Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/aTqvQzeWfwihyfiFTnip-SRqAFo.roa
File: aTqvQzeWfwihyfiFTnip-SRqAFo.roa (raw, json)
Hash identifier: V/NOMK5YC/8PuwJtFcqW7IAhtNfISxpFVuOMJwzyiNI=
Subject key identifier: 69:3A:AF:43:37:96:7F:08:A1:C9:F8:85:4E:78:A9:F9:24:6A:00:5A
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 094B
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/aTqvQzeWfwihyfiFTnip-SRqAFo.roa
Signing time: Wed 29 Sep 2021 02:50:34 +0000
ROA not before: Wed 29 Sep 2021 02:50:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9264
IP address blocks: 2403:c240::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2379 (0x94b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Sep 29 02:50:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=693AAF4337967F08A1C9F8854E78A9F9246A005A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:eb:c8:3f:27:47:3c:fe:1e:cd:98:47:2a:db:
82:7c:c8:fc:78:c7:45:b1:31:6e:8a:40:ae:a4:24:
c0:ef:03:0f:81:27:5c:39:e5:26:91:15:98:34:c0:
7e:b6:80:9e:f1:da:76:57:39:8b:e6:52:39:21:aa:
99:48:5c:22:3e:05:f7:4d:0e:99:c7:f6:a4:ff:24:
d1:99:0f:d3:93:3e:6c:89:7c:20:3c:7e:c3:11:cb:
9f:80:bc:f6:a2:ee:4f:16:fe:17:0f:94:eb:4c:a0:
86:69:8f:ed:88:e4:51:bc:f7:d0:1e:a4:e7:1f:69:
f8:a8:6f:bc:30:8e:74:5e:ba:aa:13:20:cd:38:cd:
a0:6e:43:9d:2c:ef:ae:37:8d:7d:f4:44:69:6a:19:
34:9a:3b:15:75:43:60:c7:2d:57:8f:7f:f6:6f:fb:
d2:92:a2:4c:c0:39:62:e5:97:1d:33:38:36:57:23:
4c:26:de:97:4c:1a:82:8c:e5:ad:77:5e:6f:35:7c:
6f:ee:20:8e:77:b7:eb:fb:0b:29:99:cf:42:8a:4f:
4d:c0:f3:c0:d1:1d:58:e4:48:06:55:63:d3:87:18:
8b:70:d0:eb:3a:18:bc:4b:86:6b:ea:34:0f:c7:2d:
3d:04:aa:8c:5b:8c:f4:32:5a:ec:d3:b5:2c:3b:6f:
75:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3A:AF:43:37:96:7F:08:A1:C9:F8:85:4E:78:A9:F9:24:6A:00:5A
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/aTqvQzeWfwihyfiFTnip-SRqAFo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:c240::/32
Signature Algorithm: sha256WithRSAEncryption
0a:5f:69:46:77:0a:a2:83:8e:68:8a:e1:d0:44:7c:f0:52:9f:
06:57:c7:f7:e7:c6:f4:ef:b8:81:e8:ab:4e:af:dc:ac:d5:1d:
45:60:4a:12:db:41:1c:88:e1:5b:6f:73:48:e3:19:ef:8d:ac:
3d:0c:33:3b:6a:85:a9:32:1a:80:b2:66:37:f0:1e:a4:12:6d:
ab:bd:8c:6a:f9:a6:48:01:73:58:fd:1a:83:25:5c:56:3f:69:
78:53:ab:98:f4:fe:df:87:b8:3f:ae:d3:3f:84:b3:9f:a8:c3:
39:50:e9:2b:93:85:45:10:da:6c:6e:39:91:b0:4a:0e:f0:15:
c5:d3:cc:a7:90:9c:95:a5:90:fd:be:20:48:1a:d6:d5:dc:68:
1a:04:23:6e:90:34:80:6e:02:d7:2c:c6:f8:3e:74:6c:6c:88:
9b:aa:56:bf:c6:ce:05:8c:cd:6d:b0:4f:96:f2:d9:52:88:60:
7c:c3:e8:86:e8:f2:3e:19:34:e5:e9:22:5d:64:ae:47:a4:f4:
ec:21:67:c7:11:5d:24:3b:0a:5c:99:52:41:c3:09:86:53:0d:
40:01:db:d6:78:6f:d3:a1:6e:50:f6:19:a2:9e:0d:e1:44:6c:
7b:ff:c7:1b:fd:0f:55:49:bc:b6:14:3e:7d:c6:05:e9:fe:13:
9f:a3:40:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org