Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/zN4tf7_7jxCAs7lcJCIbafCbeeA.roa
File: zN4tf7_7jxCAs7lcJCIbafCbeeA.roa (raw, json)
Hash identifier: p7emEJynr26ZYofT5x1oYJuYhGMR5eDBoJR+yqpKerc=
Subject key identifier: CC:DE:2D:7F:BF:FB:8F:10:80:B3:B9:5C:24:22:1B:69:F0:9B:79:E0
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 08A7
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/zN4tf7_7jxCAs7lcJCIbafCbeeA.roa
Signing time: Mon 08 Feb 2021 02:54:26 +0000
ROA not before: Mon 08 Feb 2021 02:54:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9264
IP address blocks: 2403:c240::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2215 (0x8a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Feb 8 02:54:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CCDE2D7FBFFB8F1080B3B95C24221B69F09B79E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:dc:b3:81:f9:82:b5:6f:63:60:1d:8a:93:18:
cc:cb:79:e4:e3:99:99:d0:1d:96:6e:1d:12:d4:1e:
23:79:f4:12:82:9e:27:3c:97:fe:9d:89:67:41:69:
18:73:0d:bb:f3:67:b3:80:a8:e0:45:81:aa:57:f6:
9d:39:06:98:66:ed:5a:5b:f6:93:7b:ce:8f:a8:ee:
b4:e1:28:6f:87:a8:9f:5a:3b:49:6e:d8:0e:51:5f:
43:a8:98:51:e0:81:51:19:34:24:87:8f:5c:13:99:
c8:6e:6f:07:80:87:fc:02:19:fc:a5:4a:c6:a7:23:
6a:02:11:6f:02:0b:f6:fb:4c:55:e8:fe:1f:1d:a8:
25:56:06:e4:37:21:ab:a8:83:53:64:3c:41:f1:87:
03:5c:cd:aa:cf:42:25:13:d4:5d:a5:a2:3a:1a:f3:
15:95:b6:df:5a:b3:a0:b4:d2:34:a7:01:23:25:65:
92:56:74:55:47:d4:c6:0e:d2:54:fa:6f:74:27:b4:
81:dd:0e:6d:1c:d1:7b:dd:98:b2:4c:94:a3:8d:0e:
d9:fc:2d:ed:7a:50:d4:4f:f5:f4:59:2a:30:82:0e:
71:75:43:6e:43:fa:8e:0f:db:03:77:90:12:54:8e:
71:bc:62:e2:95:ec:51:cd:3a:e3:5c:9a:09:d7:7f:
3c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:DE:2D:7F:BF:FB:8F:10:80:B3:B9:5C:24:22:1B:69:F0:9B:79:E0
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/zN4tf7_7jxCAs7lcJCIbafCbeeA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:c240::/32
Signature Algorithm: sha256WithRSAEncryption
75:6a:59:d6:5b:46:db:db:78:a6:8d:f9:0e:fe:c7:a9:2e:8c:
68:5e:6b:47:b2:fd:46:d9:9c:55:43:04:3f:ff:0b:2d:8b:31:
d0:13:db:ba:0e:d8:ec:71:8d:9d:eb:8a:ba:19:cc:bf:0b:7b:
36:57:ba:4f:80:de:f2:d0:32:d9:46:72:99:5e:48:cc:cf:8c:
73:20:bc:01:a8:d2:5b:7a:27:c7:23:e3:ca:d1:36:ad:7c:e0:
bf:4a:ee:67:f1:4d:77:32:3f:66:58:68:64:1b:9f:82:56:d2:
78:6f:b1:43:79:a7:e8:0a:c1:b2:ea:90:cc:50:47:aa:ac:89:
6d:e9:8e:79:ba:c6:ab:f5:9b:27:50:c1:57:66:2d:9a:01:aa:
bf:6e:4f:ad:04:fb:71:6a:ec:66:cb:c4:99:8b:44:d9:49:bf:
5a:99:00:4e:81:fb:84:71:65:d1:3b:64:0f:f3:d2:00:6e:3c:
cb:e5:30:58:03:08:83:58:c6:6c:54:db:80:f3:39:5e:ec:e7:
72:10:d0:0f:f2:27:8f:d8:57:30:cd:22:8e:8f:e4:b5:f4:cd:
bd:79:aa:c4:fa:67:46:d0:24:98:34:ac:16:37:86:0d:85:6c:
21:5a:2d:c6:05:d7:f3:68:fa:20:27:35:77:b6:76:76:6d:0b:
f1:21:df:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org