Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/zP6xtd18YDzaJqb_NL7X5tV4wvU.roa
File: zP6xtd18YDzaJqb_NL7X5tV4wvU.roa (raw, json)
Hash identifier: LfQZnQ9rOPseXLZ/g4adAPpwsxoxAI3DMYTV4PHuUB4=
Subject key identifier: CC:FE:B1:B5:DD:7C:60:3C:DA:26:A6:FF:34:BE:D7:E6:D5:78:C2:F5
Certificate issuer: /CN=069CE651DD7D716A89A8EE84873DCCBF41354799
Certificate serial: 45
Authority key identifier: 06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/zP6xtd18YDzaJqb_NL7X5tV4wvU.roa
Signing time: Mon 06 May 2024 16:02:33 +0000
ROA not before: Mon 06 May 2024 16:02:33 +0000
ROA not after: Thu 23 Jan 2025 15:30:21 +0000
asID: 131668
IP address blocks: 2401:7a60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69 (0x45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=069CE651DD7D716A89A8EE84873DCCBF41354799
Validity
Not Before: May 6 16:02:33 2024 GMT
Not After : Jan 23 15:30:21 2025 GMT
Subject: CN=CCFEB1B5DD7C603CDA26A6FF34BED7E6D578C2F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:29:bd:22:a7:b9:9e:b8:a4:4d:68:ff:ea:f1:
50:eb:60:e2:7d:ff:89:df:a2:c7:96:83:d9:bd:1d:
0c:ff:13:6a:08:2b:fb:b3:33:1f:b3:7d:80:c2:71:
d1:e2:e0:33:8e:7f:e2:91:9b:50:df:a3:43:5a:09:
b3:05:f1:7d:0f:af:5e:97:14:c7:d0:52:d2:20:58:
26:ca:f1:59:e8:f1:41:05:c2:0e:a8:e5:b0:c6:1a:
a4:d4:ab:f2:6a:0b:20:a9:cb:9f:10:b9:12:8a:29:
1f:c0:d4:31:2f:d3:8b:6f:33:11:d5:ef:6c:4c:6f:
31:91:ea:84:69:c6:bd:2a:d1:fb:a2:a3:1f:f6:64:
83:a2:b6:60:f7:b1:fe:e0:aa:4e:3a:41:97:7a:3e:
ac:b6:7e:7a:e4:62:90:99:db:76:bd:7a:87:a3:77:
14:98:75:b9:b6:06:5b:d3:cf:90:56:58:6e:af:2b:
46:82:c9:7a:20:69:d0:e4:35:60:33:f6:34:5b:4b:
e1:59:51:9c:a6:a7:8f:2b:de:dc:60:73:36:2e:30:
29:71:d5:8b:39:e1:b2:ed:ad:15:78:d2:71:52:56:
e2:e7:21:66:af:93:2c:84:f9:e4:27:08:0f:a4:ef:
b1:a1:5e:1c:37:d2:84:ec:61:ce:8f:69:a9:9e:67:
02:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:FE:B1:B5:DD:7C:60:3C:DA:26:A6:FF:34:BE:D7:E6:D5:78:C2:F5
X509v3 Authority Key Identifier:
keyid:06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/zP6xtd18YDzaJqb_NL7X5tV4wvU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:7a60::/32
Signature Algorithm: sha256WithRSAEncryption
df:37:c0:77:e6:b0:73:2b:f1:98:77:3f:cd:ea:02:47:9a:b7:
82:1b:3f:a1:f2:fa:d8:49:7b:d6:9f:8e:88:99:8d:da:37:a0:
64:bb:21:3c:ce:f6:41:c8:48:69:cb:43:fb:ce:4f:f4:24:77:
75:2a:6b:75:5b:ad:bf:c6:b8:5c:e6:39:02:b5:c1:a7:95:1b:
61:ed:b9:19:e0:59:12:44:d9:ec:65:68:b8:49:fb:06:f7:4c:
7e:d7:23:3a:fe:64:3b:d3:ba:e3:60:c6:ce:74:ba:12:1c:0a:
a4:d1:73:f4:ef:9a:01:7e:3c:c0:39:73:a9:b2:25:05:72:d7:
0a:1c:0b:83:44:f4:97:6c:22:7d:3d:12:05:99:0d:36:12:43:
8a:9d:30:ac:6c:10:94:d7:af:81:62:c4:09:de:85:27:0c:ad:
9e:ac:e5:be:5a:85:53:f1:26:1f:ac:13:d7:f4:d9:cd:ec:c6:
21:86:b3:c4:22:85:55:a1:fe:c4:0a:3a:41:c3:18:7a:77:a4:
64:a6:57:21:1c:54:a1:60:4c:24:3f:e1:5e:04:3b:12:0f:9e:
a8:c0:4c:a3:58:cb:b3:a8:19:71:47:b5:07:74:d2:79:6f:8b:
b6:59:1b:9a:8d:d1:04:c0:78:b9:89:b1:0c:d8:ec:c0:68:83:
12:24:55:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:43 2025 by rpki-client