Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/wD9NJP-PWyDBu6mhkY50e0tnjRE.roa
File: wD9NJP-PWyDBu6mhkY50e0tnjRE.roa (raw, json)
Hash identifier: cTwMeXSm05vOwgiOabx5+dVDn0llvDcnytX1rOXS92c=
Subject key identifier: C0:3F:4D:24:FF:8F:5B:20:C1:BB:A9:A1:91:8E:74:7B:4B:67:8D:11
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 021B
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/wD9NJP-PWyDBu6mhkY50e0tnjRE.roa
Signing time: Wed 29 Sep 2021 02:53:42 +0000
ROA not before: Wed 29 Sep 2021 02:53:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 51044
IP address blocks: 2406:8dc0:2500::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 539 (0x21b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Sep 29 02:53:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C03F4D24FF8F5B20C1BBA9A1918E747B4B678D11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:17:a2:f5:58:5d:cf:1a:fb:31:97:df:c6:5a:
f8:1b:7c:67:97:a1:26:a1:6f:32:61:df:4f:3f:67:
80:24:da:d1:22:2b:b6:08:06:fc:ac:56:98:71:1c:
75:bd:d9:10:5d:2b:38:29:8c:ed:9c:ce:98:9b:90:
32:0b:00:fe:c1:59:92:b6:44:bc:38:52:e4:a6:de:
2c:50:5e:8b:97:2b:bf:bc:f4:f0:7a:22:be:a6:0f:
b8:af:4e:8e:a8:5f:8b:d5:3d:c2:3a:a3:4c:04:11:
ce:bd:19:f8:3f:39:b3:98:d7:a3:42:71:dd:2f:6f:
9e:1b:4a:09:a7:c9:76:91:0c:c2:15:15:30:2d:bf:
29:07:fa:48:09:47:91:27:4c:08:37:00:14:1e:cb:
ff:eb:74:90:93:7f:31:da:8f:75:e3:68:5a:70:c7:
9a:5a:27:84:61:65:fa:67:38:32:0c:69:50:ea:1c:
d9:c2:54:b7:d6:6a:8b:fb:03:91:23:2b:66:ce:eb:
3a:ed:75:ff:d9:45:c8:43:ea:06:0c:9d:8a:2a:59:
a3:14:eb:6c:26:0d:26:a8:34:0a:6c:41:1b:34:bb:
12:53:76:34:33:43:34:1b:2c:8c:5e:e0:ed:fc:da:
90:75:9d:f1:22:46:ab:46:f6:94:70:a8:63:71:4d:
7e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:3F:4D:24:FF:8F:5B:20:C1:BB:A9:A1:91:8E:74:7B:4B:67:8D:11
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/wD9NJP-PWyDBu6mhkY50e0tnjRE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8dc0:2500::/40
Signature Algorithm: sha256WithRSAEncryption
b8:7f:34:86:2a:30:c2:60:4b:aa:cc:21:3e:7d:05:c7:22:0a:
10:52:8f:73:6f:b6:4f:53:dd:b2:2d:d9:02:43:89:9d:df:ea:
37:d5:08:bc:41:6a:2b:9a:44:dc:01:55:89:c7:ee:62:43:f8:
c2:5a:fb:f0:35:96:18:ee:76:e2:71:10:cd:6e:ef:75:a6:3e:
9b:dd:ec:9b:b6:f6:ae:5f:ff:ee:d3:f3:d4:4e:95:8b:9e:c8:
e7:51:27:56:99:bb:1e:db:c2:37:4c:21:30:7a:2e:6c:a3:11:
e1:e4:62:d3:54:f6:b8:3e:39:d6:82:6a:b7:e8:8c:a0:dc:47:
19:17:eb:7a:b5:c0:b5:e0:0c:17:ae:fd:ef:8b:43:29:e9:83:
2b:70:7f:3f:8c:70:ab:fd:75:21:63:71:a0:80:c2:e5:68:86:
59:25:67:71:cd:73:3c:7c:a2:ce:90:fc:0b:f4:8e:f4:85:18:
d2:e2:7a:92:b6:8d:8a:b7:cf:7b:88:d0:c1:44:2e:36:2e:b2:
31:af:b7:d7:7a:c9:2e:e7:35:e8:4a:4c:1f:45:1a:2d:a0:22:
a1:da:4e:21:33:fd:28:23:ea:5b:7d:29:b4:c8:e1:e4:3e:53:
c7:6e:f8:35:58:ff:6a:4e:c3:35:00:66:84:e8:02:0a:ff:9f:
66:1b:47:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org