Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCP1138480/1Z8UiJH4Cb7fIfCKhnFOmIwFOoA.roa
File: 1Z8UiJH4Cb7fIfCKhnFOmIwFOoA.roa (raw, json)
Hash identifier: O3d0f8Y5EbVfj+7eU+V6tsQJDoLgKoYUfPRsSHHpKI0=
Subject key identifier: D5:9F:14:88:91:F8:09:BE:DF:21:F0:8A:86:71:4E:98:8C:05:3A:80
Certificate issuer: /CN=3CEBAC4057251C8AAAB954DC220B22496BEEF563
Certificate serial: 24
Authority key identifier: 3C:EB:AC:40:57:25:1C:8A:AA:B9:54:DC:22:0B:22:49:6B:EE:F5:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/POusQFclHIqquVTcIgsiSWvu9WM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138480/1Z8UiJH4Cb7fIfCKhnFOmIwFOoA.roa
Signing time: Fri 08 Apr 2022 13:00:58 +0000
ROA not before: Fri 08 Apr 2022 13:00:58 +0000
ROA not after: Tue 21 Feb 2023 08:34:00 +0000
asID: 63893
IP address blocks: 2400:50a0::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36 (0x24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3CEBAC4057251C8AAAB954DC220B22496BEEF563
Validity
Not Before: Apr 8 13:00:58 2022 GMT
Not After : Feb 21 08:34:00 2023 GMT
Subject: CN=D59F148891F809BEDF21F08A86714E988C053A80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:87:c1:58:71:99:27:52:43:32:e4:f7:3a:bb:
0d:9c:c5:8c:bd:33:fb:f0:1a:ac:38:68:7d:ca:7c:
49:75:b7:ed:29:e6:8e:c8:26:60:8e:92:e6:2d:a5:
7a:0b:e2:c5:ea:37:39:68:70:59:8e:27:62:3d:cf:
fe:9f:07:25:4b:8c:7a:28:03:0b:9f:59:70:5e:64:
50:d7:82:c3:97:19:fa:f1:72:78:a6:54:9a:3d:26:
e8:87:e5:7c:a6:79:f2:d7:25:d3:9f:af:13:20:da:
91:63:e4:54:d1:ff:8d:be:b6:34:4a:b4:e0:ed:52:
49:e5:7b:be:2a:87:4a:30:03:b6:e3:b0:e9:2b:b2:
7a:22:07:97:0e:ef:03:fd:14:77:5f:0b:9d:4d:57:
9c:7b:6b:7f:c7:93:c8:32:02:62:4e:da:83:70:90:
91:0b:44:27:8d:43:0d:9d:a1:40:86:9f:55:86:b7:
30:75:f0:d6:67:a4:7f:93:cc:8c:ce:64:86:ce:16:
0b:3b:0e:be:bc:86:db:c1:5d:ac:f4:ab:51:d4:95:
2b:20:a6:d8:01:f7:0b:84:be:61:c9:99:a2:01:22:
1e:b7:e3:97:cc:29:af:aa:0b:14:01:66:b0:5a:3a:
a5:12:a0:a8:76:20:da:e7:3a:6f:88:8d:39:f9:51:
ee:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:9F:14:88:91:F8:09:BE:DF:21:F0:8A:86:71:4E:98:8C:05:3A:80
X509v3 Authority Key Identifier:
keyid:3C:EB:AC:40:57:25:1C:8A:AA:B9:54:DC:22:0B:22:49:6B:EE:F5:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138480/POusQFclHIqquVTcIgsiSWvu9WM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/POusQFclHIqquVTcIgsiSWvu9WM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138480/1Z8UiJH4Cb7fIfCKhnFOmIwFOoA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:50a0::/32
Signature Algorithm: sha256WithRSAEncryption
0c:bf:a1:21:5a:01:31:b1:dc:84:07:f6:e9:98:00:3b:bb:3f:
2b:b8:85:40:de:9d:da:b1:12:d1:8b:37:ee:bb:0c:f4:ec:6b:
18:9d:4e:9d:80:2a:83:e4:2c:0f:20:5b:75:1c:1d:de:8e:0f:
b6:41:54:7e:76:b6:07:b9:31:5c:53:4b:d5:84:c6:3b:a9:cb:
14:7b:d3:cc:da:de:42:3c:20:63:81:82:58:5e:74:9a:3c:b7:
28:2d:7e:d5:e4:66:76:76:93:e0:35:6c:98:5e:c6:4e:38:a6:
53:ce:a4:99:42:e2:b1:60:4b:1e:4e:e9:ee:fd:23:d2:d7:71:
b7:9c:f9:a8:86:a3:33:b6:59:3e:12:a1:bf:43:b4:26:60:8a:
43:5e:ff:7c:08:ea:1c:17:3c:8c:1a:3e:fb:f7:b2:25:e8:d6:
e2:6c:5d:3b:d7:45:b9:a4:33:56:7f:f4:34:97:11:57:5f:67:
e8:d7:68:03:07:8a:4a:8f:db:26:6c:87:6e:07:3e:54:d8:62:
e6:0b:c4:3e:00:ed:20:dd:70:02:d7:c1:0d:7e:46:df:27:24:
31:31:9c:7e:82:98:16:82:53:c5:6c:f8:7c:63:1c:37:a7:06:
77:8d:3d:a8:21:9a:e0:5f:45:56:4a:de:4e:4f:73:58:db:d2:
bb:aa:e2:86
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org