Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASGC/bOHB4Hd_dg-14RIkvIzqtwY3CkA.roa
File: bOHB4Hd_dg-14RIkvIzqtwY3CkA.roa (raw, json)
Hash identifier: Vgye15cD0bFcHAFn/3yksdYC3TsbgCwDDCccPRidJw4=
Subject key identifier: 6C:E1:C1:E0:77:7F:76:0F:B5:E1:12:24:BC:8C:EA:B7:06:37:0A:40
Certificate issuer: /CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Certificate serial: 0952
Authority key identifier: 76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/bOHB4Hd_dg-14RIkvIzqtwY3CkA.roa
Signing time: Wed 29 Sep 2021 02:51:30 +0000
ROA not before: Wed 29 Sep 2021 02:51:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24167
IP address blocks: 2400:4500::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2386 (0x952)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Validity
Not Before: Sep 29 02:51:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6CE1C1E0777F760FB5E11224BC8CEAB706370A40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:06:62:98:0a:94:0f:04:44:b2:24:d4:7a:f6:
d7:b6:5f:de:01:15:76:7f:f6:62:01:3a:f2:0a:bb:
a9:80:6c:4d:9f:60:b9:14:16:cf:c2:5d:8d:79:c4:
02:be:c6:6c:ca:c0:0c:38:9e:9f:3d:90:03:33:69:
80:87:dd:b8:6a:0c:ed:d9:05:fc:48:18:0f:fe:d7:
57:23:9e:fb:bc:05:29:48:53:58:3e:4f:79:07:ce:
c2:cb:bb:d8:45:ff:36:8b:9b:ab:8b:fa:9d:dd:85:
66:d6:73:51:a3:e7:50:aa:71:fd:1c:cc:6a:9a:76:
1f:ff:40:7b:6c:d4:45:99:b5:83:5a:3c:07:76:f2:
2e:ec:1f:32:95:78:b6:ec:9e:8b:6c:a6:62:0c:6a:
a1:dd:57:b0:1a:08:51:d5:53:49:77:f9:30:55:4d:
23:2b:04:50:ea:da:0e:79:6c:d2:8e:a2:35:ad:18:
0f:f6:44:dd:65:7e:4b:ea:40:5c:4a:d8:d3:0c:dd:
98:53:52:25:2d:2a:98:a4:eb:2c:6b:3e:a3:08:8f:
38:f6:4e:b8:94:db:60:0e:82:27:bc:83:21:e5:cc:
ee:73:ca:95:bb:d8:02:58:7c:9f:d4:a5:6d:15:d5:
53:98:3b:0f:63:e8:e1:88:4c:48:1c:84:51:7d:64:
26:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E1:C1:E0:77:7F:76:0F:B5:E1:12:24:BC:8C:EA:B7:06:37:0A:40
X509v3 Authority Key Identifier:
keyid:76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/dg6p94M-3GNm_V4jpCa89iuwHmw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/bOHB4Hd_dg-14RIkvIzqtwY3CkA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:4500::/64
Signature Algorithm: sha256WithRSAEncryption
e0:05:9a:11:5d:2a:4b:19:d2:ae:a3:5d:b9:9c:66:d5:a4:cf:
d3:b6:d2:ca:8f:47:4a:00:96:da:9b:4a:74:f5:41:1e:68:41:
03:13:c1:c5:08:09:0d:f0:24:85:77:f1:a4:69:8a:c8:e7:d8:
bc:9f:03:a8:b5:51:61:84:bd:90:9b:b3:b4:3e:29:21:81:ab:
6f:cb:d3:b4:f0:d1:88:e9:5f:c1:2c:7c:64:d0:b1:2a:93:c9:
a5:76:5f:10:17:65:74:87:b9:93:3d:54:b3:c2:78:fd:37:6c:
69:48:33:1c:bd:e5:50:94:b1:7d:c7:75:47:bb:a9:35:08:b0:
0a:c8:e4:65:bc:d2:92:c9:04:3f:5a:e1:7e:16:92:df:dc:c1:
b1:2b:1f:a3:77:e8:e4:fb:43:16:bf:b2:b3:2b:28:9c:e8:6f:
29:d4:2b:ca:76:5c:49:38:fe:b2:97:0a:9d:48:03:af:66:f1:
06:05:80:78:73:05:93:10:e3:11:65:c0:f9:3c:5c:28:96:9f:
ab:05:a3:86:16:80:bc:a0:10:e7:68:9a:0f:72:75:dc:90:7a:
33:59:4c:a2:21:1b:45:7f:cd:e9:5b:4b:3f:ed:2b:09:ec:4f:
91:3f:01:73:7c:de:a4:df:0a:56:ef:dc:64:c3:80:c0:f3:13:
cb:1c:d0:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org