Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/uBjs7fw6G56QdhH4L_u_AEkAn9M.roa
File: uBjs7fw6G56QdhH4L_u_AEkAn9M.roa (raw, json)
Hash identifier: jcXz1N2zFQkjlA2H29ruJjzxbkzhtkSXcSOqZm+30bw=
Subject key identifier: B8:18:EC:ED:FC:3A:1B:9E:90:76:11:F8:2F:FB:BF:00:49:00:9F:D3
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B08
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/uBjs7fw6G56QdhH4L_u_AEkAn9M.roa
Signing time: Wed 26 Oct 2022 09:40:20 +0000
ROA not before: Wed 26 Oct 2022 09:40:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 2407:4900::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2824 (0xb08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Oct 26 09:40:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B818ECEDFC3A1B9E907611F82FFBBF0049009FD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6c:61:fd:32:cd:d3:36:2f:7c:46:de:db:33:
2d:17:ae:b4:89:b6:6a:84:70:4d:43:6f:15:fd:53:
62:8b:17:f6:65:31:d0:a6:f3:e5:7c:fb:d1:64:ef:
3a:f0:2e:9a:39:82:17:63:3d:23:c4:1a:a9:88:fc:
e5:22:b3:f9:49:61:9c:ef:d0:53:b5:bd:93:1a:a3:
f5:ea:39:f1:bb:22:0b:4a:35:9e:8e:85:cb:3c:ed:
9f:21:5a:17:f0:fc:17:bc:0e:51:cd:09:9d:c3:9c:
e0:fa:d2:83:52:ed:9f:0f:3a:71:27:c2:be:ae:e3:
53:60:aa:1f:90:af:d1:51:06:9c:85:98:e7:78:f9:
2f:20:e2:92:b3:f7:7a:d4:62:21:dd:a4:a4:05:5b:
3c:5b:22:92:d2:e9:05:a6:ef:fa:87:16:92:d3:70:
e2:bf:35:0c:11:6e:c3:33:a0:dd:d7:3e:81:24:f7:
ef:60:90:4a:ec:b2:35:e3:18:7f:99:4a:4f:0e:69:
db:d6:19:1c:ed:86:cb:ea:5e:55:3c:19:99:ea:78:
f7:e1:4f:52:20:24:7d:b0:15:50:2d:f5:89:aa:60:
8d:67:10:16:84:49:f1:f3:4c:d1:1e:42:71:7d:19:
78:6f:cb:66:1e:cc:e6:72:bf:c0:dd:41:eb:05:66:
28:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:18:EC:ED:FC:3A:1B:9E:90:76:11:F8:2F:FB:BF:00:49:00:9F:D3
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/uBjs7fw6G56QdhH4L_u_AEkAn9M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4900::/32
Signature Algorithm: sha256WithRSAEncryption
5c:bd:ea:e7:5e:d6:80:e1:82:24:2a:79:2b:a7:88:00:dd:84:
99:17:17:55:07:5e:84:ad:aa:37:b5:49:4f:cc:97:f8:64:2f:
91:3e:db:c1:05:aa:89:80:5b:5e:96:7c:f2:60:f7:9a:ce:4a:
24:4c:89:f3:87:79:8d:cd:57:6b:d4:b8:0b:a9:1e:ee:c7:d0:
aa:39:43:76:17:e4:25:49:a1:0e:39:62:b7:fa:30:43:d1:5a:
27:2e:cf:0a:d9:1c:e4:7a:20:48:c0:54:d7:76:61:d5:ec:30:
66:e5:28:20:cb:28:fd:53:1e:f3:20:11:b3:09:7a:d4:e9:2d:
8e:27:2d:6b:3f:bf:94:83:43:7e:e9:f9:2a:2c:37:2a:21:37:
d6:53:91:47:c8:ee:dc:6c:1a:f5:cc:f4:4a:55:bf:9d:41:23:
55:57:51:e5:d3:a1:5f:02:9d:c4:03:1a:e6:70:1d:7a:9e:2f:
07:87:4c:37:fe:b5:16:49:91:96:9c:8b:b9:25:0c:ba:fb:b6:
18:9c:96:59:e0:b9:eb:22:da:b7:ac:4d:cd:62:99:31:dc:9e:
b8:9b:ba:5b:d4:dd:a0:2c:78:7b:2a:35:36:27:0e:8a:2c:bb:
c6:36:f5:30:bf:a2:7e:cf:40:e6:b1:22:33:78:33:a0:da:56:
6a:88:32:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org