Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/PmKRcrZyV5Cw9FktU55EaDBsJHI.roa
File: PmKRcrZyV5Cw9FktU55EaDBsJHI.roa (raw, json)
Hash identifier: ZkjYUBh7QvH1H6cBSxEm+S/EixVFBPPGrw6/W9GaFtk=
Subject key identifier: 3E:62:91:72:B6:72:57:90:B0:F4:59:2D:53:9E:44:68:30:6C:24:72
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0336
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/PmKRcrZyV5Cw9FktU55EaDBsJHI.roa
Signing time: Thu 15 Sep 2022 02:34:44 +0000
ROA not before: Thu 15 Sep 2022 02:34:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 51044
IP address blocks: 2406:8dc0:2500::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 822 (0x336)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Sep 15 02:34:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3E629172B6725790B0F4592D539E4468306C2472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3c:4d:d5:f3:80:a9:b7:5f:53:f0:57:91:6f:
f7:ad:06:75:61:09:5f:67:07:4d:c4:d5:1a:98:8a:
5c:bb:ee:85:b1:3f:89:30:ff:28:52:46:49:b6:7b:
cc:bf:63:cd:9b:f4:d0:82:f1:5c:b2:39:b0:87:6c:
f4:52:c7:17:87:3c:0d:00:6c:42:80:a3:e9:f4:91:
2c:08:8c:c4:99:4d:de:ad:b3:00:db:88:53:f3:74:
be:e9:8b:93:37:06:ee:20:a2:2f:a3:cb:a9:97:48:
32:35:ab:68:1b:b2:e0:6c:bf:d0:98:30:38:4e:18:
66:25:39:39:23:a9:60:e0:2b:8c:0a:9d:3d:2c:a3:
c3:7a:6d:4b:43:ab:26:37:47:b5:5d:8f:42:18:32:
32:32:bc:3d:14:15:70:d0:93:04:04:48:7c:64:3c:
33:ad:5f:61:52:57:b5:56:67:48:27:f1:ff:b6:59:
90:82:1d:d7:b5:63:a7:4c:0f:76:ab:f7:ed:ca:00:
94:98:e0:9d:c9:b2:4c:37:ef:bb:6f:79:e7:f5:60:
f5:16:3a:69:bc:0e:25:cc:3a:c5:a5:74:59:20:be:
68:68:91:2a:e9:84:53:b8:31:05:95:95:91:9a:21:
62:0d:10:35:e3:1f:42:2d:50:36:6b:a6:59:e3:78:
c8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:62:91:72:B6:72:57:90:B0:F4:59:2D:53:9E:44:68:30:6C:24:72
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/PmKRcrZyV5Cw9FktU55EaDBsJHI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8dc0:2500::/40
Signature Algorithm: sha256WithRSAEncryption
c3:de:11:0c:a8:5c:68:23:3a:21:6d:b8:67:59:dd:95:10:26:
0e:28:c2:22:17:63:65:28:84:7e:9a:b7:fc:69:29:6b:83:86:
3d:e9:af:ad:4b:dd:f0:30:f4:63:e8:15:67:33:28:08:f9:b7:
62:3d:3c:23:49:e9:9b:82:70:9a:69:8c:85:1f:d6:f5:02:cf:
89:8b:c7:d8:54:fe:2a:2b:bb:62:1e:60:b9:4d:6d:4d:ed:b6:
61:ea:8b:aa:86:40:53:54:37:51:da:94:a1:8f:82:41:78:35:
ad:6e:69:f4:75:70:80:e6:eb:96:21:65:33:55:83:77:7a:e9:
af:75:fa:42:c7:8f:de:25:2c:1e:ad:b2:5d:36:f4:83:a0:f9:
a7:d8:3c:54:cd:7c:c8:40:41:eb:87:0d:b5:c8:14:f8:89:c5:
92:50:07:20:cb:04:08:0d:3b:1d:23:4a:db:61:35:01:11:0c:
89:88:99:21:7e:f2:b7:3a:a5:6a:6b:58:d5:c3:19:91:25:97:
a8:da:99:9c:eb:2e:95:fc:d7:b0:e8:16:ee:60:16:ea:bb:9d:
32:52:ff:dd:4a:20:2d:a0:40:19:4b:dc:79:68:9f:7c:c7:bc:
76:16:cf:62:7f:2d:b3:22:20:35:5d:7f:e7:45:49:80:98:ac:
7f:b3:e2:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org