa (raw, json)
Hash identifier: u+m9Ph0rUbviEJB4zFzUvSWUnGXXf66Nomf7r1QvkkU=
Subject key identifier: B5:B2:2F:56:22:DA:05:9C:A9:6B:A8:88:42:A1:AC:F7:AC:FA:B8:FD
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 33
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/tbIvViLaBZypa6iIQqGs96z6uP0.roa
Signing time: Mon 12 Oct 2020 14:10:42 +0000
ROA not before: Mon 12 Oct 2020 14:10:42 +0000
ROA not after: Tue 05 Oct 2021 04:04:36 +0000
asID: 17413
IP address blocks: 2406:8dc0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51 (0x33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Oct 12 14:10:42 2020 GMT
Not After : Oct 5 04:04:36 2021 GMT
Subject: CN=B5B22F5622DA059CA96BA88842A1ACF7ACFAB8FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b7:28:ff:63:5b:fd:69:04:cd:51:cf:29:09:
be:da:f0:25:73:d8:86:7e:3f:f4:3d:1c:42:25:3e:
8c:62:1c:12:88:67:24:59:47:c6:97:f4:7f:a4:5f:
f9:7f:f9:61:e8:24:40:29:8e:ec:00:22:75:cf:99:
fd:f0:51:fe:a7:c7:2a:28:ca:4f:4a:de:b4:97:37:
b3:4e:8e:2e:b4:9f:a8:d9:c2:67:09:44:11:80:46:
8c:2e:c1:c3:6a:88:8c:d0:e1:2b:1b:58:e9:c4:6c:
82:c0:5f:31:8f:62:f7:86:cf:b3:67:01:fa:f5:c1:
28:90:e1:ff:c6:7e:e4:35:14:11:fa:a2:a7:8d:4d:
99:f7:d4:e3:92:da:8f:94:e5:36:91:c3:62:89:1e:
6c:5b:b3:9f:0d:a8:45:e8:4a:42:4a:d2:cf:2d:c9:
cf:fc:d0:dd:80:23:2c:42:e3:a2:0b:5a:43:e2:ea:
40:17:14:55:49:30:35:86:7d:85:8b:56:98:49:a9:
fe:73:14:63:3e:95:5f:7f:e5:ab:f8:27:d6:63:7d:
5c:16:e7:23:dc:f4:ae:bc:fc:82:9b:39:ae:dc:a8:
0e:2b:ad:fc:69:a4:24:14:b4:c9:86:41:8e:b0:92:
7f:5c:d4:00:77:c2:38:34:96:b6:10:60:83:da:4b:
4e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:B2:2F:56:22:DA:05:9C:A9:6B:A8:88:42:A1:AC:F7:AC:FA:B8:FD
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/tbIvViLaBZypa6iIQqGs96z6uP0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8dc0::/32
Signature Algorithm: sha256WithRSAEncryption
d1:01:f4:8e:b7:af:cd:a4:75:8b:a2:53:6b:75:5f:a2:33:02:
5a:78:69:e2:70:a5:3b:56:60:b3:d5:4b:25:99:79:2e:9d:da:
a2:a3:6a:0a:cd:c5:92:0f:0e:3b:18:4d:f9:50:b2:e8:b2:59:
a7:e6:02:7a:f3:a3:fb:e0:c2:93:f7:b6:df:22:8c:0b:2b:f8:
24:3f:a1:3d:a0:0c:c5:1f:da:9c:c4:a4:fe:99:a6:ec:d4:84:
2b:5a:5b:5f:7d:eb:df:6a:64:1f:34:06:9e:40:b4:d7:9e:d9:
1c:cb:54:97:d7:cb:4f:d6:38:97:00:51:35:2b:f4:6a:a9:bf:
4e:1d:56:a1:7c:4d:00:c8:ce:ec:f6:af:af:9f:97:50:9b:12:
22:fb:0e:a7:0d:ab:6d:c1:f1:fa:de:ef:7a:57:97:cb:75:35:
78:f8:1a:f3:35:bf:88:a5:2d:35:28:72:cc:27:d8:3e:6b:e8:
1f:87:66:cc:72:4f:43:be:cd:a7:05:c2:c0:e9:46:8d:49:2b:
bf:a2:42:d9:ff:41:f4:2b:1b:2b:99:5f:3c:d9:b8:a2:6a:23:
d1:1e:c3:3c:d0:99:cd:72:b8:61:21:bf:51:eb:28:43:fa:2e:
ae:1d:c2:c8:bb:cb:5d:7b:69:5b:70:12:b1:5e:f1:1c:72:50:
c5:ef:04:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org