Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASGC/wPekFBESrTyxeyr5mENsLqzqi0s.roa
File: wPekFBESrTyxeyr5mENsLqzqi0s.roa (raw, json)
Hash identifier: JykEP8hpKggf35F0bDZAcHz9OD8Q62Ga/9dTa1KnbX0=
Subject key identifier: C0:F7:A4:14:11:12:AD:3C:B1:7B:2A:F9:98:43:6C:2E:AC:EA:8B:4B
Certificate issuer: /CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Certificate serial: 0A3D
Authority key identifier: 76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/wPekFBESrTyxeyr5mENsLqzqi0s.roa
Signing time: Thu 15 Sep 2022 02:48:51 +0000
ROA not before: Thu 15 Sep 2022 02:48:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24167
IP address blocks: 2400:4500::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2621 (0xa3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Validity
Not Before: Sep 15 02:48:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C0F7A4141112AD3CB17B2AF998436C2EACEA8B4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4e:18:35:64:a4:71:1e:0a:64:2e:27:22:72:
5f:44:fe:88:25:36:6f:a6:36:81:84:3e:90:5c:c2:
22:53:e9:8d:c3:09:05:79:96:86:8e:38:8b:09:82:
79:74:7b:e8:0c:84:4f:e0:b5:0c:cc:ff:39:17:12:
f8:74:71:a5:3e:64:28:0a:93:05:7f:ec:1f:a8:86:
3f:66:53:1d:27:08:a2:b5:a6:0f:5b:85:de:a7:b1:
64:a6:c3:a6:8e:4f:e3:75:fc:b6:84:32:f2:9c:7f:
1e:72:75:88:44:96:f8:03:fe:2a:f9:69:b6:4c:27:
52:4e:19:51:69:00:a7:14:fa:5d:bb:99:d7:ae:53:
22:46:8d:30:a1:2f:fb:e1:64:01:c5:ab:12:00:c9:
00:3a:fc:18:a8:c5:ce:b7:40:11:17:f2:04:05:81:
40:ed:a1:9f:58:c7:df:6f:40:13:85:de:aa:9b:34:
96:ef:69:58:43:c8:7c:5c:b7:44:5d:04:4a:d8:46:
d0:fd:ec:2f:64:c7:09:cc:3f:5d:d8:03:70:f9:fe:
80:08:c9:22:79:dd:93:0f:34:40:0c:71:33:62:ef:
3c:43:2b:68:4f:f1:f9:d7:05:75:58:e9:c9:c2:4d:
bf:11:d4:24:a2:7e:d8:e7:a2:97:a0:f9:a2:9a:fb:
44:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:F7:A4:14:11:12:AD:3C:B1:7B:2A:F9:98:43:6C:2E:AC:EA:8B:4B
X509v3 Authority Key Identifier:
keyid:76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/dg6p94M-3GNm_V4jpCa89iuwHmw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/wPekFBESrTyxeyr5mENsLqzqi0s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:4500::/64
Signature Algorithm: sha256WithRSAEncryption
2b:9b:ca:29:c3:83:8f:c2:fb:c6:21:26:30:27:3b:48:88:06:
fb:0b:a1:75:95:1d:b8:13:1f:f1:a1:ca:21:30:70:82:8c:8c:
c7:24:ff:77:dd:da:f8:4b:ed:f0:21:db:5e:c9:a0:8a:0c:47:
33:c6:1d:c3:23:51:94:23:b9:af:a1:09:53:30:36:23:bb:1e:
99:e5:a5:5e:a8:97:2a:81:29:a8:49:fb:46:74:b0:27:0a:06:
b5:ac:9a:32:11:12:9a:c0:aa:00:92:b6:b7:9f:5e:75:2b:d4:
c2:cf:da:26:eb:8e:f2:af:fb:f3:37:9e:bc:6d:6b:d9:05:5c:
89:e5:c6:9f:60:cd:37:6b:d6:2a:f2:7a:4f:36:33:fa:85:4e:
6e:b8:c7:50:00:7c:ea:22:5d:b1:20:ca:2f:2a:aa:8f:b3:4e:
d0:00:ef:1b:6a:f1:f5:a2:bd:13:c0:c7:64:b2:7d:ae:fa:ff:
77:ab:4a:c5:87:27:6c:aa:85:56:5a:9a:78:33:5b:95:83:ae:
62:dc:04:a9:a5:5c:e2:3b:38:a8:cb:af:ac:c5:3e:b8:f2:28:
51:9f:d2:fd:41:b2:7a:59:4a:71:f8:31:b0:99:93:24:90:86:
f2:90:88:e9:4d:05:1b:1b:6f:8c:2f:7b:ff:90:8c:ca:77:86:
9a:1a:81:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org