Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWDS/6kUs3pWnKt0ChDNT3nOittyo1Ag.roa
File: 6kUs3pWnKt0ChDNT3nOittyo1Ag.roa (raw, json)
Hash identifier: +i7FFWmnuGNSArWFDTzOQdtkxdDylZVUrwqCUPEFV7I=
Subject key identifier: EA:45:2C:DE:95:A7:2A:DD:02:84:33:53:DE:73:A2:B6:DC:A8:D4:08
Certificate issuer: /CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB
Certificate serial: 06F0
Authority key identifier: 29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/6kUs3pWnKt0ChDNT3nOittyo1Ag.roa
Signing time: Wed 29 Sep 2021 02:53:47 +0000
ROA not before: Wed 29 Sep 2021 02:53:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131668
IP address blocks: 2405:a640::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1776 (0x6f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB
Validity
Not Before: Sep 29 02:53:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EA452CDE95A72ADD02843353DE73A2B6DCA8D408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5f:3a:c3:e1:a7:64:84:33:45:da:fb:ca:b7:
3f:2f:8c:0b:7e:57:f5:ba:79:73:14:16:90:14:0a:
17:a7:db:cb:03:91:7c:1b:43:c3:b6:0d:69:c4:97:
64:7e:9c:c8:dc:57:84:87:e7:a2:16:33:c7:f7:53:
33:e5:ff:d4:62:2c:b4:a1:c8:14:a8:6e:05:05:01:
cc:79:e5:ab:b5:5f:c6:4b:e2:9c:9e:7d:ff:a1:47:
bf:c3:9c:8b:04:08:a9:87:f6:22:04:e4:0b:90:b7:
de:c2:14:4b:72:5f:a3:7e:8a:57:2b:d5:c3:84:2f:
36:7c:26:0f:a5:87:07:61:9b:c8:6f:9b:98:ab:79:
2e:ea:31:69:2a:5b:6a:de:21:ff:6c:04:86:c6:8c:
ec:04:14:a2:4f:0e:37:2d:fc:55:0a:94:59:fd:f7:
c6:06:8c:f0:23:3f:34:5a:d0:6a:56:e2:cc:15:6d:
3c:df:d3:82:d9:a8:7c:d8:53:01:f9:95:c3:f0:c8:
e5:a9:75:49:11:a2:43:a6:f2:8e:a8:25:13:e0:f4:
61:1c:a9:3d:fb:49:10:54:08:9b:8e:e6:a0:1b:22:
28:3f:1b:57:e1:05:c2:93:26:3d:3c:05:d1:d7:03:
cb:e7:74:16:42:94:5e:84:6e:40:95:85:9b:c5:56:
0a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:45:2C:DE:95:A7:2A:DD:02:84:33:53:DE:73:A2:B6:DC:A8:D4:08
X509v3 Authority Key Identifier:
keyid:29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/6kUs3pWnKt0ChDNT3nOittyo1Ag.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a640::/32
Signature Algorithm: sha256WithRSAEncryption
47:b6:bd:76:14:b3:cb:d2:0e:48:34:8c:4e:ee:4c:d1:39:bd:
48:eb:fe:1c:ac:ad:78:af:34:48:5d:a3:ea:28:0a:c0:b7:c1:
94:fc:0f:6b:e0:ec:72:d9:55:2f:a6:e9:47:56:8b:67:15:a4:
87:54:9a:60:5d:df:70:5c:b4:2c:a9:f1:0f:b6:47:2c:b5:b6:
ff:ba:7a:d0:c1:42:94:78:12:1b:3d:6f:46:81:15:22:6e:3b:
c8:b7:38:e1:ab:78:70:83:23:20:62:99:6f:a9:da:89:5c:02:
ba:e0:26:46:6d:e0:b8:10:d5:c4:53:f2:61:f1:b7:29:78:f6:
a0:b2:9f:f0:c0:d5:1d:1d:ed:16:b6:f9:2c:69:e5:83:6b:25:
f6:9a:d8:59:33:17:90:12:f4:5e:f6:f9:fb:db:7d:4e:a0:67:
5e:10:a0:c5:da:3e:ee:b5:b5:10:9b:db:84:76:66:da:86:b3:
f9:14:6a:1a:91:92:21:21:13:3e:3f:d3:bb:69:dc:c7:e2:d1:
0b:4e:69:de:0b:fe:81:9b:d3:3f:97:54:fc:5e:8c:31:c1:56:
5f:77:dd:84:5e:ab:7a:7a:32:c8:4c:db:9b:92:e9:e3:e2:bf:
03:be:40:25:f2:c7:73:a6:94:86:72:ea:f2:40:1d:c1:0e:57:
f3:9d:8e:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:43 2023 by rpki-client on console-fra.rpki-client.org