Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/CeXYjvc_pbdqnsOnUlzhpW0nFw0.roa
File: CeXYjvc_pbdqnsOnUlzhpW0nFw0.roa (raw, json)
Hash identifier: UvKlnuBENJqhFwaYrf38DiKOLYBvAhZbeWg1fJE+G9s=
Subject key identifier: 09:E5:D8:8E:F7:3F:A5:B7:6A:9E:C3:A7:52:5C:E1:A5:6D:27:17:0D
Certificate issuer: /CN=069CE651DD7D716A89A8EE84873DCCBF41354799
Certificate serial: 06
Authority key identifier: 06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/CeXYjvc_pbdqnsOnUlzhpW0nFw0.roa
Signing time: Sun 04 Feb 2024 12:21:29 +0000
ROA not before: Sun 04 Feb 2024 12:21:29 +0000
ROA not after: Thu 23 Jan 2025 15:30:21 +0000
asID: 18041
IP address blocks: 2401:7a60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=069CE651DD7D716A89A8EE84873DCCBF41354799
Validity
Not Before: Feb 4 12:21:29 2024 GMT
Not After : Jan 23 15:30:21 2025 GMT
Subject: CN=09E5D88EF73FA5B76A9EC3A7525CE1A56D27170D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:22:8f:33:42:24:78:34:5b:43:9b:ff:97:26:
57:0b:6b:41:58:5b:19:94:1d:a0:94:54:ed:e7:f3:
4f:7d:b1:ff:a5:c9:b5:8b:af:e1:e0:92:1e:ae:22:
cd:53:61:af:3b:a4:c1:13:93:93:a0:d1:58:f1:8b:
76:75:e2:37:79:bc:92:0f:51:fb:18:0e:a6:18:15:
ea:d6:e4:5b:df:8f:fa:e6:83:4b:f3:44:f9:ce:5e:
41:94:5e:cd:91:d1:16:5d:21:af:4d:1e:13:13:1d:
ec:9e:fa:de:16:26:bc:b2:2b:df:c9:c2:cf:e6:42:
74:dd:55:fb:7a:8d:23:b3:74:4e:df:21:18:dc:a2:
e3:0b:0e:df:9e:96:d3:74:37:92:5f:04:13:8c:6b:
1d:7f:32:2e:ec:0c:bf:05:d2:97:56:31:97:db:1a:
91:3b:32:6a:11:8f:7d:0a:f9:79:06:e4:5d:2e:2b:
5b:86:5e:a7:13:9a:43:4a:92:ac:72:ab:ef:1d:99:
22:5b:d0:9b:2f:ef:b2:1c:26:4c:9c:01:b4:9a:e8:
1d:eb:6c:4c:9d:44:7f:d0:20:49:1c:eb:52:e9:a6:
14:23:72:3a:63:e9:47:30:92:5c:6f:e7:fb:b9:ef:
0b:23:3c:29:36:cc:e3:8e:57:8b:3c:f6:25:52:34:
79:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E5:D8:8E:F7:3F:A5:B7:6A:9E:C3:A7:52:5C:E1:A5:6D:27:17:0D
X509v3 Authority Key Identifier:
keyid:06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/CeXYjvc_pbdqnsOnUlzhpW0nFw0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:7a60::/32
Signature Algorithm: sha256WithRSAEncryption
b2:eb:b4:64:b4:94:01:e1:97:53:55:88:ee:ba:ac:02:f2:5a:
7f:a1:fd:83:71:e1:62:9e:cb:1b:a1:23:f8:81:27:d8:91:d5:
81:52:1c:cd:58:c7:e4:26:4d:4a:72:12:3a:71:26:a9:e0:9a:
66:a6:ea:b8:b1:69:1a:10:1d:4f:6c:a2:89:78:a1:6e:23:3c:
99:7d:10:d7:e3:c3:c2:eb:12:32:4e:36:13:f3:17:67:3f:73:
5e:d4:5e:83:27:55:0d:92:8a:6c:bb:41:4b:97:9d:ef:ee:12:
09:8b:29:27:83:4f:e9:88:d1:ae:f3:ea:75:a8:45:76:89:08:
67:ec:18:a2:42:ef:f6:63:a6:17:27:72:13:ad:d7:b1:64:5f:
5e:e6:53:a1:6d:b3:1f:91:0d:07:74:b8:33:8a:2d:3f:dc:23:
43:0b:60:49:ef:8e:b5:da:21:ec:1f:92:ef:d3:15:6a:24:7c:
b3:d4:d9:ef:98:7b:b4:c5:1c:3c:f2:c3:9b:5e:08:63:32:c6:
c5:c4:5f:03:e7:14:2e:3f:f1:30:a8:7a:55:1b:ea:79:ac:31:
2c:7a:0d:d1:6b:32:c3:70:56:6a:e4:ea:a8:f1:c3:e1:0e:0f:
b5:15:85:ad:9d:30:32:86:ec:ec:c4:6c:0f:5f:df:e0:e2:f0:
9c:12:23:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 14:11:33 2025 by rpki-client