Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/4obCdftAONfsz2Pq29SEArjmPIQ.roa
File: 4obCdftAONfsz2Pq29SEArjmPIQ.roa (raw, json)
Hash identifier: 4rRQyCAt3DXbwZ8cwH2cIbyWPkIospEaH6G6zsgtUbc=
Subject key identifier: E2:86:C2:75:FB:40:38:D7:EC:CF:63:EA:DB:D4:84:02:B8:E6:3C:84
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 3A
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/4obCdftAONfsz2Pq29SEArjmPIQ.roa
Signing time: Tue 13 Oct 2020 15:10:16 +0000
ROA not before: Tue 13 Oct 2020 15:10:16 +0000
ROA not after: Tue 05 Oct 2021 04:04:36 +0000
asID: 204185
IP address blocks: 2406:8dc0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58 (0x3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Oct 13 15:10:16 2020 GMT
Not After : Oct 5 04:04:36 2021 GMT
Subject: CN=E286C275FB4038D7ECCF63EADBD48402B8E63C84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b1:ab:c5:dd:fd:94:92:48:0c:a4:98:c9:cb:
6c:2f:4c:96:24:1f:38:66:42:5b:2c:fb:e8:99:69:
b6:3d:14:66:0d:26:6a:1e:7f:a7:d0:27:37:a1:e8:
8c:29:05:12:e5:2a:47:4e:cd:76:63:82:48:8b:ad:
a7:e5:dc:21:de:b8:0d:7c:ef:31:5b:05:86:c0:1c:
24:79:6f:7e:27:82:12:ae:45:61:6d:77:5c:d0:54:
d7:61:27:28:85:c9:61:23:9d:d4:2c:53:9b:7b:b9:
5a:9a:35:f2:e5:d7:62:b9:c8:e6:d2:96:9c:46:c6:
0a:9e:21:06:9b:01:01:20:08:4d:04:02:59:40:43:
3d:6d:c1:f4:d6:cb:e3:09:b7:27:bd:e8:12:9d:35:
8b:a0:1a:31:14:3c:ca:69:55:7f:92:36:e6:db:dd:
7f:46:88:e8:11:4f:7d:ad:b5:a9:ff:e4:e6:32:5c:
fb:1b:16:45:cc:23:72:f2:2a:32:30:76:0d:a1:7c:
fc:92:79:66:46:c1:dc:30:32:72:7c:db:93:6b:cc:
d3:6e:ba:dd:7d:a7:b6:de:7a:4a:59:2c:b9:50:44:
ff:95:00:4d:65:78:7b:83:21:85:14:02:65:b0:e5:
6e:ba:dc:26:93:5a:e1:ef:a1:89:51:b4:b4:c6:03:
33:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:86:C2:75:FB:40:38:D7:EC:CF:63:EA:DB:D4:84:02:B8:E6:3C:84
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/4obCdftAONfsz2Pq29SEArjmPIQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8dc0::/32
Signature Algorithm: sha256WithRSAEncryption
38:d4:a8:29:42:c2:2a:4d:f9:4c:28:ca:dd:a7:25:f8:f6:33:
9d:f0:37:b8:41:69:a3:0f:9b:de:68:31:ff:54:4d:0a:a3:ab:
00:33:ba:cc:c9:05:61:60:79:d6:cd:2c:f9:4a:c8:51:61:f4:
a2:88:c8:07:41:45:37:ee:f9:ae:98:4b:cb:85:d6:af:79:a6:
8a:eb:d9:4f:67:34:a1:81:d9:8f:3c:2f:f6:a5:fc:2b:61:fc:
0e:af:6d:85:e9:83:10:30:01:f3:23:b8:0f:61:ed:1d:53:29:
32:67:88:5c:ae:6e:3e:ba:fd:d5:41:bc:e6:83:df:fb:90:63:
27:9a:98:bb:b4:61:d2:3a:c8:80:5a:f0:87:4c:62:27:21:9b:
8d:8c:a2:84:65:61:aa:3e:d1:b6:b1:ae:d5:08:b8:12:bc:04:
56:3b:d7:9f:0e:75:5d:e4:73:e4:cb:05:99:6a:4b:73:98:64:
bb:af:c6:99:db:b1:e9:de:7d:25:5b:0a:ce:2f:63:22:27:e4:
1b:4f:87:a8:ee:b5:b5:d6:4f:2c:0a:aa:07:9a:9f:b7:ee:a6:
e4:4e:5c:8d:55:7a:22:bb:39:32:ae:ac:f4:e4:e8:82:30:0d:
da:ca:45:f3:24:34:70:1f:1a:30:02:fa:4f:9d:51:2f:a1:ba:
c6:c4:13:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org