Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASGC/T1fabx1p6-WKmEsfdmYhBmQVAjo.roa
File: T1fabx1p6-WKmEsfdmYhBmQVAjo.roa (raw, json)
Hash identifier: qWh2+FWB1ka7WtmXVAOcqS9tRu1bY+pTRbHZ/ogrHnA=
Subject key identifier: 4F:57:DA:6F:1D:69:EB:E5:8A:98:4B:1F:76:66:21:06:64:15:02:3A
Certificate issuer: /CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Certificate serial: 0953
Authority key identifier: 76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/T1fabx1p6-WKmEsfdmYhBmQVAjo.roa
Signing time: Wed 29 Sep 2021 02:51:30 +0000
ROA not before: Wed 29 Sep 2021 02:51:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24167
IP address blocks: 2400:4500:0:2::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2387 (0x953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Validity
Not Before: Sep 29 02:51:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4F57DA6F1D69EBE58A984B1F766621066415023A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:18:e2:9c:60:39:86:66:c3:f9:a9:31:ed:d2:
d6:7a:9d:51:1e:10:bd:c7:f0:32:f5:0b:e8:70:8b:
89:15:c4:40:45:3a:b1:0a:21:f0:f2:eb:20:ef:92:
2c:83:9f:a8:96:20:f3:85:7d:a5:37:20:35:41:4b:
c1:66:37:ca:99:29:d0:71:7a:cd:48:00:01:3b:8b:
25:fa:18:10:f7:0a:00:b8:b0:4a:26:81:fd:32:cc:
81:76:ce:38:a9:e7:48:0a:51:3f:b4:c3:c6:61:72:
2f:fb:c6:06:c9:ad:79:b1:da:b1:8a:de:ba:0b:e9:
97:de:ab:74:0a:8a:8e:8d:cb:64:cb:20:38:ae:c6:
12:d7:fd:05:f9:16:0c:4b:c8:02:09:ba:7b:c7:ed:
40:bb:d5:1d:de:ba:90:8e:71:94:7f:05:c7:f9:32:
85:3d:f3:0d:4c:87:df:07:b7:90:2e:d5:6f:3c:6b:
f4:03:a9:25:1f:b0:45:fa:fe:f7:75:0b:12:77:b3:
dc:2c:bc:68:63:0a:d0:56:bf:85:67:4a:79:26:66:
c6:46:07:2d:28:92:a6:05:e1:ca:b9:b0:a1:1b:91:
a5:89:e4:79:c9:79:0e:94:b2:85:1d:b5:d3:0d:4c:
f6:34:a5:63:f8:21:ce:62:8f:83:53:66:b1:ac:1f:
7f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:57:DA:6F:1D:69:EB:E5:8A:98:4B:1F:76:66:21:06:64:15:02:3A
X509v3 Authority Key Identifier:
keyid:76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/dg6p94M-3GNm_V4jpCa89iuwHmw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/T1fabx1p6-WKmEsfdmYhBmQVAjo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:4500:0:2::/64
Signature Algorithm: sha256WithRSAEncryption
93:8c:68:1d:57:22:06:e2:45:27:f5:c0:25:0b:15:6c:d3:82:
80:3a:a0:ed:56:d5:9b:5d:9d:f6:2b:92:09:90:61:50:0d:e4:
05:89:ce:fb:93:d8:63:7d:a7:e5:23:85:31:a7:0c:9c:12:04:
f3:b0:1c:0b:22:17:8d:01:17:35:8e:f4:27:15:44:47:eb:b3:
9b:74:02:22:dc:7e:e6:e0:7f:f4:73:15:bb:fe:d1:dd:d1:ae:
0c:32:85:60:6a:64:de:cc:74:0b:37:cd:ba:8c:4a:0a:26:32:
c7:ed:71:61:f0:71:e7:0d:15:18:6c:e7:73:fb:e6:ef:c8:6e:
e0:c2:59:5f:5a:64:f9:73:46:2e:36:7e:18:f6:9d:37:4b:3f:
13:39:3c:15:3d:d7:07:31:71:cd:2d:4f:0a:b6:65:c6:cc:18:
99:b3:1d:75:49:a7:26:0b:98:5b:f1:69:6e:de:9d:9c:41:db:
bb:a8:2a:65:fa:fc:64:5a:2f:d1:a9:fb:a4:4e:5c:32:03:34:
92:06:e0:c2:d5:8f:0f:06:fe:5f:48:cd:19:eb:0d:39:af:7c:
a8:54:41:25:7d:6b:22:a0:05:20:4b:b9:e2:f3:d1:ec:5f:d2:
9e:11:a6:a3:28:4c:8b:85:57:18:ea:e0:51:2b:59:e5:65:e1:
40:d3:95:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org