Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ez3iqqg5XLtIJhktWPDPbhLM1bc.roa
File: Ez3iqqg5XLtIJhktWPDPbhLM1bc.roa (raw, json)
Hash identifier: 4f0y10Pc1+vIr01fARBbdVYA730n00LaZat+RHwBBeQ=
Subject key identifier: 13:3D:E2:AA:A8:39:5C:BB:48:26:19:2D:58:F0:CF:6E:12:CC:D5:B7
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ez3iqqg5XLtIJhktWPDPbhLM1bc.roa
Signing time: Thu 15 Sep 2022 02:39:23 +0000
ROA not before: Thu 15 Sep 2022 02:39:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10133
IP address blocks: 2406:d400::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:39:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=133DE2AAA8395CBB4826192D58F0CF6E12CCD5B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b1:c8:9b:28:60:3b:d2:ab:25:ad:f7:2a:a0:
06:5f:5b:89:e8:64:d6:c3:90:ef:d5:f3:d1:29:b2:
13:6a:c0:1a:b7:19:de:5f:f2:e3:df:2a:0f:4b:0a:
6c:c8:df:02:c2:fb:5d:6b:51:70:70:70:e4:28:b0:
67:c4:6f:ae:b1:72:44:af:49:64:24:76:db:45:7a:
cf:2e:a9:e8:e0:88:f6:23:32:2a:aa:a1:2b:cb:73:
66:67:f6:1f:45:2b:56:86:ed:77:74:c0:cd:48:5b:
f7:fc:64:e6:76:55:74:d2:9f:75:08:36:03:7c:64:
1e:c0:e2:3e:c7:9a:a8:88:ea:45:ce:5f:08:35:28:
26:03:a6:8a:99:61:27:1d:67:2a:22:bc:11:b9:60:
fc:3f:3d:26:75:4f:d9:2b:77:23:97:52:d7:a2:57:
f6:76:9f:b6:81:b3:12:7b:31:92:0a:1a:92:5c:f5:
4b:2f:83:19:e3:00:64:91:ca:a4:5f:be:d6:df:fb:
4d:2f:04:09:ba:13:6c:85:26:5e:f7:0a:97:ce:f4:
50:0d:76:a2:15:84:4a:fc:09:99:6f:e2:21:0e:8a:
49:25:ec:da:d5:e5:23:ec:71:82:68:54:49:78:22:
ac:c9:04:4d:50:50:5f:fb:5c:4e:1b:df:59:f4:67:
d3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3D:E2:AA:A8:39:5C:BB:48:26:19:2D:58:F0:CF:6E:12:CC:D5:B7
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ez3iqqg5XLtIJhktWPDPbhLM1bc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:d400::/32
Signature Algorithm: sha256WithRSAEncryption
7d:34:71:f5:43:01:e5:72:e8:73:20:a0:20:18:b8:81:81:1b:
35:69:6e:ca:5e:82:d5:ee:47:47:87:85:00:54:54:71:07:08:
d1:48:f0:dd:09:79:0f:13:34:19:dd:17:b1:5b:ad:da:f5:6b:
ad:a7:59:e2:08:b1:7c:d9:e4:a4:92:3e:8d:6c:52:26:96:72:
17:93:7e:34:23:0d:50:18:72:79:00:65:ad:60:ee:25:a2:a1:
b2:7c:24:84:fd:04:84:fc:e7:af:c2:b1:8e:cb:ad:93:55:3c:
c3:14:6e:2e:0e:ab:92:b8:f5:86:df:55:b5:5b:4d:15:0c:bf:
42:e1:53:98:9f:78:a0:ae:e0:cf:03:47:f9:8f:13:e8:9a:cd:
ff:24:7b:e3:66:e2:26:1f:d6:32:cc:0d:a6:80:3c:3c:78:2a:
10:32:44:97:22:3a:e9:35:8c:eb:5f:61:0d:8d:3a:51:75:0a:
ee:1a:70:01:6f:77:5b:df:a2:5e:a4:46:57:fa:fa:17:51:65:
6d:ce:4d:49:ac:1e:bf:79:a8:b0:71:3c:16:51:82:d8:62:0d:
e0:5d:7f:c6:b4:db:28:d1:32:79:4a:0f:48:3b:ec:31:6e:6e:
62:ef:ea:3a:60:81:5e:77:b9:4f:57:1f:b8:82:47:8e:f6:54:
9c:be:85:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org