Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/UGbKPy-XHcf0S_CwE3cZEA8MCcM.roa
File: UGbKPy-XHcf0S_CwE3cZEA8MCcM.roa (raw, json)
Hash identifier: zFBd6GC/c3nQ0yBlq8Ps9ocuN3GgC7c4niyisnAIgUk=
Subject key identifier: 50:66:CA:3F:2F:97:1D:C7:F4:4B:F0:B0:13:77:19:10:0F:0C:09:C3
Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Certificate serial: F8
Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/UGbKPy-XHcf0S_CwE3cZEA8MCcM.roa
Signing time: Wed 22 Feb 2023 06:53:56 +0000
ROA not before: Wed 22 Feb 2023 06:53:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38047
IP address blocks: 2400:61a0:a054::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 248 (0xf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Validity
Not Before: Feb 22 06:53:56 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5066CA3F2F971DC7F44BF0B0137719100F0C09C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:43:8f:8e:db:fd:eb:9d:37:9e:5d:6e:91:a7:
3e:8c:97:7f:1c:bd:17:c3:7e:52:dd:da:cb:69:d3:
b6:b6:fd:87:97:85:d6:aa:86:7e:cb:1f:72:8e:fb:
ce:60:98:23:b6:70:d6:a0:6f:e2:63:87:27:2a:4c:
87:e1:7c:0e:a9:96:4c:48:5d:fc:72:77:4c:e2:e3:
17:9f:2a:bb:19:3a:fc:b1:b9:b5:f6:09:62:79:a4:
23:0a:95:f1:4d:9a:01:85:ac:7b:fa:23:50:6c:3f:
7c:37:2b:84:b6:84:78:20:54:43:3f:fa:90:f8:cd:
b6:ba:bc:e3:db:06:42:b4:ca:e4:99:60:69:38:8e:
fb:c0:11:10:85:a2:96:35:d7:fc:72:0d:c9:9a:60:
d1:eb:cc:67:af:a9:26:d0:83:0b:5f:a5:16:43:44:
18:0f:d8:bc:43:8a:9f:9e:0c:0c:86:1c:35:4b:d6:
ed:5a:d3:4b:28:5f:e6:3c:e7:1e:44:31:79:2b:8a:
00:5c:6e:a5:35:10:cb:3e:7d:19:96:b8:58:d4:46:
00:51:04:97:b6:91:20:78:1e:2c:a7:ed:c6:a1:37:
22:c7:2d:b0:b2:7d:9b:21:47:d3:cb:e1:2f:bc:c4:
71:3a:6a:8a:8f:89:44:5f:8b:ce:fa:ff:bb:6e:79:
03:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:66:CA:3F:2F:97:1D:C7:F4:4B:F0:B0:13:77:19:10:0F:0C:09:C3
X509v3 Authority Key Identifier:
keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/UGbKPy-XHcf0S_CwE3cZEA8MCcM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:61a0:a054::/48
Signature Algorithm: sha256WithRSAEncryption
19:d5:9d:de:ac:c3:4a:8f:e6:44:cc:e5:fe:b5:c2:50:49:cd:
b6:3e:41:31:0d:2f:ba:40:02:af:3e:45:69:24:c6:8f:ff:88:
95:8b:c5:3e:f7:00:7c:bb:a1:bf:a5:17:5e:1b:e3:79:71:a9:
01:c1:e2:f7:63:80:63:66:e9:29:28:02:61:ce:c2:2a:5a:d7:
60:b0:06:b9:79:2b:d0:85:ef:a3:c3:00:71:0f:44:21:6b:9e:
89:df:49:44:0e:f5:46:30:d5:2e:35:b4:da:05:70:cc:37:7a:
5f:93:38:c6:78:06:ef:08:83:d3:7c:13:22:75:4f:7a:a6:a8:
90:d3:7e:88:dd:eb:78:8e:fc:7d:2c:eb:69:7d:b0:30:0f:d5:
35:90:3e:ff:4b:0d:8a:fe:ea:8b:a1:a6:be:dc:9d:c5:34:59:
fa:2d:76:50:8d:af:29:d1:45:d5:02:cb:d8:c6:db:f5:d0:99:
17:78:19:37:4a:ee:c4:32:42:93:36:db:a2:01:ec:a6:ae:01:
5b:84:dc:cf:3d:ec:60:24:02:67:ee:af:4f:4f:3f:2f:0d:cb:
3a:53:ae:d5:da:76:57:99:73:de:43:77:d6:cb:fe:ed:36:d8:
29:22:19:65:1d:58:ea:af:88:3e:a9:37:e3:18:ef:ef:56:38:
e6:7a:60:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org