Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/MbrznejbqjUztuw5DnAvkbl73c8.roa
File: MbrznejbqjUztuw5DnAvkbl73c8.roa (raw, json)
Hash identifier: NFIP849cZYO9hZH0BOPZbxOPG9SdA4XH2+bsZwU+r58=
Subject key identifier: 31:BA:F3:9D:E8:DB:AA:35:33:B6:EC:39:0E:70:2F:91:B9:7B:DD:CF
Certificate issuer: /CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989
Certificate serial: 0965
Authority key identifier: 05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/MbrznejbqjUztuw5DnAvkbl73c8.roa
Signing time: Sun 02 Jan 2022 20:35:14 +0000
ROA not before: Sun 02 Jan 2022 20:35:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 147035
IP address blocks: 2403:8ec0::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2405 (0x965)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989
Validity
Not Before: Jan 2 20:35:14 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=31BAF39DE8DBAA3533B6EC390E702F91B97BDDCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c5:be:91:ac:ab:91:88:b0:9a:4a:dd:79:b4:
c6:0b:d8:03:63:e9:e0:b7:d2:3c:68:68:1a:3d:90:
ca:68:51:ea:55:29:fa:3c:fc:bf:a2:0d:41:5e:75:
fe:b8:21:cb:b2:28:e8:fa:f2:48:d6:79:f3:c8:45:
84:9f:7d:aa:74:d8:27:89:d6:82:cc:a2:67:af:09:
86:0d:cf:5e:88:00:24:16:1c:8b:2b:35:76:1a:24:
fa:34:46:72:62:72:f7:b8:4c:7a:b8:43:51:a0:c3:
4f:05:43:e5:d5:a5:3d:b9:0a:b9:a8:6a:ce:e7:c1:
ff:15:13:7d:1f:c7:f5:e5:a7:39:61:3f:05:cf:d1:
f1:69:79:c9:98:d3:aa:03:83:a3:65:1a:8a:3f:1c:
59:52:20:06:6f:e5:83:03:75:58:53:e9:ba:b1:c6:
b5:f0:d0:2e:f9:64:d3:64:18:4c:ec:27:ab:95:85:
14:e5:4e:bd:12:64:99:e1:c6:73:e1:db:cf:ac:7b:
75:c0:a3:0f:dc:ee:34:48:3c:80:ce:11:32:e3:6d:
4e:6f:d6:b1:1d:00:0f:ec:25:f6:9f:60:45:b3:1a:
72:4e:81:37:44:7c:41:8d:43:e6:d0:fe:d9:ab:9a:
c0:92:3f:b6:15:bd:28:b1:30:ac:2f:a9:ad:3b:15:
fc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:BA:F3:9D:E8:DB:AA:35:33:B6:EC:39:0E:70:2F:91:B9:7B:DD:CF
X509v3 Authority Key Identifier:
keyid:05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/MbrznejbqjUztuw5DnAvkbl73c8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:8ec0::/32
Signature Algorithm: sha256WithRSAEncryption
17:9f:68:73:75:52:63:31:64:c8:93:5a:22:4b:2c:3e:d2:11:
43:45:a6:ad:80:38:57:d9:7e:23:9f:4c:49:a4:40:51:52:1e:
9f:3a:2e:d5:f9:70:1f:e6:5f:d1:00:c0:0a:d6:75:bb:c1:70:
77:46:bf:38:3a:56:3f:25:31:70:c9:51:0a:6d:16:0b:81:6a:
9c:58:f5:a8:eb:ee:a4:12:6a:63:ce:da:ed:5b:b8:0b:94:6c:
4d:31:24:07:1a:d8:10:c2:af:f5:26:5c:a8:0a:cd:93:9f:e7:
ff:75:ff:86:f3:ca:52:23:03:7d:0d:2c:6b:ef:1b:ce:a1:d2:
92:23:30:0e:b6:bf:b5:5e:1c:3f:bc:0b:20:6c:93:03:a3:d0:
48:11:8a:c7:23:a7:76:82:8a:cb:0b:e0:b7:91:53:18:f0:d8:
9a:f1:d8:4d:cc:e5:37:49:b0:96:2a:8b:78:90:43:1b:be:6b:
77:b4:0e:e4:33:89:ef:7c:cd:3c:9b:a1:54:9e:fe:28:cc:18:
b4:09:41:4e:dc:cf:21:1c:9b:ba:d0:59:1f:a2:ab:7a:48:23:
83:57:fc:eb:15:b6:48:a6:e2:e4:23:c6:64:da:2c:a2:f3:ce:
cb:f7:12:bc:c4:23:e5:bd:2f:cd:e2:6e:15:a3:dd:c1:77:06:
6a:12:4b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org